9791 matches found
Fedora 9 : mapserver-5.2.2-1.fc9 (2009-3383)
The releases contain fixes for issues discovered in an audit of the CGI by a 3rd party tickets 2939, 2941, 2942, 2943 and 2944. The issues are detailed at: http://trac.osgeo.org/mapserver/ticket/2939 http://trac.osgeo.org/mapserver/ticket/2941 http://trac.osgeo.org/mapserver/ticket/2942...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
CVE-2009-1206
Unspecified vulnerability in futomi's CGI Cafe Access Analyzer CGI Professional Version 4.11.5 and earlier allows remote attackers to gain administrative privileges via unknown vectors...
Design/Logic Flaw
Unspecified vulnerability in futomi's CGI Cafe Access Analyzer CGI Professional Version 4.11.5 and earlier allows remote attackers to gain administrative privileges via unknown vectors...
CVE-2009-1206
CVE-2009-1206 affects futomi’s CGI Cafe Access Analyzer CGI Professional, versions 4.11.5 and earlier. The vulnerability allows a remote attacker to gain administrative privileges via unknown vectors (network attack, no authentication required; impact partial confidentiality, integrity, and avail...
Positron Security Advisory #2009-000: Multiple Vulnerabilities in MapServer v5.2.1 and v4.10.3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 POSITRON SECURITY LLC http://www.positronsecurity.com/ Security Advisory 2009-000 Multiple Vulnerabilities in MapServer v5.2.1 and v4.10.3 Author: Joe Testa jt atsign positronsecuritydotcom Date: March 30th, 2009 URL:...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. RotaBanner: crossite scripting...
JVN#63511247 Access Analyzer CGI Professional Version vulnerability allows third party to gain administrative privileges
Access Analyzer CGI provided by futomi's CGI Cafe is a software to analyze web access logs. Access Analyzer CGI Professional Version contains a vulnerability that allows an attacker to gain administrative privileges. Impact A remote attacker could impersonate an administrator of Access Analyzer C...
Command injection
cgi-bin/webutil.pl in The Puppet Master WebUtil 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the whois command...
Command injection
cgi-bin/webutil.pl in The Puppet Master WebUtil allows remote attackers to execute arbitrary commands via shell metacharacters in the dig command...
Design/Logic Flaw
cgi-bin/script in Aztech ADSL2/2+ 4-port router 3.7.0 build 070426 allows remote attackers to execute arbitrary commands via shell metacharacters in the query string...
CVE-2008-6555
cgi-bin/webutil.pl in The Puppet Master WebUtil allows remote attackers to execute arbitrary commands via shell metacharacters in the dig command...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Webglimpse: crossite scripting...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Ubuntu Update for awstats vulnerability USN-686-1
Ubuntu Update for Linux kernel vulnerabilities USN-686-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6861.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for awstats vulnerability USN-686-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
HP OpenView Network Node Manager OpenView5.exe buffer overflow
Added: 03/23/2009 CVE: CVE-2008-0067 BID: 33147 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A buffer overflow vulnerability in the OpenView5.exe CGI program allows remote attackers to execute arbitrary commands. Resolution Apply...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Invision Power Board: user existance check...
CVE-2009-0971
Cross-site scripting XSS vulnerability in futomi's CGI Cafe Access Analyzer CGI Standard Version 3.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in futomi's CGI Cafe Access Analyzer CGI Standard Version 3.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors...
CVE-2009-0971
CVE-2009-0971 is an XSS flaw in futomi’s CGI Cafe Access Analyzer CGI Standard (Version 3.8.1 and earlier). Public records describe an arbitrary-script execution in the user’s browser via unknown vectors, with fixes in Version 4.x (4.0.0 and later, e.g., 4.0.2). Affected software: Access Analyzer...