3 matches found
Improper Input Validation
Overview Affected versions of this package are vulnerable to Improper Input Validation due to improper handling of unspecified characters in variable names. An attacker can exploit this vulnerability to manipulate or contaminate HTTP parameters by sending crafted requests with malicious variable...
The vulnerability of the Microsoft .NET Framework software platform allows a perpetrator to inject arbitrary web or HTML code.
The vulnerability of the ASP.NET software platform, Microsoft .NET Framework, exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject any desired web or HTML code using a specially crafted variable value...
CVE-2009-3102
The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager ZRM for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQLBINPATH variable...