233 matches found
SQLiteManager v1.2.0 Multiple Vulnerabilities
SQLiteManager v1.2.0 Multiple Vulnerabilities ------------------------------------------------------- vendor : http://www.sqlitemanager.org/ Global risk : High ------------------------------------------------------- SQLite is a SQL managed portal like PhpMyAdmin. Multiple Cross Scripting...
HeffnerCMS.txt
Website : http://www.christian-heffner.de Version : 1.07 I. alertdocument.cookie http://www.site.com/index.php?page=alertPatriotic Hackers Etc.. IV. Solution No Greetz ; B3g0k,Azad,Nistiman,Hawar,Seyh and other our friends.. irc.gigachat.net kurdhack www.PatrioticHackers...
VihorDesing Script Remote Command Exucetion And Cross Scripting Attack
Website : http://www.vihor.de I.Remote Exucete : Vulnerable : http://www.site.com/path/index.php?page=evilcode.txt?&cmd=id II. Cross Attack http://www.site.com/path/index.php?page=scriptalertdocument.cookie/script http://www.site.com/path/index.php?page=scriptalertPatriotic Hackers/script Patriot...
HeffnerCMS Remote Command Exucetion And Cross Scripting Attack
Website : http://www.christian-heffner.de Version : 1.07 I. ?php $filename="index.php"; requireonce 'vlib/vlibTemplate.php'; $tmpl = new vlibTemplate'tmpl/std/index.tpl'; requireonce 'config/dbconfig.php'; requireonce 'config/pcfunctions.php'; Ucuyor.... : lol II. Vulnerable code ;...
IMP_MIME_Viewer_html class XSS vulnerabilities
The remote server is running at least one instance of IMP whose version number is between 3.0 and 3.2.1 inclusive. Such versions are vulnerable to several cross-scripting attacks whereby an attacker can cause a victim to unknowingly run arbitrary Javascript code simply by reading an HTML message...
IMP HTML+TIME XSS Vulnerability
The remote server is running at least one instance of IMP whose version number is 3.2.4 or lower. Such versions are vulnerable to a cross-scripting attack whereby an attacker may be able to inject arbitrary content, including script, in a specially crafted MIME message. To have an effect, the...
Horde IMP 3.2.5 HTML+TIME XSS Vulnerability
The remote server is running at least one instance of Horde IMP whose version number is 3.2.4 or lower. SPDX-FileCopyrightText: 2004 George A. Theall Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Horde < 3.2.2 IMP_MIME_Viewer_html class XSS Vulnerabilities
The remote server is running at least one instance of Horde IMP whose version number is between 3.0 and 3.2.1 inclusive. SPDX-FileCopyrightText: 2003-2004 George A. Theall Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
[XSS] paBox 1.6
Just wanted to let it be known seeing as i havent seen any info on this yet, ive discovered a cross scripting problem in PABox 1.6 http://phpnuke.org/modules.php?name=News&file=article&sid=5065 they give a demo page of pabox there. if you take the default form used for the shoutbox, there are...
Horde IMP with MSIE MIME Viewer Email Message XSS
The remote server is running at least one instance of IMP whose version number is 3.2.4 or lower. Such versions are vulnerable to a cross-scripting attack whereby an attacker may be able to inject arbitrary content, including script, in a specially crafted MIME message. To have an effect, the...
IMP Content-Type Header XSS
The remote server is running at least one instance of IMP whose version number is between 2.0 and 3.2.3 inclusive. Such versions are vulnerable to a cross-scripting attack whereby an attacker may be able to cause a victim to unknowingly run arbitrary JavaScript code simply by reading a MIME messa...
squirrel142.txt
SquirrelMail latest version although is tested on version 1.4.2 is prone to many cross scripting attacks that can be used to steal user cookies.The Exploit lies in the way squirrel mail represents the folder names and shows them.To make the matters worse.No extra unique variable added to the url...
Horde IMP IMP_MIME_Viewer_html Class XSS
The remote server is running at least one instance of IMP whose version number is between 3.0 and 3.2.1 inclusive. Such versions are vulnerable to several cross-scripting attacks whereby an attacker can cause a victim to unknowingly run arbitrary JavaScript code simply by reading an HTML message...