Code injection

Unspecified vulnerability in HP Intelligent Management Center iMC and Intelligent Management Center for Automated Network Manager ANM before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1650...

CVE-2012-5203

Unspecified vulnerability in HP Intelligent Management Center iMC and Intelligent Management Center for Automated Network Manager ANM before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1613...

CVE-2012-5208

Unspecified vulnerability in HP Intelligent Management Center iMC and Intelligent Management Center for Automated Network Manager ANM before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1615...

CVE-2012-5215

Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213...

CVE-2012-5207

HP iMC/ANM (HP Intelligent Management Center for ANM) 5.2 E0401 and earlier are affected by CVE-2012-5207, a remote vulnerability leading to information disclosure, potential data modification, and DoS via unspecified vectors (ZDI-CAN-1661). The issue affects multiple HP iMC components and was ad...

CVE-2012-5206

CVE-2012-5206 affects HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) prior to 5.2 E0401. The vulnerability enables remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors (ZDI-CAN...

CVE-2012-5211

CVE-2012-5211 affects HP Intelligent Management Center (iMC) User Access Manager (UAM) prior to 5.2 E0402. The vulnerability allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors (ZDI-CAN-1643). Connected sources corroborate an info...

CVE-2012-5208

CVE-2012-5208 affects HP Intelligent Management Center (iMC) and iMC for ANM prior to 5.2 E0401. The connected sources identify this as an information-disclosure vulnerability (remote, via unknown vectors per ZDI-1615) that could allow an attacker to obtain sensitive information. The issue is emb...

CVE-2012-5203

CVE-2012-5203 in HP Intelligent Management Center (iMC) and iMC for ANM (pre-5.2 E0401) is an information-disclosure vulnerability exploitable via a ReportImgServlet directory-traversal. The issue arises from lack of authentication and insufficient input validation in ReportImgServlet when proces...

Plogger - Multiple Input Validation Vulnerabilities

Plogger - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/58271/info Plogger is prone to following input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data: 1. An SQL-injection vulnerability 2. Multiple cross-site scripting...

Authentication flaw

Unspecified vulnerability in the IBM WebSphere Cast Iron physical and virtual appliance 6.0 and 6.1 before 6.1.0.15 and 6.3 before 6.3.0.1, when LDAP authentication is enabled, allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors...

CVE-2013-0465

The CVE-2013-0465 entry concerns IBM WebSphere Cast Iron physical and virtual appliances 6.0/6.1 (before 6.1.0.15) and 6.3 (before 6.3.0.1). When LDAP authentication is enabled, an unspecified vulnerability could allow remote attackers to obtain sensitive information, modify data, or cause a deni...

Code injection

Multiple unspecified vulnerabilities on HP NonStop Servers H06.x and J06.x allow remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via an OSS Remote Operation over an Expand connection...

CVE-2012-3280

Technical details (affected products/versions, root cause, fix) are not provided in the initial or connected documents. No concrete technical information is available here; monitor for updates and future disclosures.

BlackNova Traders - 'news.php' SQL Injection

source: https://www.securityfocus.com/bid/57910/info BlackNova Traders is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

Six Apart Movable Type < 4.38 Multiple Vulnerabilities - Active Check

Six Apart Movable Type is prone to multiple SQL injection SQLi and command injection vulnerabilities because the application fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

Scripts Genie Classified Ultra - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/57465/info Classified Ultra is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal cookie-based...

IP.Gallery - &#039;img&#039; SQL Injection

source: https://www.securityfocus.com/bid/57444/info IP.Gallery is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modify data...

Opera Multiple Vulnerabilities-01 Jan13 (Linux)

The host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultvuln01jan13lin.nasl 6115 2017-05-12 09:03:25Z teissa $ Opera Multiple Vulnerabilities-01 Jan13 Linux Authors: Antu Sanadi Copyright: Copyright c 2013 Greenbone Networks GmbH,...

WordPress Plugin Shopping Cart for WordPress - wp-contentpluginslevelfourstorefrontscriptsadministrationexportaccounts.php?reqID SQL Injection

WordPress Plugin Shopping Cart for WordPress - wp-contentpluginslevelfourstorefrontscriptsadministrationexportaccounts.php?reqID SQL Injection source: https://www.securityfocus.com/bid/57101/info The WordPress Shopping Cart plugin for WordPress is prone to multiple SQL-injection vulnerabilities a...