JVN#72630020 MODx vulnerable to SQL injection

MODx, an open source contents management system, contains a SQL injection vulnerability in the MODx Control Panel. Impact A remote attacker could obtain administrative privileges of MODx. Solution Update the Software Apply the latest update provided by the developer. Products Affected MODx 0.9.6....

ILIAS 3.7.4 - ref_id Blind SQL Injection

ILIAS 3.7.4 - refid Blind SQL Injection ILIAS Learning Management 50-- milw0rm.com 2008-12-24...

ILIAS <= 3.7.4 (ref_id) Blind SQL Injection Vulnerability

No description provided by source. ILIAS Learning Management = 3.7.4 - SQL Injection Vulnerability Vulnerability discovered by: LidlosesAuge Greetz to: -=Player=- , Suicide, g4ms3, enco, Palme, GPM, karamble, Free-Hack Date: 24.12.2008 Developer: http://www.ilias.de Dork 1: "powered by ILIAS" Dor...

ILIAS <= 3.7.4 (ref_id) Blind SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================= ILIAS 50-- 0day.today 2018-03-20...

JVN#50327700 PHP vulnerable to cross-site scripting

PHP is an open source scripting language that is especially suited for Web development. PHP contains a cross-site scripting vulnerability as it does not properly handle errors. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Apply the latest upda...

JVN#20502807 Snoopy command injection vulnerability

Snoopy is an open source PHP library. Snoopy does not properly handle user-input data. This causes a vulnerability which may allow a remote attacker to execute an arbitrary command. Impact An arbitrary command could be executed with the privilege of the server where Snoopy runs. Solution Update t...

JVN#03300113 Blosxom vulnerable to cross-site scripting

Blosxom is an open source weblog system. Blosxom contains a cross-site scripting vulnerability. Impact An arbitrary script can be executed on the user's web browser. Solution Update the Software Apply the latest udpate provided by the developer. Products Affected Blosxom 2.1.1 and earlier...

CVE-2008-2619

Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors...

CVE-2008-2619

Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors...

CVE-2008-2619

The CVE-2008-2619 entry describes an unspecified vulnerability in the Oracle Reports Developer component of Oracle Application Server (versions 1.0.2.2, 9.0.4.3, 10.1.2.2) and E-Business Suite 11.5.10.2. It allows remote authenticated users to affect availability via unknown vectors. The connecte...

JVN#92651529 Nucleus EUC-JP Japanese Edition vulnerable to cross-site scripting

Nucleus is an open source content management system provided by The Nucleus Group. Nucleus EUC-JP Japanese Edition contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the specific web browser. Solution Update the Software Apply the latest update provided b...

JVN#94163107 Kantan WEB Server cross-site scripting vulnerability

Kantan WEB Server is a web server for Windows provided by Arihiro Kurata. Kantan WEB Server contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Apply the latest update provided by the developer. Products...

JVN#79026329 Kantan WEB Server directory traversal vulnerability

Kantan WEB Server is a web server for Windows provided by Arihiro Kurata. Kantan WEB Server contains a directory traversal vulnerability. Impact A remote attacker could view or obtain files on the server where Kantan WEB Server is installed. Solution Update the Software Apply the latest update...

claroline18x-rfi.txt

Claroline 1.8.x Remote File Inclusion Vulnerability By: e.wiZz! Info: Bosnian Idiot FTW! :D ------------cut here------------------- In the wild.... Script: claroline.net Info: Claroline is an Open Source eLearning and eWorking platform allowing teachers to build effective online courses and to...

siol-overflow.txt

========================================================================= SiOL komunikator IM ActiveX stack overflow condition ========================================================================= Release date: 30.7.2008 Severity: Moderately critical Impact: Stack overflow Remote: Yes Status:...

JVN#72065744 K's CGI Access Log Kaiseki (Jcode.pm) vulnerable to cross-site scripting

K's CGI Access Log Kaiseki is a program to analyze access to a web page. analysis.cgi included in Access Log Kaiseki Jcode.pm contains a cross-site scripting vulnerability. Impact An arbitrary script could be executed on the user's web browser. Solution Update the Software Apply the latest update...

PT-2008-4679 · Sony Ericsson +1 · S800I +4

Name of the Vulnerable Software and Affected Versions: Asterisk Open Source versions 1.0.x through 1.2.x before 1.2.30 Asterisk Open Source versions 1.4.x before 1.4.21.2 Asterisk Business Edition A.x.x Asterisk Business Edition B.x.x before B.2.5.4 Asterisk Business Edition C.x.x before C.1.10.3...

JVN#49704543 WebProxy from LunarNight Laboratory vulnerable to cross-site scripting

WebProxy is a perl script for web proxy provided by LunarNight Laboratory. WebProxy contains a cross-site scripting vulnerability. Impact An arbitrary script could be executed on the user's web browser. Solution Update the Software Apply the latest update provided by the developer. Products...

JVN#00945448 Redmine vulnerable to cross-site scripting

Redmine is open source project management software written by Ruby on Rails framework. Redmine contains a cross-site scripting vulnerability. Impact An arbitrary script can be executed on the user's web browser. Solution Update the Software Apply the latest update provided by the developer...