239 matches found
DirectAdmin 1.403 跨站脚本漏洞
Bugtraq ID: 53281 CVE ID: CVE-2012-3842 DirectAdmin是一款功能强大的虚拟主机在线管理系统。 DirectAdmin脚本存在跨站脚本漏洞,允许攻击者通过select0或select8参数注入任意WEB脚本或HTML,远程攻击者可以利用漏洞获得敏感信息或劫持用户会话。 0 DirectAdmin 1.403 厂商解决方案 目前没有详细解决方案提供: http://directadmin.com/...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in CMDDOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the 1 select0 or 2 select8 parameters...
CVE-2012-3842
Multiple cross-site scripting XSS vulnerabilities in CMDDOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the 1 select0 or 2 select8 parameters...
CVE-2012-3842
CVE-2012-3842 affects JBMC Software DirectAdmin 1.403, with multiple XSS flaws in CMD_DOMAIN that allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the select0 or select8 parameters. The connected PT-2012-5038 entry provides concrete details on af...
CVE-2012-3842
Multiple cross-site scripting XSS vulnerabilities in CMDDOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the 1 select0 or 2 select8 parameters...
PT-2012-5038
Name of the Vulnerable Software and Affected Versions JBMC Software DirectAdmin version 1.403 Description The issue concerns multiple cross-site scripting XSS vulnerabilities in the CMD DOMAIN component. These vulnerabilities allow remote authenticated users with specific privileges to inject...
DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities
Title: ====== DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities Date: ===== 2012-04-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=509 VL-ID: ===== 509 Introduction: ============= DirectAdmin is a graphical web-based web hosting control panel designed to make...
DirectAdmin 1.403 Cross Site Scripting
Title: ====== DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities Date: ===== 2012-04-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=509 VL-ID: ===== 509 Introduction: ============= DirectAdmin is a graphical web-based web hosting control panel designed to make...
DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities
Document Title: =============== DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=509 Release Date: ============= 2012-04-25 Vulnerability Laboratory ID VL-ID: ==================================== 50...
DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities
Document Title: =============== DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=509 Release Date: ============= 2012-04-25 Vulnerability Laboratory ID VL-ID: ==================================== 50...
DirectAdmin v1.403 - Cross Site Scripting Vulnerability
Title: ====== DirectAdmin v1.403 - Cross Site Scripting Vulnerability Date: ===== 2012-04-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=486 VL-ID: ===== 486 Introduction: ============= DirectAdmin is a graphical web-based web hosting control panel designed to make...
JBMC Software DirectAdmin 1.403 - domain Cross-Site Scripting
JBMC Software DirectAdmin 1.403 - domain Cross-Site Scripting source: https://www.securityfocus.com/bid/52845/info DirectAdmin is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...
DirectAdmin 1.403 Cross Site Scripting
Title: ====== DirectAdmin v1.403 - Cross Site Scripting Vulnerability Date: ===== 2012-04-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=486 VL-ID: ===== 486 Introduction: ============= DirectAdmin is a graphical web-based web hosting control panel designed to make...
JBMC Software DirectAdmin 1.403 - 'domain' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52845/info DirectAdmin is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
DirectAdmin v1.403 - Cross Site Scripting Vulnerability
Document Title: =============== DirectAdmin v1.403 - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=486 Release Date: ============= 2012-04-02 Vulnerability Laboratory ID VL-ID: ==================================== 486...
DirectAdmin v1.403 - Cross Site Scripting Vulnerability
Document Title: =============== DirectAdmin v1.403 - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=486 Release Date: ============= 2012-04-02 Vulnerability Laboratory ID VL-ID: ==================================== 486...
DirectAdmin ADD Sub Domain CSRF Exploit
Exploit for php platform in category web applications !/usr/bin/perl Title : DirectAdmin Web Control Panel � 2005 JBMC Software Author : OnurTURKESHAN Homepage : http://www.directadmin.com/ tested on : Windows 7 Seni Unutmayacagiz MIRIM- system"cls"; print "...
DirectAdmin ADD Sub Domain CSRF Exploit
No description provided by source. !/usr/bin/perl Title : DirectAdmin Web Control Panel � 2005 JBMC Software Author : Onur T�RKE�HAN Homepage : http://www.directadmin.com/ tested on : Windows 7 Seni Unutmayacagiz MIRIM- system"cls"; print " +----------------------------------------+\n | directadm...
DirectAdmin Cross Site Request Forgery
!/usr/bin/perl Title : DirectAdmin Web Control Panel � 2005 JBMC Software Author : Onur T�RKE�HAN Homepage : http://www.directadmin.com/ tested on : Windows 7 Seni Unutmayacagiz MIRIM- system"cls"; print " +----------------------------------------+\n | directadmin csrf vuln creator by turkeshan |...
CVE-2011-5033
Stack-based buffer overflow in CFS.c in ConfigServer Security & Firewall CSF before 5.43, when running on a DirectAdmin server, allows local users to cause a denial of service crash via a long string in an admin.list file...