Lucene search
K

239 matches found

seebug.org
seebug.org
added 2012/07/06 12:0 a.m.55 views

DirectAdmin 1.403 跨站脚本漏洞

Bugtraq ID: 53281 CVE ID: CVE-2012-3842 DirectAdmin是一款功能强大的虚拟主机在线管理系统。 DirectAdmin脚本存在跨站脚本漏洞,允许攻击者通过select0或select8参数注入任意WEB脚本或HTML,远程攻击者可以利用漏洞获得敏感信息或劫持用户会话。 0 DirectAdmin 1.403 厂商解决方案 目前没有详细解决方案提供: http://directadmin.com/...

4.3CVSS6.5AI score0.0118EPSS
Exploits2
Prion
Prion
added 2012/07/03 10:55 p.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in CMDDOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the 1 select0 or 2 select8 parameters...

4.3CVSS5.7AI score0.0118EPSS
Exploits2References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2012/07/03 10:55 p.m.6 views

CVE-2012-3842

Multiple cross-site scripting XSS vulnerabilities in CMDDOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the 1 select0 or 2 select8 parameters...

4.3CVSS5.2AI score0.0118EPSS
Exploits2References4
CVE
CVE
added 2012/07/03 10:0 p.m.49 views

CVE-2012-3842

CVE-2012-3842 affects JBMC Software DirectAdmin 1.403, with multiple XSS flaws in CMD_DOMAIN that allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the select0 or select8 parameters. The connected PT-2012-5038 entry provides concrete details on af...

4.3CVSS5.5AI score0.0118EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2012/07/03 10:0 p.m.23 views

CVE-2012-3842

Multiple cross-site scripting XSS vulnerabilities in CMDDOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the 1 select0 or 2 select8 parameters...

5.5AI score0.0118EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2012/07/03 12:0 a.m.9 views

PT-2012-5038

Name of the Vulnerable Software and Affected Versions JBMC Software DirectAdmin version 1.403 Description The issue concerns multiple cross-site scripting XSS vulnerabilities in the CMD DOMAIN component. These vulnerabilities allow remote authenticated users with specific privileges to inject...

4.3CVSS6.1AI score0.0118EPSS
Exploits2References6
securityvulns
securityvulns
added 2012/05/01 12:0 a.m.75 views

DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities

Title: ====== DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities Date: ===== 2012-04-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=509 VL-ID: ===== 509 Introduction: ============= DirectAdmin is a graphical web-based web hosting control panel designed to make...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2012/04/26 12:0 a.m.18 views

DirectAdmin 1.403 Cross Site Scripting

Title: ====== DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities Date: ===== 2012-04-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=509 VL-ID: ===== 509 Introduction: ============= DirectAdmin is a graphical web-based web hosting control panel designed to make...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/04/25 12:0 a.m.21 views

DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities

Document Title: =============== DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=509 Release Date: ============= 2012-04-25 Vulnerability Laboratory ID VL-ID: ==================================== 50...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/04/25 12:0 a.m.17 views

DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities

Document Title: =============== DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=509 Release Date: ============= 2012-04-25 Vulnerability Laboratory ID VL-ID: ==================================== 50...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2012/04/09 12:0 a.m.106 views

DirectAdmin v1.403 - Cross Site Scripting Vulnerability

Title: ====== DirectAdmin v1.403 - Cross Site Scripting Vulnerability Date: ===== 2012-04-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=486 VL-ID: ===== 486 Introduction: ============= DirectAdmin is a graphical web-based web hosting control panel designed to make...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2012/04/02 12:0 a.m.17 views

JBMC Software DirectAdmin 1.403 - domain Cross-Site Scripting

JBMC Software DirectAdmin 1.403 - domain Cross-Site Scripting source: https://www.securityfocus.com/bid/52845/info DirectAdmin is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2012/04/02 12:0 a.m.22 views

DirectAdmin 1.403 Cross Site Scripting

Title: ====== DirectAdmin v1.403 - Cross Site Scripting Vulnerability Date: ===== 2012-04-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=486 VL-ID: ===== 486 Introduction: ============= DirectAdmin is a graphical web-based web hosting control panel designed to make...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2012/04/02 12:0 a.m.19 views

JBMC Software DirectAdmin 1.403 - 'domain' Cross-Site Scripting

source: https://www.securityfocus.com/bid/52845/info DirectAdmin is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/04/02 12:0 a.m.39 views

DirectAdmin v1.403 - Cross Site Scripting Vulnerability

Document Title: =============== DirectAdmin v1.403 - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=486 Release Date: ============= 2012-04-02 Vulnerability Laboratory ID VL-ID: ==================================== 486...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/04/02 12:0 a.m.18 views

DirectAdmin v1.403 - Cross Site Scripting Vulnerability

Document Title: =============== DirectAdmin v1.403 - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=486 Release Date: ============= 2012-04-02 Vulnerability Laboratory ID VL-ID: ==================================== 486...

0.1AI score
Exploits0
0day.today
0day.today
added 2012/01/24 12:0 a.m.25 views

DirectAdmin ADD Sub Domain CSRF Exploit

Exploit for php platform in category web applications !/usr/bin/perl Title : DirectAdmin Web Control Panel � 2005 JBMC Software Author : OnurTURKESHAN Homepage : http://www.directadmin.com/ tested on : Windows 7 Seni Unutmayacagiz MIRIM- system"cls"; print "...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2012/01/24 12:0 a.m.21 views

DirectAdmin ADD Sub Domain CSRF Exploit

No description provided by source. !/usr/bin/perl Title : DirectAdmin Web Control Panel � 2005 JBMC Software Author : Onur T�RKE�HAN Homepage : http://www.directadmin.com/ tested on : Windows 7 Seni Unutmayacagiz MIRIM- system"cls"; print " +----------------------------------------+\n | directadm...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/01/24 12:0 a.m.28 views

DirectAdmin Cross Site Request Forgery

!/usr/bin/perl Title : DirectAdmin Web Control Panel � 2005 JBMC Software Author : Onur T�RKE�HAN Homepage : http://www.directadmin.com/ tested on : Windows 7 Seni Unutmayacagiz MIRIM- system"cls"; print " +----------------------------------------+\n | directadmin csrf vuln creator by turkeshan |...

1.1AI score
Exploits0
NVD
NVD
added 2011/12/29 10:55 p.m.27 views

CVE-2011-5033

Stack-based buffer overflow in CFS.c in ConfigServer Security & Firewall CSF before 5.43, when running on a DirectAdmin server, allows local users to cause a denial of service crash via a long string in an admin.list file...

4.4CVSS6.6AI score0.00744EPSS
Exploits1References4
Rows per page
Query Builder