33 matches found
EUVD-2007-0123
Malware in sbrugna...
EUVD-2007-0122
Malware in sbrugna...
EUVD-2003-1341
Malware in sbrugna...
EditTag 1.2 edittag_mp.cgi file Variable Arbitrary File Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/21890/info EditTag is prone to multiple directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow a remote attacker to access any file...
EditTag 1.2 edittag_mp.pl file Variable Arbitrary File Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/21890/info EditTag is prone to multiple directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow a remote attacker to access any file...
EditTag 1.2 edittag.pl file Variable Arbitrary File Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/21890/info EditTag is prone to multiple directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow a remote attacker to access any file...
EditTag 1.2 mkpw_mp.cgi plain Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/21891/info EditTag is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
EditTag 1.2 mkpw.cgi plain Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/21891/info EditTag is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
EditTag 1.2 mkpw.pl plain Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/21891/info EditTag is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
CVE-2011-5025
Multiple cross-site scripting XSS vulnerabilities in the wiki application in Yaws 1.88 allow remote attackers to inject arbitrary web script or HTML via 1 the tag parameter to editTag.yaws, 2 the index parameter to showOldPage.yaws, 3 the node parameter to allRefsToMe.yaws, or 4 the text paramete...
CVE-2003-1351
Directory traversal vulnerability in edittag.cgi in EditTag 1.1 allows remote attackers to read arbitrary files via a "%2F.." encoded slash dot dot in the file parameter...
CVE-2003-1351
The CVE-2003-1351 issue affects EditTag 1.1, exposed via edittag.cgi. It is a directory traversal vulnerability that allows remote attackers to read arbitrary files by passing a encoded path like "%2F.." in the file parameter. The vulnerability can lead to partial confidentiality impact by exposi...
CVE-2007-0119
Multiple cross-site scripting XSS vulnerabilities in EditTag 1.2 allow remote attackers to inject arbitrary web script or HTML via the plain parameter to 1 mkpwmp.cgi, 2 mkpw.pl, or 3 mkpw.cgi...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in EditTag 1.2 allow remote attackers to inject arbitrary web script or HTML via the plain parameter to 1 mkpwmp.cgi, 2 mkpw.pl, or 3 mkpw.cgi...
CVE-2007-0118
Multiple absolute path traversal vulnerabilities in EditTag 1.2 allow remote attackers to read arbitrary files via an absolute pathname in the file parameter to 1 edittag.cgi, 2 edittag.pl, 3 edittagmp.cgi, or 4 edittagmp.pl...
Path traversal
Multiple absolute path traversal vulnerabilities in EditTag 1.2 allow remote attackers to read arbitrary files via an absolute pathname in the file parameter to 1 edittag.cgi, 2 edittag.pl, 3 edittagmp.cgi, or 4 edittagmp.pl...
CVE-2007-0118
CVE-2007-0118: Multiple absolute path traversal vulnerabilities affect EditTag 1.2. Remote attackers can read arbitrary files by supplying an absolute pathname in the file parameter to one of four scripts: edittag.cgi, edittag.pl, edittag_mp.cgi, or edittag_mp.pl. The NVD entry documents the vuln...
CVE-2007-0118
Multiple absolute path traversal vulnerabilities in EditTag 1.2 allow remote attackers to read arbitrary files via an absolute pathname in the file parameter to 1 edittag.cgi, 2 edittag.pl, 3 edittagmp.cgi, or 4 edittagmp.pl...
CVE-2007-0119
CVE-2007-0119 affects EditTag 1.2. The vulnerability is a Cross-Site Scripting (XSS) issue that allows remote attackers to inject arbitrary web script or HTML via the plain parameter to mkpw_mp.cgi, mkpw.pl, or mkpw.cgi. Descriptions across multiple sources confirm the same affected components an...
CVE-2007-0119
Multiple cross-site scripting XSS vulnerabilities in EditTag 1.2 allow remote attackers to inject arbitrary web script or HTML via the plain parameter to 1 mkpwmp.cgi, 2 mkpw.pl, or 3 mkpw.cgi...