Group picker popup JSP has XSS hole if group names are XSS shaped

If a group name has a XSS shaped name, then the group picker will allow scripts to be executed...

Internet Explorer File Download Extension Spoofing (MS04-024; CVE-2004-0420)

Microsoft Internet Explorer IE is a web browser application that is capable of rendering both static and dynamic web content. The application is primarily used for tasks related to web browsing, such as displaying HTML encoded pages, downloading files, etc. On certain cases, when downloading a...

JVN#97248625 Movable Type cross-site scripting vulnerability

Movable Type, a web log system from Six Apart KK, contains a cross-site scripting vulnerability. This vulnerability is a different vulnerability than past reports on JVN. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest versio...

POP Peeper 3.4.0.0 .eml file Universal SEH Overwrite Exploit

Exploit for unknown platform in category local exploits ============================================================ POP Peeper 3.4.0.0 .eml file Universal SEH Overwrite Exploit ============================================================ POP Peeper 3.4.0.0 .eml file Universal SEH Overwrite Explo...

CentOS Update for python CESA-2007:1077-01 centos2 i386

Check for the Version of python OpenVAS Vulnerability Test CentOS Update for python CESA-2007:1077-01 centos2 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Microsoft Works 7 WkImgSrv.dll ActiveX Remote BOF Exploit

Exploit for unknown platform in category remote exploits ========================================================= Microsoft Works 7 WkImgSrv.dll ActiveX Remote BOF Exploit ========================================================= MOV ESI,DWORD PTR SS:EBP+8 ; Do some other stuffs, we don't care...

VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit

Exploit for linux platform in category remote exploits ================================================== VHCS http://acid-root.new.fr/ email protected Exploit: + Logged in Administrator + The administrator has 2 resellers / Changing dareseller's password / Trying to connect as dareseller:thatpwn...

mailman -- script insertion vulnerability

Secunia reports: A vulnerability has been reported in Mailman, which can be exploited by malicious users to conduct script insertion attacks. Certain input when editing the list templates and the list info attribute is not properly sanitised before being stored. This can be exploited to insert...

Debian Security Advisory DSA 864-1 (ruby1.8)

The remote host is missing an update to ruby1.8 announced via advisory DSA 864-1. OpenVAS Vulnerability Test $Id: deb8641.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 864-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Novell ZENworks ESM Security Client STEngine Privilege Escalation

Novell ZENworks Endpoint Security Management ESM Security Client is installed on the remote host. It provides a centrally-managed, policy-based firewall for enterprise computers. The version of this software on the remote host dynamically generates various scripts which are then executed by the...

SuSE 10 Security Update : festival (ZYPP Patch Number 4378)

The festival daemon runs as root. The default config doesn't have a password set. A local attacker could therefore connect to the daemon to have commands executed as root. CVE-2007-4074 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

JVN#90438169 RaidenHTTPD cross-site scripting vulnerability

RaidenHTTPD is a multipurpose web server for Windows provided by TEAM JOHNLONG. RaidenHTTPD contains a cross-site scripting vulnerability. Impact Arbitrary code could be executed on the user's web browser. Solution Update the Software Apply the update provided by the vendor. For more information,...

ie6dart-overflow.txt

'metasploit one, 456 bytes - cmd /c net user su tzu /add & net localgroup Administrators su /add shellcode =...

Debian DSA-911-1 : gtk+2.0 - several vulnerabilities

Several vulnerabilities have been found in gtk+2.0, the Gtk+ GdkPixBuf XPM image rendering library. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-2975 Ludwig Nussel discovered an infinite loop when processing XPM images that allows an attacker to...

USN-315-1: libmms, xine-lib vulnerabilities

Matthias Hopf discovered several buffer overflows in libmms. By tricking a user into opening a specially crafted remote multimedia stream with an application using libmms, a remote attacker could exploit this to execute arbitrary code with the user's privileges. The Xine library contains an...

CVE-2006-2479

The Update functionality in Bitrix Site Manager 4.1.x does not verify the authenticity of downloaded updates, which allows remote attackers to obtain sensitive information and ultimately execute arbitrary PHP code via DNS cache poisoning that redirects the user to a malicious site...

obotix IP Camera M1 1.9.4 .7M10 2.0.5.2 - help Script Cross-Site Scripting

obotix IP Camera M1 1.9.4 .7M10 2.0.5.2 - help Script Cross-Site Scripting source: https://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input...

W2B Online Banking - SID Cross-Site Scripting

W2B Online Banking - SID Cross-Site Scripting source: https://www.securityfocus.com/bid/17626/info W2B Online Banking is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue t...

SiteSearch Indexer 3.5 - &#039;searchresults.asp&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/17332/info SiteSearch Indexer is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

Claroline 1.x - &#039;rqmkhtml.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/17344/info Claroline is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of...