38 matches found
EUVD-2020-7578
Malware in sbrugna...
CVE-2020-15591
fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...
CVE-2020-15591
fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...
CVE-2020-15591
fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...
CVE-2020-15591
fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...
CVE-2020-15591
CVE-2020-15591 concerns the FEX component, specifically the fexsrv service, where vulnerability exists in versions prior to fex-20160919_2. The issue is an eval injection that can lead to unauthenticated remote code execution. The description across connected records consistently states the flaw ...
CVE-2020-15591
fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...
CVE-2014-3875
The addto parameter to fup in Frams' Fast File EXchange FEX, aka fex before fex-2014053 allows remote attackers to conduct cross-site scripting XSS attacks...
CVE-2014-3875
The addto parameter to fup in Frams' Fast File EXchange FEX, aka fex before fex-2014053 allows remote attackers to conduct cross-site scripting XSS attacks...
CVE-2014-3875
The CVE-2014-3875 entry documents a cross-site scripting (XSS) vulnerability in Frams’ Fast File Exchange (F*EX, fex) prior to fex-2014053, where the addto parameter of fup can be exploited to inject HTML/headers. Debian DLA-68-1 confirms this issue and lists fixes for the fex package (versions a...
Frams&qt Fast File EXchange Multiple Vulnerabilities
Frams&qt Fast File EXchange is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-3876
Multiple cross-site scripting XSS vulnerabilities in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the 1 akey parameter to rup or 2 disclaimer or 3 gm parameter to fuc...
CVE-2014-3876
Multiple cross-site scripting XSS vulnerabilities in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the 1 akey parameter to rup or 2 disclaimer or 3 gm parameter to fuc...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the 1 akey parameter to rup or 2 disclaimer or 3 gm parameter to fuc...
CVE-2014-3877
CVE-2014-3877 affects Frams"e; Fast File EXchange (F*EX, fex) prior to fex-20140530. The issue is an incomplete blacklist that allows remote XSS via the addto parameter to fup. Connected advisories confirm multiple vendors/publications (e.g., Debian DLA-68-1) documenting fex exposure and release ...
CVE-2014-3877
Incomplete blacklist vulnerability in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allows remote attackers to conduct cross-site scripting XSS attacks via the addto parameter to fup...
CVE-2014-3876
CVE-2014-3876 relates to Frams’ Fast File Exchange (Fex) prior to fex-20140530, where multiple XSS vulnerabilities allow an attacker to inject script/HTML via the (1) akey parameter to rup, (2) disclaimer, or (3) gm parameter to fuc. The related OpenVAS entry confirms “Frams&qt Fast File EXchange...
CVE-2014-3877
Incomplete blacklist vulnerability in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allows remote attackers to conduct cross-site scripting XSS attacks via the addto parameter to fup...
CVE-2014-3876
Multiple cross-site scripting XSS vulnerabilities in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the 1 akey parameter to rup or 2 disclaimer or 3 gm parameter to fuc...
LSE Leading Security Experts GmbH - LSE-2014-05-22 - F*EX - Multiple Issues
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 === LSE Leading Security Experts GmbH - Security Advisory 2014-05-22 === FEX Frams' Fast File EXchange - Multiple Issues - - --------------------------------------------------------------------- Affected Versions ================= FEX Frams' Fast File...