27 matches found
EUVD-2006-0259
Malware in sbrugna...
EUVD-2002-1990
Malware in sbrugna...
EUVD-2002-0227
Malware in sbrugna...
CVE-2002-2011
Cross-site scripting XSS vulnerability in the fom CGI program fom.cgi in Faq-O-Matic 2.711 and 2.712 allows remote attackers to inject arbitrary web script or HTML via the file parameter...
Faq-O-Matic 2.711 Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/16251/info Faq-O-Matic is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to hav...
Jon Howell Faq-O-Matic 2.7 Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4565/info Faq-O-Matic 2.711 and 2.712 is a web-based Frequently Asked Question FAQ management system. It is vulnerable to a cross site scripting issue arising from a failure to filter HTML or script from a malformed query...
Faq-O-Matic 2.6/2.7 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4023/info FAQ-O-Matic is a freely available, open-source FAQ Frequently Asked Questions manager. It is intended to run on Linux and Unix variants. FAQ-O-Matic does not sufficiently filter script code from URL parameters. ...
Debian Security Advisory DSA 109-1 (faqomatic)
The remote host is missing an update to faqomatic announced via advisory DSA 109-1. OpenVAS Vulnerability Test $Id: deb1091.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 109-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 109-1 (faqomatic)
The remote host is missing an update to faqomatic announced via advisory DSA 109-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
CVE-2006-0251
CVE-2006-0251 describes a Cross-site scripting (XSS) vulnerability in Faq-O-Matic 2.711, affecting fom.cgi. The flaw allows remote attackers to inject arbitrary web script or HTML via the (1) _duration, (2) file, and (3) cmd parameters. The connected documents reiterate the affected product and p...
CVE-2006-0251
Cross-site scripting XSS vulnerability in fom.cgi in Faq-O-Matic 2.711 allows remote attackers to inject arbitrary web script or HTML via the 1 duration, 2 file, and 3 cmd parameters...
Cross site scripting
Cross-site scripting XSS vulnerability in fom.cgi in Faq-O-Matic 2.711 allows remote attackers to inject arbitrary web script or HTML via the 1 duration, 2 file, and 3 cmd parameters...
Faq-O-Matic 2.711 - Multiple Cross-Site Scripting Vulnerabilities
Faq-O-Matic 2.711 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/16251/info Faq-O-Matic is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker...
Faq-O-Matic 2.711 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/16251/info Faq-O-Matic is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed i...
CVE-2002-2011
The CVE-2002-2011 entry concerns Faq-O-Matic’s fom.cgi (versions 2.711 and 2.712). The issue is a cross-site scripting (XSS) vulnerability where an attacker can inject arbitrary web script or HTML via the file parameter, potentially enabling/script execution in the victim’s browser. Documented im...
CVE-2002-2011
Cross-site scripting XSS vulnerability in the fom CGI program fom.cgi in Faq-O-Matic 2.711 and 2.712 allows remote attackers to inject arbitrary web script or HTML via the file parameter...
Faq-O-Matic fom.cgi Multiple Parameter XSS
The remote host runs Faq-O-Matic, a CGI-based system that automates the process of maintaining a FAQ. The remote version of this software is vulnerable to cross-site scripting attacks in the script 'fom.cgi'. With a specially crafted URL, an attacker can cause arbitrary code execution resulting i...
Debian DSA-109-1 : faqomatic - XSS vulnerability
Due to unescaped HTML code Faq-O-Matic returned unverified scripting code to the browser. With some tweaking this enables an attacker to steal cookies from one of the Faq-O-Matic moderators or the admin. Cross-Site Scripting is a type of problem that allows a malicious person to make another pers...
CVE-2002-2011
Cross-site scripting XSS vulnerability in the fom CGI program fom.cgi in Faq-O-Matic 2.711 and 2.712 allows remote attackers to inject arbitrary web script or HTML via the file parameter...
CVE-2002-0230
Cross-site scripting vulnerability in fom.cgi of Faq-O-Matic 2.712 allows remote attackers to execute arbitrary Javascript on other clients via the cmd parameter, which causes the script to be inserted into an error message...