10 matches found
Firebook 3.100328 Cross Site Scripting / Leakage
Hello list! I want to warn you about Information Leakage, Brute Force and Cross-Site Scripting vulnerabilities in Firebook. ------------------------- Affected products: ------------------------- Vulnerable are Firebook 3.100328 and previous versions. ---------- Details: ---------- Information...
Многочисленные уязвимости в Firebook
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Information Leakage, Brute Force и Cross-Site Scripting уязвимостях в Firebook. Information Leakage WASC-13: http://site/cgi-bin/firebook/firebook.cgi На странице есть раздел SystemInfo с Full path disclosure и именами txt-файлов БД веб приложения...
Firebook - index.html Cross-Site Scripting
Firebook - index.html Cross-Site Scripting source: https://www.securityfocus.com/bid/46143/info Firebook is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code ...
Новые уязвимости в Firebook
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Insufficient Anti-automation, Abuse of Functionality, Information Leakage и Cross-Site Scripting уязвимостях в Firebook. Insufficient Anti-automation WASC-21: http://site/index.html?mailto=MG1112008878;file=path/to/guestbook/message.html; На...
Firebook 3.100328 Cross Site Scripting / Disclosure
Hello list! I want to warn you about Insufficient Anti-automation, Abuse of Functionality, Information Leakage and Cross-Site Scripting vulnerabilities in Firebook. SecurityVulns ID: 11396. ------------------------- Affected products: ------------------------- Vulnerable are Firebook 3.100328 and...
Firebook XSS / XSRF / Directory Traversal / Full Path Disclosure
Hello Bugtraq! I want to warn you about security vulnerabilities in Firebook. ----------------------------- Advisory: Vulnerabilities in Firebook ----------------------------- URL: http://websecurity.com.ua/4124/ ----------------------------- Affected products: all versions of Firebook...
Firebook - Multiple Cross-Site Scripting Directory Traversal Vulnerabilities
Firebook - Multiple Cross-Site Scripting Directory Traversal Vulnerabilities source: https://www.securityfocus.com/bid/40941/info Firebook is prone to multiple cross-site scripting vulnerabilities and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied inpu...
Firebook - Multiple Cross-Site Scripting / Directory Traversal Vulnerabilities
source: https://www.securityfocus.com/bid/40941/info Firebook is prone to multiple cross-site scripting vulnerabilities and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script...
Vulnerabilities in Firebook
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Information Leakage, Cross-Site Request Forgery, Cross-Site Scripting, Directory Traversal и Full path disclosure уязвимостях в Firebook. Information Leakage: http://site/pathtofirebookadmin/?URLproxy=http://firebook.ru/env/index.html; CSRF:...
i-dreams GB 5.4 Final (admin.dat) File Disclosure Vulnerability
Exploit for cgi platform in category web applications =============================================================== i-dreams GB 5.4 Final admin.dat File Disclosure Vulnerability ===============================================================...