Lucene search
+L

4495 matches found

Cvelist
Cvelist
added 2007/07/06 7:0 p.m.32 views

CVE-2007-3605

Stack-based buffer overflow in the kweditcontrol.kwedit.1 ActiveX control in FrontEnd\SapGui\kwedit.dll in the EnjoySAP SAP GUI allows remote attackers to execute arbitrary code via a long argument to the PrepareToPostHTML function...

8AI score0.69907EPSS
Exploits5References10
Debian
Debian
added 2007/07/05 8:11 p.m.24 views

[SECURITY] [DSA 1329-1] New gfax packages fix privilege escalation

------------------------------------------------------------------------ Debian Security Advisory DSA-1329-1 [email protected] http://www.debian.org/security/ Steve Kemp July 05, 2007 - ------------------------------------------------------------------------ Package : gfax Vulnerability :...

7.2CVSS6.5AI score0.00774EPSS
Exploits0
NVD
NVD
added 2007/02/12 11:28 p.m.21 views

CVE-2006-7009

Joomla! before 1.0.10 allows remote attackers to spoof the frontend submission forms, which has unknown impact and attack vectors...

7.5CVSS6.7AI score0.01187EPSS
Exploits0References2
OSV
OSV
added 2006/10/04 12:0 a.m.19 views

DSA-1190-1 maxdb-7.5.00

Bulletin has no description...

10CVSS6.1AI score0.70468EPSS
Exploits7
securityvulns
securityvulns
added 2006/07/04 12:0 a.m.37 views

[Full-disclosure] [scip_Advisory 2352] F5 FirePass 4100 prior 6.x multiple Cross Site Scripting

F5 FirePass 4100 prior 6.x multiple Cross Site Scripting scip AG Vulnerability ID 2352 07/04/2006 http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2352 I. INTRODUCTION F5 FirePass is an appliance which allows a remote communication between SSL-VPN endpoints. This secure connectivity to corporate...

0.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.52 views

FreeBSD : Joomla -- multiple vulnerabilities (1f935f61-075d-11db-822b-728b50d539a3)

Joomla Site reports : - Secured 'Remember Me' functionality against SQL injection attacks - Secured 'Related Items' module against SQL injection attacks - Secured 'Weblinks' submission against SQL injection attacks - Secured SEF from XSS vulnerability - Hardened frontend submission forms against...

5.7AI score
Exploits0References2
securityvulns
securityvulns
added 2006/06/27 12:0 a.m.58 views

Usenet Script v0.5

Usenet Script v0.5 Homepage: http://www.metalhead.ws/usenet Description: "Those scripts allow you to mirror a Newsgroup in an SQL database. The development database was Postgresql, but it uses dbx and should therefore be able to work with other database systems, too. Furthermore, a frontend is...

0.2AI score
Exploits0
FreeBSD
FreeBSD
added 2006/06/26 12:0 a.m.16 views

Joomla -- multiple vulnerabilities

Joomla Site reports: Secured "Remember Me" functionality against SQL injection attacks Secured "Related Items" module against SQL injection attacks Secured "Weblinks" submission against SQL injection attacks Secured SEF from XSS vulnerability Hardened frontend submission forms against spoofing...

1AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2006/06/08 12:0 a.m.41 views

GLSA-200606-06 : AWStats: Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200606-06 AWStats: Remote execution of arbitrary code Hendrik Weimer has found that if updating the statistics via the web frontend is enabled, it is possible to inject arbitrary code via a pipe character in the 'migrate' paramete...

5.1CVSS6.1AI score0.58356EPSS
Exploits10References3
Gentoo Linux
Gentoo Linux
added 2006/06/07 12:0 a.m.54 views

AWStats: Remote execution of arbitrary code

Background AWStats is an advanced log file analyzer and statistics generator. Description Hendrik Weimer has found that if updating the statistics via the web frontend is enabled, it is possible to inject arbitrary code via a pipe character in the "migrate" parameter. Additionally, r0t has...

5.1CVSS6.7AI score0.58356EPSS
Exploits10
NVD
NVD
added 2006/06/05 5:2 p.m.17 views

CVE-2006-2815

Multiple cross-site scripting XSS vulnerabilities in Two Shoes M-Factory TSMF SimpleBoard 1.1.0 Stable aka comsimpleboard, as used in Mambo and Joomla!, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in "post ne topic" in the Frontend, 2 the Title aka...

6.8CVSS5.8AI score0.01488EPSS
Exploits0References7
Prion
Prion
added 2006/06/05 5:2 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Two Shoes M-Factory TSMF SimpleBoard 1.1.0 Stable aka comsimpleboard, as used in Mambo and Joomla!, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in "post ne topic" in the Frontend, 2 the Title aka...

6.8CVSS6.1AI score0.01488EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/06/05 5:0 p.m.24 views

CVE-2006-2815

Multiple cross-site scripting XSS vulnerabilities in Two Shoes M-Factory TSMF SimpleBoard 1.1.0 Stable aka comsimpleboard, as used in Mambo and Joomla!, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in "post ne topic" in the Frontend, 2 the Title aka...

5.8AI score0.01488EPSS
Exploits0References7
Packet Storm
Packet Storm
added 2006/06/05 12:0 a.m.19 views

joomlaMamboXSS.txt

Joomla/Mambo CMS Component SimpleBoard 1.1.0 Stable XSS-Vulnerabilities ======================================================================= Release Date ------------ June 01, 2006 Vendor ------- Two Shoes Mambo Factory http://www.tsmf.net/ Version ------- SimpleBoard 1.1.0 Stable comsimpleboa...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/06/02 12:0 a.m.247 views

Joomla/Mambo CMS Component SimpleBoard 1.1 XSS-Vulnerabilities

Joomla/Mambo CMS Component SimpleBoard 1.1.0 Stable XSS-Vulnerabilities ======================================================================= Release Date ------------ June 01, 2006 Vendor ------- Two Shoes Mambo Factory http://www.tsmf.net/ Version ------- SimpleBoard 1.1.0 Stable comsimpleboa...

7.2AI score
Exploits0
seebug.org
seebug.org
added 2006/05/25 12:0 a.m.14 views

BASE <= 1.2.4 melissa (Snort Frontend) Remote Inclusion Vulnerabilities

No description provided by source. Basic Analysis and Security Engine BASE = 1.2.4 melissa Inclusion Vulnerabilities Just glanced over BASE for a pentesting job. /str0ke ! milw0rm.com code baseqrycommon.php includeonce"$BASEpath/includes/basesignature.inc.php"; /code...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/05/25 12:0 a.m.93 views

BASE <= 1.2.4 melissa (Snort Frontend) Remote Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ======================================================================= BASE = 1.2.4 melissa Snort Frontend Remote Inclusion Vulnerabilities ======================================================================= Basic Analysis and Securit...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/05/25 12:0 a.m.28 views

BASE 1.2.4 - melissa Snort Frontend Remote File Inclusion

Basic Analysis and Security Engine BASE = 1.2.4 melissa Inclusion Vulnerabilities Just glanced over BASE for a pentesting job. /str0ke ! milw0rm.com code baseqrycommon.php includeonce"$BASEpath/includes/basesignature.inc.php"; /code...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/02/19 12:0 a.m.39 views

Mandrake Linux Security Advisory : kernel (MDKSA-2006:040)

A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The udpv6getport function in udp.c, when running IPv6, allows local users to cause a Denial of Service infinite loop and crash CVE-2005-2973. The mqopen system call in certain situations can decrement a counter...

5CVSS6.5AI score0.03774EPSS
Exploits11References7
Tenable Nessus
Tenable Nessus
added 2006/01/21 12:0 a.m.41 views

Ubuntu 4.10 / 5.04 / 5.10 : linux-source-2.6.8.1/-2.6.10/-2.6.12 vulnerabilities (USN-244-1)

Doug Chapman discovered a flaw in the reference counting in the sysmqopen function. By calling this function in a special way, a local attacker could exploit this to cause a kernel crash. CVE-2005-3356 Karl Janmar discovered that the /proc file system module used signed data types in a wrong way....

7.2CVSS6.5AI score0.01047EPSS
Exploits5References6
Rows per page
Query Builder