Custom fileds inconsistently escaped in view and edit screens

Steps to replicate: Create a custom field and name it Hithere On view issue screens, the field appears as Hithere On edit issue screen, the field appears as Hithere on red font I guess we need to make a decision on which one is the desired functionality allow HTML or not and make it consistent...

Heap overflow

Heap-based buffer overflow in the rmtread function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service memory corruption or possibly execute arbitrary code by sending more data than was requested,...

Sql injection

SQL injection vulnerability in searchresult.asp in Pre Projects Pre E-Learning Portal allows remote attackers to execute arbitrary SQL commands via the courseID parameter...

Buffer overflow

Multiple buffer overflows in the authentication functionality in librpc.dll in the Informix Storage Manager ISM Portmapper service aka portmap.exe, as used in IBM Informix Dynamic Server IDS 10.x before 10.00.TC9 and 11.x before 11.10.TC3, allow remote attackers to execute arbitrary code via a...

CVE-2009-2754

CVE-2009-2754 relates to a stack-based buffer overflow in librpc.dll’s authentication for the Portmapper service (portmap.exe) used by IBM Informix Dynamic Server (IDS) 10.x prior to 10.00.TC9 and 11.x prior to 11.10.TC3, and EMC Legato NetWorker. The issue is triggered by a crafted parameter siz...

Vulnerabilities in DataLife Engine

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Abuse of Functionality и Insufficient Anti-automation уязвимостях в DataLife Engine DLE. Abuse of Functionality: http://site/index.php?do=register На странице регистрации функция "Проверить имя" позволяет выявить логины пользователей в системе...

CVE-2010-0918

Multiple unspecified vulnerabilities in the UltraLite functionality in IBM Lotus iNotes aka Domino Web Access or DWA before 229.281 for Domino 8.0.2 FP4 have unknown impact and attack vectors...

Design/Logic Flaw

Multiple unspecified vulnerabilities in the UltraLite functionality in IBM Lotus iNotes aka Domino Web Access or DWA before 229.281 for Domino 8.0.2 FP4 have unknown impact and attack vectors...

IE Winhlp32.exe MsgBox F1

$Id: iewinhlp32.rb 8688 2010-03-02 12:23:17Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Vulnerabilities in vBulletin

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Abuse of Functionality и Insufficient Anti-automation уязвимостях в vBulletin. Abuse of Functionality: Логины пользователей являются их именами на форуме, что позволяет выявить логины в системе. Abuse of Functionality: На странице...

CVE-2010-0685

The design of the dialplan functionality in Asterisk Open Source 1.2.x, 1.4.x, and 1.6.x; and Asterisk Business Edition B.x.x and C.x.x, when using the $EXTEN channel variable and wildcard pattern matches, allows context-dependent attackers to inject strings into the dialplan using metacharacters...

CVE-2010-0685

The design of the dialplan functionality in Asterisk Open Source 1.2.x, 1.4.x, and 1.6.x; and Asterisk Business Edition B.x.x and C.x.x, when using the $EXTEN channel variable and wildcard pattern matches, allows context-dependent attackers to inject strings into the dialplan using metacharacters...

[SECURITY] Fedora 12 Update: pdfedit-0.4.3-4.fc12

Free pdf editing using PdfEdit. Complete editing of pdf documents is made possible with PDFedit. You can change either raw pdf objects for advanced users or use predefined gui functions. Functions can be easily added as everything is based on a script...

Unfixed XSS vulnerability at www.runnersworld.se

Security researcher Uber0n, has submitted on 17/02/2010 a cross-site-scripting XSS vulnerability affecting www.runnersworld.se, which at the time of submission ranked 571313 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 14/06/2010. It is...

Mandriva Update for nuface MDVA-2010:057 (nuface)

Check for the Version of nuface OpenVAS Vulnerability Test Mandriva Update for nuface MDVA-2010:057 nuface Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

Mandriva Update for openoffice.org MDVSA-2010:035 (openoffice.org)

Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDVSA-2010:035 openoffice.org Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

CVE-2003-1578

Sun ONE aka iPlanet Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote attackers to hide HTTP requests from the log-preview functionality by accompanying the requests with crafted DNS responses specifying a domain name beginning...

Design/Logic Flaw

The replay functionality for ZFS Intent Log ZIL in FreeBSD 7.1, 7.2, and 8.0, when creating files during replay of a setattr transaction, uses 7777 permissions instead of the original permissions, which might allow local users to read or modify unauthorized files in opportunistic circumstances...

linux/x86 write(0 Hello core!\n"" 12)

No description provided by source. / writehello-core.c by Charles Stevenson [email protected] I made this as a chunk you can paste in to make modular remote exploits. I use it to see if my dup2loop worked. If you don't get "Hello core!\n" back it's a good indicator your shell won't be functional th...

Unfixed XSS vulnerability at www.icomplaints.in

Security researcher Th3 RDX, has submitted on 01/07/2010 a cross-site-scripting XSS vulnerability affecting www.icomplaints.in, which at the time of submission ranked 204926 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/07/2010. It is...