1002 matches found
Gentoo Security Advisory GLSA 200608-18 (net-server)
The remote host is missing updates announced in advisory GLSA 200608-18. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200804-17 (speex)
The remote host is missing updates announced in advisory GLSA 200804-17. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
FreeBSD Ports: openssl, openssl-overwrite-base
The remote host is missing an update to the system as announced in the referenced advisory. VID 60e26a40-3b25-11da-9484-00123ffe8333 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
vBulletin 3.7.1 - admincpfaq.php?Injection adminlog.php Cross-Site Scripting
vBulletin 3.7.1 - admincpfaq.php?Injection adminlog.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30134/info vBulletin is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated...
CVE-2008-2640
Multiple cross-site scripting XSS vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifier to 1...
ScrewTurn Software ScrewTurn Wiki 2.0.x - System Log Page HTML Injection
ScrewTurn Software ScrewTurn Wiki 2.0.x - System Log Page HTML Injection source: https://www.securityfocus.com/bid/30429/info ScrewTurn Wiki is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated...
phpStats 0.1_alpha - phpStats.php Cross-Site Scripting
phpStats 0.1alpha - phpStats.php Cross-Site Scripting source: https://www.securityfocus.com/bid/28291/info The 'phpstats' program is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacke...
phpStats 0.1_alpha - 'phpStats.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/28291/info The 'phpstats' program is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script...
Cfnetgs 0.24 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/28267/info Cfnetgs is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...
SNewsCMS 2.x - search.php Cross-Site Scripting
SNewsCMS 2.x - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/28262/info SNewsCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this...
Sophos Email Appliance 2.1 - Web Interface Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/27813/info Sophos Email Appliance is prone to multiple cross-site scripting vulnerabilities that affect its web interface because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage...
Debian Security Advisory DSA 1465-1 (apt-listchanges)
The remote host is missing an update to apt-listchanges announced via advisory DSA 1465-1. OpenVAS Vulnerability Test $Id: deb14651.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1465-1 apt-listchanges Authors: Thomas Reinke Copyright: Copyright c 2008...
WebCalendar 1.1.6 - pref.php Cross-Site Scripting
WebCalendar 1.1.6 - pref.php Cross-Site Scripting source: https://www.securityfocus.com/bid/27461/info WebCalendar is prone to multiple HTML-injection and cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically...
Apache 2.2.6 mod_negotiation - HTML Injection / HTTP Response Splitting
source: https://www.securityfocus.com/bid/27409/info Apache 'modnegotiation' is prone to an HTML-injection and an HTTP response-splitting vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML o...
Debian Security Advisory DSA 223-1 (geneweb)
The remote host is missing an update to geneweb announced via advisory DSA 223-1. OpenVAS Vulnerability Test $Id: deb2231.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 223-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 1393-1 (xfce4-terminal)
The remote host is missing an update to xfce4-terminal announced via advisory DSA 1393-1. OpenVAS Vulnerability Test $Id: deb13931.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1393-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 812-1 (turqstat)
The remote host is missing an update to turqstat announced via advisory DSA 812-1. Peter Karlsson discovered a buffer overflow in Turquoise SuperStat, a program for gathering statistics from Fidonet and Usenet, that can be exploited by a specially crafted NNTP server. For the old stable...
Debian Security Advisory DSA 1134-1 (mozilla-thunderbird)
The remote host is missing an update to mozilla-thunderbird announced via advisory DSA 1134-1. Several security related problems have been discovered in Mozilla which are also present in Mozilla Thunderbird. For details, please visit the referenced security advisories. OpenVAS Vulnerability Test...
Debian Security Advisory DSA 837-1 (mozilla-firefox)
The remote host is missing an update to mozilla-firefox announced via advisory DSA 837-1. Tom Ferris discovered a bug in the IDN hostname handling of Mozilla Firefox, which is also present in the other browsers from the same family that allows remote attackers to cause a denial of service and...
Debian Security Advisory DSA 159-2 (python)
The remote host is missing an update to python announced via advisory DSA 159-2. OpenVAS Vulnerability Test $Id: deb1592.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 159-2 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...