250 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in www/help/tracker.php in GForge 4.5.14, 4.7 rc2, and 4.8.1 allows remote attackers to inject arbitrary web script or HTML via the helpname parameter...
Sql injection
SQL injection vulnerability in GForge 4.5.14, 4.7.3, and possibly other versions allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2009-4070
SQL injection vulnerability in GForge 4.5.14, 4.7.3, and possibly other versions allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2009-4070
SQL injection vulnerability in GForge 4.5.14, 4.7.3, and possibly other versions allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2009-4069
Multiple cross-site scripting XSS vulnerabilities in GForge 4.5.14, 4.7.3, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in GForge 4.5.14, 4.7.3, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2009-3303
Cross-site scripting XSS vulnerability in www/help/tracker.php in GForge 4.5.14, 4.7 rc2, and 4.8.1 allows remote attackers to inject arbitrary web script or HTML via the helpname parameter...
CVE-2009-4069
Multiple cross-site scripting XSS vulnerabilities in GForge 4.5.14, 4.7.3, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2009-3303
CVE-2009-3303 affects GForge and its help/tracker.php script. Versions 4.5.14, 4.7 rc2, and 4.8.1 are vulnerable to a cross-site scripting (XSS) flaw via the helpname parameter due to insufficient input sanitising. The issue allows remote attackers to inject arbitrary HTML/script content into a u...
CVE-2009-3303
Cross-site scripting XSS vulnerability in www/help/tracker.php in GForge 4.5.14, 4.7 rc2, and 4.8.1 allows remote attackers to inject arbitrary web script or HTML via the helpname parameter...
CVE-2009-4070
SQL injection vulnerability in GForge 4.5.14, 4.7.3, and possibly other versions allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2009-4069
Multiple cross-site scripting XSS vulnerabilities in GForge 4.5.14, 4.7.3, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2009-4070
CVE-2009-4070 describes a SQL injection in GForge versions such as 4.5.14 and 4.7.3 (and possibly others). Remote attackers could execute arbitrary SQL commands via unknown vectors. The connected Red Hat, Debian, and Ubuntu entries corroborate the vulnerability in GForge and note the need for upd...
CVE-2009-4069
CVE-2009-4069 affects GForge, with multiple cross-site scripting (XSS) vulnerabilities reported in at least GForge 4.5.14 and 4.7.3 (and possibly other versions). Attackers can inject arbitrary web script or HTML via unspecified vectors. The Red Hat, Debian, and Ubuntu entries reiterate XSS issue...
Debian Security Advisory DSA 1937-1 (gforge)
The remote host is missing an update to gforge announced via advisory DSA 1937-1. OpenVAS Vulnerability Test $Id: deb19371.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1937-1 gforge Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Debian: Security Advisory (DSA-1937-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 1937-1] New gforge packages fix cross-site scripting
------------------------------------------------------------------------ Debian Security Advisory DSA-1937-1 [email protected] http://www.debian.org/security/ Steffen Joeris November 21, 2009 http://www.debian.org/security/faq -...
DSA-1937-1 gforge - cross-site scripting
Bulletin has no description...
Debian Security Advisory DSA 1818-1 (gforge)
The remote host is missing an update to gforge announced via advisory DSA 1818-1. OpenVAS Vulnerability Test $Id: deb18181.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1818-1 gforge Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Debian: Security Advisory (DSA-1818-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...