161 matches found
CentOS: Security Advisory for libxml2 (CESA-2015:2549)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Denial Of Service (DoS)
The libxml2 library is a development toolbox providing the implementation of various XML standards. Several denial of service flaws were found in libxml2, a library providing support for reading, modifying, and writing XML and HTML files. A remote attacker could provide a specially crafted XML or...
Debian Security Advisory DSA 3821-1 (gst-plugins-ugly1.0 - security update)
Hanno Boeck discovered multiple vulnerabilities in the GStreamer media framework and its codecs and demuxers, which may result in denial of service or the execution of arbitrary code if a malformed media file is opened. OpenVAS Vulnerability Test $Id: deb3821.nasl 6607 2017-07-07 12:04:25Z cfisch...
USN-2834-1 libxml2 vulnerability | Cloud Foundry
USN-2834-1 libxml2 vulnerability Medium Vendor libxml2 Versions Affected Ubuntu 14.04 Description Kostya Serebryany discovered that libxml2 incorrectly handled certain malformed documents. If a user or automated system were tricked into opening a specially crafted document, an attacker could...
CentOS 7 : libxml2 (CESA-2015:2550)
Updated libxml2 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available...
Moderate: Red Hat Security Advisory: libxml2 security update
Updated libxml2 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available...
Ubuntu 14.04 LTS : dpkg vulnerability (USN-2820-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2820-1 advisory. Hanno Boeck discovered that the dpkg-deb tool incorrectly handled certain old style Debian binary packages. If a user or an automated system were tricked into...
DSA-3407-1 dpkg - security update
Bulletin has no description...
DSA-3350-1 bind9 - security update
Bulletin has no description...
[SECURITY] [DSA 3256-1] libtasn1-6 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3256-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 10, 2015 http://www.debian.org/security/faq -...
DLA-195-1 libtasn1-3 - security update
Bulletin has no description...
DSA-3220-1 libtasn1-3 - security update
Bulletin has no description...
WebCalendar -- multiple vulnerabilities
Hanno Boeck reports: Fixes are now available for various security vulnerabilities including LFI local file inclusion, XSS cross site scripting and others...
Unfixed XSS vulnerability at www.frank-schaeffler.de
Security researcher Hanno Boeck, has submitted on 07/10/2011 a cross-site-scripting XSS vulnerability affecting www.frank-schaeffler.de, which at the time of submission ranked 653393 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. I...
phplist: cross site request forgery (CSRF), CVE-2011-0748
phplist: cross site request forgery CSRF, CVE-2011-0748 References https://vulners.com/cve/CVE-2011-2748 http://int21.de/cve/CVE-2011-0748-phplist.html Description phplist is a mailing list software written in PHP. Up to version 2.10.12, it provided no protection against cross site request forger...
O2 classic router: persistent cross site scripting (XSS) and cross site request forgery (CSRF)
O2 classic router: persistent cross site scripting XSS and cross site request forgery CSRF References https://vulners.com/cve/CVE-2010-1482 http://int21.de/cve/CVE-2011-0746-o2-router.html Description The default DSL router shipped by the german company O2 is completely vulnerable to persistent...
O2 Classic Router Cross Site Request Forgery / Cross Site Scripting
O2 classic router: persistent cross site scripting XSS and cross site request forgery CSRF References http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1482 http://int21.de/cve/CVE-2011-0746-o2-router.html Description The default DSL router shipped by the german company O2 is completely...
CMS Made Simple: backend cross site scripting (XSS), CVE-2010-1482
CMS Made Simple: backend cross site scripting XSS, CVE-2010-1482 References https://vulners.com/cve/CVE-2010-1482 http://int21.de/cve/CVE-2010-1482-cmsmadesimple-xss-backend.html http://blog.cmsmadesimple.org/2010/05/01/announcing-cms-made-simple-1-7-1-escade/ Description CMS Made Simple 1.7.0 an...
pmwiki: persistent cross site scripting (XSS), CVE-2010-1481
pmwiki: persistent cross site scripting XSS, CVE-2010-1481 References https://vulners.com/cve/CVE-2010-1481 http://int21.de/cve/CVE-2010-1481-pmwiki-xss.html Description The table feature of pmwiki is vulnerable to persistent cross site scripting XSS. The value of the width-parameter is not...
Pmwiki Cross Site Scripting
pmwiki: persistent cross site scripting XSS, CVE-2010-1481 References http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1481 http://int21.de/cve/CVE-2010-1481-pmwiki-xss.html Description The table feature of pmwiki is vulnerable to persistent cross site scripting XSS. The value of the...