94 matches found
EUVD-1999-0959
Malware in sbrugna...
EUVD-2000-1176
Malware in sbrugna...
EUVD-2000-0207
Malware in sbrugna...
CVE-2002-2010
Cross-site scripting XSS vulnerability in htsearch.cgi in htdig ht://Dig 3.1.5, 3.1.6, and 3.2 allows remote attackers to inject arbitrary web script or HTML via the words parameter...
RHSA-2005:090 Red Hat Security Advisory: htdig security update
Bulletin has no description...
RHSA-2007:1095 Red Hat Security Advisory: htdig security update
Bulletin has no description...
[slackware-security] htdig
New htdig packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/htdig-3.2.0b6-i586-10slack15.0.txz: Rebuilt. Patch XSS vulnerability. Thanks to jayjwa. Get this out of cgi-bin. Thanks to LuckyCyborg...
Slackware: Security Advisory (SSA:2024-206-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware Linux 15.0 / current htdig Vulnerability (SSA:2024-206-01)
The version of htdig installed on the remote host is prior to 3.2.0b6. It is, therefore, affected by a vulnerability as referenced in the SSA:2024-206-01 advisory. New htdig packages are available for Slackware 15.0 and -current to fix a security issue. Tenable has extracted the preceding...
SUSE CVE-2007-6110
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
Cross-Site Scripting (XSS)
htdig is vulnerable to cross-site scripting. A cross-site scripting flaw was discovered in a htdig search page. An attacker could construct a carefully crafted URL, which once visited by an unsuspecting user, could cause a user's Web browser to execute malicious script in the context of the visit...
Oracle: Security Advisory (ELSA-2007-1095)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The ht://Dig Group ht://Dig 3.1.1/3.1.2/3.1.3/3.1.4/3.2 .0b1 Arbitrary File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/1026/info ht://dig is a web content search engine for Unix platforms. The software is set up to allow for file inclusion from configuration files. Any string surrounded by the opening singlw quote character is taken as a...
Oracle Linux 5 : Moderate: / htdig (ELSA-2007-1095)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2007-1095 advisory. 3:3.2.0b6-4 - CVE-2007-6110 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...
Scientific Linux Security Update : htdig on SL5.x, SL4.x i386/x86_64
A cross-site scripting flaw was discovered in a htdig search page. An attacker could construct a carefully crafted URL, which once visited by an unsuspecting user, could cause a user's Web browser to execute malicious script in the context of the visited htdig search Web page. CVE-2007-6110...
Cross site scripting
Cross-site scripting XSS vulnerability in mmsearch/design in the Mailman/htdig integration patch for Mailman allows remote attackers to inject arbitrary web script or HTML via the config parameter...
CVE-2011-5024
CVE-2011-5024 describes an XSS in the mmsearch/design component of the Mailman/htdig integration, allowing remote injection of script/HTML via the config parameter. Connected sources confirm the vulnerability in GNU Mailman mmsearch/design and note affected software as Mailman, with root cause a ...
PT-2011-5171 · Gnu +1 · Mailman +1
Name of the Vulnerable Software and Affected Versions: Mailman affected versions not specified Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the config parameter in the...
CentOS 4 / 5 : htdig (CESA-2007:1095)
Updated htdig packages that resolve a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The ht://Dig system is a complete World Wide Web indexing and searching system for a...
SLES9: Security update for htdig
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: htdig For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5018082 within the SuSE...