33 matches found
EUVD-2001-0817
Malware in sbrugna...
EUVD-2000-1176
Malware in sbrugna...
EUVD-2000-0207
Malware in sbrugna...
SUSE CVE-2007-6110
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
Unfixed XSS vulnerability at www.worldwidewounds.com
Security researcher xssnoob, has submitted on 01/04/2011 a cross-site-scripting XSS vulnerability affecting www.worldwidewounds.com, which at the time of submission ranked 865422 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/12/2011. It is...
Unfixed XSS vulnerability at www.fk-austria.at
Security researcher Viper.aT, has submitted on 12/01/2009 a cross-site-scripting XSS vulnerability affecting www.fk-austria.at, which at the time of submission ranked 74187 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/02/2009. It is...
Debian Security Advisory DSA 080-1 (htdig)
The remote host is missing an update to htdig announced via advisory DSA 080-1. OpenVAS Vulnerability Test $Id: deb0801.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 080-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 080-1 (htdig)
The remote host is missing an update to htdig announced via advisory DSA 080-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ht://Dig Htsearch跨站脚本漏洞
ht://Dig是一款用来webserver的索引和搜索文件的应用程序。 ht://Dig不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行跨站脚本攻击,获得敏感信息。 问题是由于'sytnax.html'脚本对用户提交的WEB参数缺少过滤,提交恶意脚本代码作为参数数据,可导致获得目标用户敏感信息。 测试方法 http://foo.bar/cgi-bin/htsearch?config=&restrict=&exclude=&method=and&format=builtin-long&sort=scriptalert"foo"/script&words=foo ht://Dig...
htdig htsearch XSS vulnerability
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
ht://dig htsearch sort Parameter XSS
The htsearch CGI script is accessible through the remote web server. htsearch is a component of ht://Dig used to index and search documents such as web pages. The version of htsearch installed on the remote host fails to sanitize user-supplied input to the 'sort' parameter before using it to...
DEBIAN-CVE-2007-6110
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
CVE-2007-6110
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
CVE-2007-6110
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
CVE-2007-6110
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
CVE-2007-6110
CVE-2007-6110: Cross-site scripting in htsearch (htdig) 3.2.0b6 via the sort parameter. Documented in multiple advisories (RHSA-2007-1095, CESA-2007:1095, ELSA-2007-1095) and vendor-specific updates. Affected products include Red Hat, Oracle Linux, CentOS, Scientific Linux, and Slackware (HTDIG) ...
CVE-2007-6110
Cross-site scripting XSS vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter...
security flaw
htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path...
ht://Dig htsearch.cgi XSS
The SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only Ref: Howard Yeend ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.15706";...