EUVD-2006-5758

Malware in sbrugna...

EUVD-2002-2094

Malware in sbrugna...

CVE-2002-2115

Cross-site scripting XSS vulnerability in Hyper NIKKI System HNS Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML...

Hyper NIKKI System cross-site scripting vulnerability

Overview Hyper NIKKI System hns, web log software from the Hyper NIKKI System Project, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct session...

Hyper NIKKI System cross-site request forgery vulnerability

Overview Hyper NIKKI System hns, a weblog system from the Hyper NIKKI System Project, contains a cross-site request forgery CSRF vulnerability. Impact If a weblog administrator accesses a malicious web page, an attacker could add, alter, or delete the weblog text. If the weblog text is successful...

Hyper NIKKI System allows unauthorized email submission

Overview Hyper NIKKI System hns is web log software from the Hyper NIKKI System Project. hns allows unauthorized email submission as it does not validate inputs properly. Impact An attacker could use the server to send unauthorized emails. In addition, when the server provides email service, the...

CVE-2006-5774

Cross-site scripting XSS vulnerability in Hyper NIKKI System before 2.19.9 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2006-5774

Cross-site scripting XSS vulnerability in Hyper NIKKI System before 2.19.9 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2006-5774

Hyper NIKKI System (HNS) is affected by a cross-site scripting (XSS) vulnerability in versions before 2.19.9. The issue allows remote attackers to inject arbitrary web script or HTML via unknown vectors. The JVN entry describes an impact where an arbitrary script may be executed in the user’s bro...

JVN#88325166 Hyper NIKKI System cross-site scripting vulnerability

Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct session hijacking. Solution Products Affected hns-2.190.8 hns-lite-2.190.8 and earlier...

JVN#65542239 Hyper NIKKI System allows unauthorized email submission

Impact An attacker could use the server to send unauthorized emails. In addition, when the server provides email service, the attacker could possibly conduct a DoS attack by generating many bounced emails. Solution Products Affected hns-2.19.6 hns-lite-2.19.6 and earlier On March 8 2006, the vend...

CVE-2002-2115

Cross-site scripting XSS vulnerability in Hyper NIKKI System HNS Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML...

CVE-2002-2115

Technical details (affected product, component, version, root cause, impact, or fix) are not publicly provided in the supplied documents. Monitor for updates from vendors and security advisories.

CVE-2002-2115

Cross-site scripting XSS vulnerability in Hyper NIKKI System HNS Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML...