Unfixed XSS vulnerability at www.aboulfeth.com

Security researcher ahmed, has submitted on 25/03/2007 a cross-site-scripting XSS vulnerability affecting www.aboulfeth.com, which at the time of submission ranked 3371380 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 26/03/2007. It is...

Remote file inclusion

PHP remote file inclusion vulnerability in iframe.php in the iFrame Module for PHP-NUKE allows remote attackers to execute arbitrary PHP code via a URL in the file parameter...

CVE-2007-1626

PHP remote file inclusion vulnerability in iframe.php in the iFrame Module for PHP-NUKE allows remote attackers to execute arbitrary PHP code via a URL in the file parameter...

CVE-2007-1626

PHP remote file inclusion vulnerability in iframe.php in the iFrame Module for PHP-NUKE allows remote attackers to execute arbitrary PHP code via a URL in the file parameter...

CVE-2007-1626

The CVE-2007-1626 entry documents a PHP remote file inclusion in the iFrame Module for PHP-Nuke, specifically iframe.php, where an attacker can cause arbitrary PHP code execution by supplying a URL in the file parameter. Affected component: iFrame module for PHP-Nuke; vulnerability type: remote f...

Hung it to the code Daquan-vulnerability warning-the black bar safety net

Hung it to the code book A:The frame hanging horse iframe src=address width=0 height=0/iframe II:the js file hanging horse First, the following code document. write"iframe width='0' height='0' src='address'/iframe"; 保存 为 xxx.js that The JS hung it to the code script language=javascript src=xxx...

CVE-2007-1565

Konqueror 3.5.5 allows remote attackers to cause a denial of service crash by using JavaScript to read a child iframe having an ftp:// URI...

Code injection

Konqueror 3.5.5 allows remote attackers to cause a denial of service crash by using JavaScript to read a child iframe having an ftp:// URI...

CVE-2007-1565

Konqueror 3.5.5 allows remote attackers to cause a denial of service crash by using JavaScript to read a child iframe having an ftp:// URI...

PHP-Nuke IFrame Module IFrame.PHP远程文件包含漏洞

PHP-Nuke IFrame Module是一款基于PHP的WEB应用程序。 PHP-Nuke IFrame Module不正确过滤用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'IFrame.PHP'脚本对用户提交的'file'参数缺少过滤，指定远程服务器上的文件作为包含参数，可导致以WEB权限执行任意命令。 PHP-Nuke iFrame Module 目前没有解决方案提供： http://phpnuke.org/modules.php?name=Downloads&dop=viewdownload&cid=3...

iFrame for Phpnuke (iframe.php) Remote File Inclusion Vulnerability

No description provided by source. iFRAME for PhpNuke iframe.php Remote File Include Vulnerabilities script :http://www.desarrollonuke.org http://up.9q9q.net/up/index.php?f=uTRRQnIjG file : iframe.php Dork : "/nuke/iframe.php" Found by & Contact : Cold z3ro , [email protected] ,...

Konqueror 3.5.5 (JavaScript Read of FTP Iframe) DoS Exploit

No description provided by source. Demo of how to make Konqueror 3.5.5 crash by [email protected]. Simply load this file in Konqueror. Vulnerable versions should segfault instantly with a null pointer exception. readiframe = functioniframename var banner =...

Null pointer dereference

ecma/kjshtml.cpp in KDE JavaScript KJS, as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service crash by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference...

CVE-2007-1308

ecma/kjshtml.cpp in KDE JavaScript KJS, as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service crash by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference...

Konqueror 3.5.5 - JavaScript Read of FTP Iframe Denial of Service

Demo of how to make Konqueror 3.5.5 crash by [email protected]. Simply load this file in Konqueror. Vulnerable versions should segfault instantly with a null pointer exception. readiframe = functioniframename var banner = document.getElementByIdiframename.contentWindow.document.body.innerHTML;...

Konqueror 3.5.5 - JavaScript Read of FTP Iframe Denial of Service

Konqueror 3.5.5 - JavaScript Read of FTP Iframe Denial of Service Demo of how to make Konqueror 3.5.5 crash by [email protected]. Simply load this file in Konqueror. Vulnerable versions should segfault instantly with a null pointer exception. readiframe = functioniframename var banner =...

[Full-disclosure] Konqueror DoS Via JavaScript Read Of FTP Iframe

Summary Konqueror crashes if JavaScript code tries to read the source of a child iframe which is set to an ftp:// URL. Impact It is possible for malicious websites to crash Konqueror and possibly other applications with rely on KJS. Details The KDE JavaScript implementation, KJS has been found to...

KDE Konqueror 3.5 - JavaScript IFrame Denial of Service

source: https://www.securityfocus.com/bid/22814/info KDE Konqueror is prone to a remote denial-of-service vulnerability because of an error in KDE's JavaScript implementation. An attacker may exploit this vulnerability to cause Konquerer to crash, resulting in denial-of-service conditions...

CVE-2006-7065

Microsoft Internet Explorer allows remote attackers to cause a denial of service crash via an IFRAME with a certain XML file and XSL stylesheet that triggers a crash in mshtml.dll when a refresh is called, probably a null pointer dereference...

CVE-2006-7065

Microsoft Internet Explorer allows remote attackers to cause a denial of service crash via an IFRAME with a certain XML file and XSL stylesheet that triggers a crash in mshtml.dll when a refresh is called, probably a null pointer dereference...