5123 matches found
Shop a la Cart Multiple Vulnerabilities
Exploit for php platform in category web applications ======================================= Shop a la Cart Multiple Vulnerabilities ======================================= Exploit Title: Multiple vulnerabilities in SHOP A LA CART Date: 03.09.2010 Author: Ariko-Security Software Link:...
Shop a la Cart - Multiple Vulnerabilities
Shop a la Cart - Multiple Vulnerabilities Exploit Title: Multiple vulnerabilities in SHOP A LA CART Date: 03.09.2010 Author: Ariko-Security Software Link: http://shopalacart.com Version: ALL Tested on: ALL CVE : n/a Ariko-Security: Security Audits , Audyt bezpieczeństwa Advisory: 728/2010...
Shop a la Cart - Multiple Vulnerabilities
Exploit Title: Multiple vulnerabilities in SHOP A LA CART Date: 03.09.2010 Author: Ariko-Security Software Link: http://shopalacart.com Version: ALL Tested on: ALL CVE : n/a Ariko-Security: Security Audits , Audyt bezpieczeństwa Advisory: 728/2010 ============ Ariko-Security - Advisory 1/9/2010...
CGI Generic HTML Injections (quick test)
The remote web server hosts CGI scripts that fail to adequately sanitize request strings with malicious JavaScript. By leveraging this issue, an attacker may be able to cause arbitrary HTML to be executed in a user's browser within the security context of the affected site. The remote web server...
Mozilla Bug Seen as Very Low Risk
Mozilla has been aware of the Firefox iFrame bug that came to light yesterday for more than two months now and the company’s engineers concluded early on in the process that the problem was a fairly minor one that was unlikely to cause the vast majority of users any confusion or be exploited by...
New Firefox iFrame Bug Bypasses URL Protections
UPDATED–There is a bug in Mozilla’s flagship Firefox browser related to the way the browser handles obfuscated URLs in iFrames. However, a Mozilla official said the bug poses “very low” risk to users. Johnathan Nightingale of Mozilla said in a blog post late Tuesday that the bug poses little risk...
Unfixed XSS vulnerability at www.dziennik.pl
Security researcher cbr, has submitted on 25/07/2010 a cross-site-scripting XSS vulnerability affecting www.dziennik.pl, which at the time of submission ranked 7281 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It is currently...
Sikkim Manipal University / Calcutta University Vulnerabilities
Topic: a Sikkim Manipal University portal is vulnerable to SQL Injection attack. b Calcutta University website is spreading malware via iframe code insertion. Details: a About the university: Sikkim Manipal is one of the largest private University in India. The Institute attracts students from al...
openSUSE Security Update : opera (openSUSE-SU-2010:0368-1)
Opera was upgraded to the 10.60 release. It brings lots of new features, bugfixes and security fixes. Security fixes include: CVE-2010-0653: Opera permits cross-origin loading of CSS style sheets even when the style sheet download has an incorrect MIME type and the style sheet document is...
Google Chrome multiple vulnerabilities - July 10
The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnjul10.nasl 5306 2017-02-16 09:00:16Z teissa $ Google Chrome multiple vulnerabilities - July 10 Authors: Madhuri D Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Design/Logic Flaw
Google Chrome before 5.0.375.99 does not properly isolate sandboxed IFRAME elements, which has unspecified impact and remote attack vectors...
CVE-2010-2646
CVE-2010-2646 affects Google Chrome up to version 5.0.375.99, where sandboxing of IFRAME elements was not properly isolated. This memory-corruption/remote-vector issue has high severity (CVSS 9.3) with unspecified impact described in the entry. The available connected documents indicate a vendor ...
Mozilla Products 'IFRAME' Denial Of Service vulnerability (Windows)
The host is installed with Mozilla Firefox/Seamonkey and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodmozillaprdtsiframedosvulnwin.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products 'IFRAME' Denial Of Service vulnerability Windows Authors: Antu Sanadi...
Microsoft IE cross-domain IFRAME gadgets keystrokes steal Vulnerability
This host is installed with Internet Explorer and is prone to cross-domain iframe gadgets keystrokes steal vulnerability. OpenVAS Vulnerability Test $Id: secpodmsieiframeinfodiscvulnjune10.nasl 5394 2017-02-22 09:22:42Z teissa $ Microsoft IE cross-domain IFRAME gadgets keystrokes steal...
Mozilla Products 'IFRAME' DoS Vulnerability - Windows
Mozilla Firefox/Seamonkey is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft IE cross-domain IFRAME gadgets keystrokes steal Vulnerability
Internet Explorer is prone to cross-domain iframe gadgets keystrokes steal vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2010-2442
Microsoft Internet Explorer, possibly 8, does not properly restrict focus changes, which allows remote attackers to read keystrokes via "cross-domain IFRAME gadgets."...
CVE-2010-2441
WebKit does not properly restrict focus changes, which allows remote attackers to read keystrokes via "cross-domain IFRAME gadgets," a different vulnerability than CVE-2010-1126, CVE-2010-1422, and CVE-2010-2295...
Cross site scripting
Microsoft Internet Explorer, possibly 8, does not properly restrict focus changes, which allows remote attackers to read keystrokes via "cross-domain IFRAME gadgets."...
CVE-2010-2441
WebKit does not properly restrict focus changes, which allows remote attackers to read keystrokes via "cross-domain IFRAME gadgets," a different vulnerability than CVE-2010-1126, CVE-2010-1422, and CVE-2010-2295...