Lucene search
K

123 matches found

RedHat Linux
RedHat Linux
added 2008/04/02 8:44 p.m.8 views

JFreeChart: XSS vulnerabilities in the image map feature

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.8AI score0.0276EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/04/02 8:42 p.m.7 views

JFreeChart: XSS vulnerabilities in the image map feature

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.8AI score0.0276EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2008/03/25 12:0 a.m.35 views

Apache mod_imap Image Map Referer XSS

The remote Apache web server has the module 'modimap' or 'modimagemap' installed. The remote version of this module is vulnerable to a cross-site scripting issue related to the handling of the 'referrer' field of the remote server. C Tenable Network Security, Inc. include"compat.inc"; ifdescripti...

4.3CVSS6.4AI score0.73692EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2008/03/24 10:16 p.m.10 views

JFreeChart: XSS vulnerabilities in the image map feature

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.8AI score0.0276EPSS
Exploits1References4
Prion
Prion
added 2007/12/11 9:46 p.m.22 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.7AI score0.0276EPSS
Exploits1References18Affected Software1
NVD
NVD
added 2007/12/11 9:46 p.m.26 views

CVE-2007-6306

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.6AI score0.0276EPSS
Exploits1References18
UbuntuCve
UbuntuCve
added 2007/12/11 9:46 p.m.29 views

CVE-2007-6306

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.9AI score0.0276EPSS
Exploits1References1
OSV
OSV
added 2007/12/11 9:46 p.m.4 views

DEBIAN-CVE-2007-6306

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.9AI score0.0276EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2007/12/11 9:0 p.m.45 views

CVE-2007-6306

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.6AI score0.0276EPSS
Exploits1
Prion
Prion
added 2007/06/07 9:30 p.m.15 views

Code injection

The CERN Image Map Dispatcher htimage.exe in Microsoft FrontPage allows remote attackers to determine the existence, and possibly partial contents, of arbitrary files under the web root via a relative pathname in the PATHINFO...

6.4CVSS7.2AI score0.10857EPSS
Exploits0References3
NVD
NVD
added 2007/06/07 9:30 p.m.21 views

CVE-2007-3109

The CERN Image Map Dispatcher htimage.exe in Microsoft FrontPage allows remote attackers to determine the existence, and possibly partial contents, of arbitrary files under the web root via a relative pathname in the PATHINFO...

6.4CVSS6.7AI score0.10857EPSS
Exploits0References3
CVE
CVE
added 2007/06/07 9:0 p.m.58 views

CVE-2007-3109

The CVE-2007-3109 description in the connected documents identifies the CERN Image Map Dispatcher (htimage.exe) used by Microsoft FrontPage as the affected component. The vulnerability allows remote attackers to determine the existence and potentially partial contents of arbitrary files under the...

6.4CVSS6.7AI score0.10857EPSS
Exploits0References3Affected Software2
securityvulns
securityvulns
added 2007/06/04 12:0 a.m.46 views

CERN İmage Map Dispatcher

CERN Image Map Dispatcher /cgi-bin/htimage.exe comes by default with FrontPage. I found three bugs in "htimage.exe": 1 Gives us the full path to the root directory 2 Simple buffer overflow 3 Allow us to access files. Problem 1 Like I said, the first bug gives us the full path to the root director...

1.4AI score
Exploits0
NVD
NVD
added 2004/08/06 4:0 a.m.18 views

CVE-2004-0528

Netscape Navigator 7.1 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack...

5CVSS6.6AI score0.02334EPSS
Exploits1References3
NVD
NVD
added 2004/08/06 4:0 a.m.22 views

CVE-2004-0527

KDE Konqueror 2.1.1 and 2.2.2 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack...

5CVSS6.6AI score0.05762EPSS
Exploits1References3
Cvelist
Cvelist
added 2004/06/08 4:0 a.m.22 views

CVE-2004-0528

Netscape Navigator 7.1 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack...

6.6AI score0.02334EPSS
Exploits1References3
Cvelist
Cvelist
added 2000/04/26 4:0 a.m.24 views

CVE-2000-0256

Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available through the web site, aka the "Server-Side Image Map Components" vulnerability...

6.5AI score0.11698EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2000/04/23 12:0 a.m.26 views

ADV-150400.txt

------- Legion2000 - Russian Security Team ADV-1504001 ------- www.legion2000.cc ---- INFORMATION ---- Program Name : CERN Image Map Dispatcher Discovered By : Narrow [email protected] --------------------- Problem Description CERN Image Map Dispatcher /cgi-bin/htimage.exe comes by default with...

Exploits0
securityvulns
securityvulns
added 2000/04/22 12:0 a.m.47 views

Ошибки в CERN Image Map Dispatcher (Front Page)

Несколько неприятных ошибок в htimage.exe позволяют получить доступ к любому файлу. Переполнение буфера позволяет выполнить код на сервере...

0.6AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2000/04/21 12:0 a.m.128 views

Microsoft Security Bulletin (MS00-028)

Microsoft Security Bulletin MS00-028 - -------------------------------------- Procedure Available to Eliminate "Server-Side Image Map Components" Vulnerability Originally Posted: April 21, 2000 Summary ======= A procedure is available to eliminate a security vulnerability affecting several web...

0.4AI score
Exploits0
Rows per page
Query Builder