1933 matches found
Unfixed Script Insertion vulnerability at md5cracker.org
Security researcher ByEge, has submitted on 18/05/2011 a Script Insertion vulnerability affecting md5cracker.org, which at the time of submission ranked 615903 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011. It is currently unfixed...
Unfixed Script Insertion vulnerability at www.noticeboardpro.com
Security researcher JonStockton, has submitted on 17/05/2011 a Script Insertion vulnerability affecting www.noticeboardpro.com, which at the time of submission ranked 4143837 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011. It is...
Unfixed Script Insertion vulnerability at host-tracker.com
Security researcher LordTittiS, has submitted on 05/02/2011 a Script Insertion vulnerability affecting host-tracker.com, which at the time of submission ranked 8703 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011. It is currently...
A wish wall program word insertion vulnerability-vulnerability warning-the black bar safety net
| Just looking at a portal of time to sweep a long, long time, and finally found a wishing wall, and then dig the source code. The 0day a wish wall program word insertion vulnerability Also looking for a long time, finally found the source after download nothing can be used to. The 0day a wish wa...
Fedora 13 : ikiwiki-3.20100815.7-1.fc13 (2011-5173)
Update to upstream version 3.20100815.7. Security fixes : - Possible JavaScript insertion via insufficient htmlscrubbing of alternate stylesheets. CVE-2011-1401 - JavaScript insertion via insufficient checking in comments. CVE-2011-0428 - JavaScript insertion via insufficient htmlscrubbing of...
Script Insertion Vulnerabilities in Noah's Classifieds
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in Noah's Classifieds which could be exploited to perform script insertion attacks. 1 Script insertion vulnerability in Noah's Classifieds Input passed to the "col18", "description" and "titlePrefix" parameter in index.php i...
Unfixed Script Insertion vulnerability at dfoto.datateknologer.se
Security researcher istehem, has submitted on 22/03/2011 a Script Insertion vulnerability affecting dfoto.datateknologer.se, which at the time of submission ranked 21368178 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011. It is...
Multiple Vulnerabilities in Mingle Forum wordpress plugin
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in Mingle Forum wordpress plugin which could be exploited to perform script insertion attacks and disclose potentially sensitive information. 1 Script insertion vulnerability in Mingle Forum wordpress plugin Input passed to...
Oracle MySQL Eventum 2.3 Cross Site Scripting
Oracle MySQL Eventum 2.3 Remote Script Insertion Vulnerabilities Vendor: MySQL AB / Oracle Corporation Product web page: http://forge.mysql.com/wiki/Eventum Affected version: 2.2 and 2.3 Summary: Eventum is a user-friendly and flexible issue tracking system that can be used by a support departmen...
Oracle MySQL Eventum 2.3 Remote Script Insertion Vulnerabilities
Summary Eventum is a user-friendly and flexible issue tracking system that can be used by a support department to track incoming technical support requests, or by a software development team to quickly organize tasks and bugs. Description Eventum suffers from a cross-site scripting vulnerability...
Making JPEG Images Copy-Evident
A group of academic researchers at the University of Cambridge has developed a new technique for making JPEG images copy-evident, so that users can tell whether an image has been recompressed and copied. The technique, presented in a paper by Andrew B. Lewis and Markus G. Kuhn, relies on a comple...
Joomla! Cross Site Scripting Vulnerability
The host is running Joomla! and is prone to Cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbjoomlaxssvuln.nasl 7019 2017-08-29 11:51:27Z teissa $ Joomla! Cross Site Scripting Vulnerability Authors: Sooraj KS Copyright: Copyright c 2011 Greenbone Networks GmbH,...
Multiple Vulnerabilities in KaiBB
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in KaiBB which could be exploited to perform script insertions and SQL injection attacks. 1 Script insertion vulnerability in KaiBB Input passed to the "url" BBCode tag is not properly sanitized. A remote attacker c...
Unfixed Script Insertion vulnerability at grou.ps
Security researcher sh3n, has submitted on 12/07/2010 a Script Insertion vulnerability affecting grou.ps, which at the time of submission ranked 16422 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/01/2012. It is currently unfixed. If you...
Unfixed Script Insertion vulnerability at grou.ps
Security researcher sh3n, has submitted on 12/07/2010 a Script Insertion vulnerability affecting grou.ps, which at the time of submission ranked 15782 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It is currently unfixed. If you...
Multiple Vulnerabilities in BLOG:CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BLOG:CMS which could be exploited to perform cross-site scripting, script insertion and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerabilities in BLOG:CMS: CVE-2010-4749 1.1 The...
Multiple Vulnerabilities in Diferior
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Diferior which could be exploited to perform script insertion and cross-site request forgery attacks. 1 Script insertion vulnerability in Diferior: CVE-2010-4850 Input passed to the "postcontent" parameter in...
PGP Desktop Unsigned Data Insertion
SUMMARY PGP Desktop versions are vulnerable to a data insertion vulnerability. Unsigned insecure data could be inserted into OpenPGP messages signed by a trusted source. When the message is decrypted and verified, PGP Desktop may incorrectly identify the message as being fully valid. AFFECTED...
Unfixed Script Insertion vulnerability at www.fuckbook.com
Security researcher sh3n, has submitted on 11/07/2010 a Script Insertion vulnerability affecting www.fuckbook.com, which at the time of submission ranked 23004 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It is currently unfixed...
Mozilla Firefox document.write and DOM insertion memory corruption
Added: 11/04/2010 CVE: CVE-2010-3765 BID: 44425 OSVDB: 68905 Background Firefox is a freely available web browser for multiple platforms including Windows, Linux, and Mac OS. Problem A memory corruption vulnerability allows command execution when a user loads a specially crafted web page containi...