Lucene search
K

1932 matches found

htbridge
htbridge
added 2010/04/29 12:0 a.m.30 views

Multiple Vulnerabilities in NPDS REvolution

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in NPDS REvolution which could be exploited to perform cross-site scripting XSS, script insertion and CSRF attacks and execute arbitrary SQL commands in applications database. 1 Cross-site scripting vulnerabilities ...

7.6CVSS8.2AI score
Exploits0Affected Software1
securityvulns
securityvulns
added 2010/04/22 12:0 a.m.43 views

Secunia Research: e107 Content Management Plugin Script Insertion Vulnerability

====================================================================== Secunia Research 19/04/2010 - e107 Content Management Plugin Script Insertion Vulnerability - ====================================================================== Table of Contents Affected...

3.5CVSS0.8AI score0.01043EPSS
Exploits0
Packet Storm
Packet Storm
added 2010/04/15 12:0 a.m.29 views

RJ-iTop Network Vulnerability Scanner SQL Injection

RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities Vulnerable: v3.0.7.x Vendor: www.rj-itop.com Category: Input Validation Error Impact: SQL injection Details: ========= Multiple SQL Injection Vulnerabilities has been found in DRJ-iTop Network Vulnerability Scanne...

0.4AI score
Exploits0
xssed
xssed
added 2010/04/15 12:0 a.m.61 views

Unfixed Script Insertion vulnerability at www.arsenalislife.com

Security researcher -Chosen-, has submitted on 15/04/2010 a Script Insertion vulnerability affecting www.arsenalislife.com, which at the time of submission ranked 13842876 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/07/2010. It is...

Exploits0References1
myhack58
myhack58
added 2010/04/06 12:0 a.m.26 views

openx advertising system 0DYA-vulnerability warning-the black bar safety net

openx advertising system 0dayoriginal author: YJPS reprint please indicate the Penetration of a foreign station when the discovery and successful use of Using the method first go to the official under a useless plugin and then modify the back to plug in a normal PHP file inserted into a word to...

0.1AI score
Exploits0
xssed
xssed
added 2010/03/11 12:0 a.m.16 views

Unfixed Script Insertion vulnerability at www.megwhitman.com

Security researcher airizon, has submitted on 03/11/2010 a Script Insertion vulnerability affecting www.megwhitman.com, which at the time of submission ranked 2457485 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/12/2011. It is currently...

Exploits0References1
Tenable Nessus
Tenable Nessus
added 2010/03/09 12:0 a.m.27 views

OpenSSL < 0.9.8m Multiple Vulnerabilities

Binary data 801064.prm...

10CVSS7.7AI score0.87264EPSS
Exploits15References4
myhack58
myhack58
added 2010/02/26 12:0 a.m.18 views

In ASP the database insert webshell small conference-vulnerability warning-the black bar safety net

Some time ago, the new cloud management system, dynamic network Forum get a WEBSHELL and this, today, we discuss this aspect of things, in fact, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case?...

7.2AI score
Exploits0
xssed
xssed
added 2010/02/25 12:0 a.m.10 views

Unfixed Script Insertion vulnerability at www2.bazinama.com

Security researcher DevilZ TM, has submitted on 25/02/2010 a Script Insertion vulnerability affecting www2.bazinama.com, which at the time of submission ranked 43669 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/07/2010. It is currently...

7.1AI score
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2010/02/14 12:0 a.m.2 views

MediaWiki Parser Script Insertion (CVE-2006-2611)

A Wiki is generally referred to a collaborative online system that allows many users to easily contribute content by creating web pages that have a common look and feel and that may be changed and revised at any time. MediaWiki is a popular implementation of the Wiki system. It uses a number of P...

4.3CVSS6.9AI score0.01848EPSS
Exploits1
myhack58
myhack58
added 2010/01/30 12:0 a.m.15 views

Sohu 2 0 1 0 show channels exist hung it to the vulnerability 0day-vulnerability warning-the black bar safety net

Together to chat about the show section,not the user input is strict filtering,which leads can be inserted into the malicious code so as to achieve hung it to the object. ! Test code: Copy the code document. write"iframe width='1 0 0 0' height=1 0 0 0' src='http://www.hackqing.cn/mm.htm/iframe";...

0.5AI score
Exploits0
OpenVAS
OpenVAS
added 2009/12/31 12:0 a.m.22 views

SQL-Ledger Multiple Vulnerabilities

This host is running SQL-Ledger and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodsqlledgermultvuln.nasl 5122 2017-01-27 12:16:00Z teissa $ SQL-Ledger Multiple Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009 SecPod, http://www.secpod.com This program i...

7.5CVSS0.2AI score0.01391EPSS
Exploits2References3
xssed
xssed
added 2009/12/26 12:0 a.m.15 views

Unfixed Script Insertion vulnerability at fotografosalmenara.com

Security researcher FZERO, has submitted on 26/12/2009 a Script Insertion vulnerability affecting fotografosalmenara.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It is currently...

7.1AI score
Exploits0References1
xssed
xssed
added 2009/12/01 12:0 a.m.17 views

Unfixed Script Insertion vulnerability at www.tunu.com

Security researcher tenest, has submitted on 12/01/2009 a Script Insertion vulnerability affecting www.tunu.com, which at the time of submission ranked 1583811 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/02/2009. It is currently unfixed...

Exploits0References1
myhack58
myhack58
added 2009/11/28 12:0 a.m.13 views

SSL renegotiation attacks detailed explanation-vulnerability warning-the black bar safety net

English good friends can see my English blog on the original. The attack uses the SSL Protocol renegotiation vulnerability, allowing an attacker to man in the middle attacks way in the communication of the initial portion of the insertion of any selected plaintext. The following assuming you on t...

1.3AI score
Exploits0
Prion
Prion
added 2009/11/02 3:30 p.m.15 views

Design/Logic Flaw

The Backend subcomponent in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13, 4.2.x before 4.2.10, and 4.3.x before 4.3beta2 allows remote authenticated users to place arbitrary web sites in TYPO3 backend framesets via crafted parameters, related to a "frame hijacking" issue...

5.5CVSS6.4AI score0.01976EPSS
Exploits0References6Affected Software1
Drupal
Drupal
added 2009/10/28 12:0 a.m.15 views

SA-CONTRIB-2009-085 - Insert Node - Cross Site Scripting

The Insert Node module provides an input filter that enables a node to be inserted within the body field of another node. The module fails to sanitize the inserted node, making it vulnerable to a cross site scripting XSS attack. Versions affected Insert Node module versions for Drupal 5.x prior t...

6AI score
Exploits0References7
xssed
xssed
added 2009/10/26 12:0 a.m.11 views

Fixed Script Insertion vulnerability at www.rewmi.com

Security researcher warvector, has submitted on 26/10/2009 a Script Insertion vulnerability affecting www.rewmi.com, which at the time of submission ranked 56407 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2010. It is currently fixed...

Exploits0References1
xssed
xssed
added 2009/10/21 12:0 a.m.9 views

Unfixed Script Insertion vulnerability at www.moomountain.com

Security researcher Rockwell, has submitted on 21/10/2009 a Script Insertion vulnerability affecting www.moomountain.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2010. It is currently...

7.1AI score
Exploits0References1
xssed
xssed
added 2009/09/12 12:0 a.m.9 views

Unfixed Script Insertion vulnerability at www.turkishplace.be

Security researcher Killer-TR, has submitted on 09/12/2009 a Script Insertion vulnerability affecting www.turkishplace.be, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2010. It is currently...

Exploits0References1
Rows per page
Query Builder