1932 matches found
Multiple Vulnerabilities in NPDS REvolution
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in NPDS REvolution which could be exploited to perform cross-site scripting XSS, script insertion and CSRF attacks and execute arbitrary SQL commands in applications database. 1 Cross-site scripting vulnerabilities ...
Secunia Research: e107 Content Management Plugin Script Insertion Vulnerability
====================================================================== Secunia Research 19/04/2010 - e107 Content Management Plugin Script Insertion Vulnerability - ====================================================================== Table of Contents Affected...
RJ-iTop Network Vulnerability Scanner SQL Injection
RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities Vulnerable: v3.0.7.x Vendor: www.rj-itop.com Category: Input Validation Error Impact: SQL injection Details: ========= Multiple SQL Injection Vulnerabilities has been found in DRJ-iTop Network Vulnerability Scanne...
Unfixed Script Insertion vulnerability at www.arsenalislife.com
Security researcher -Chosen-, has submitted on 15/04/2010 a Script Insertion vulnerability affecting www.arsenalislife.com, which at the time of submission ranked 13842876 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/07/2010. It is...
openx advertising system 0DYA-vulnerability warning-the black bar safety net
openx advertising system 0dayoriginal author: YJPS reprint please indicate the Penetration of a foreign station when the discovery and successful use of Using the method first go to the official under a useless plugin and then modify the back to plug in a normal PHP file inserted into a word to...
Unfixed Script Insertion vulnerability at www.megwhitman.com
Security researcher airizon, has submitted on 03/11/2010 a Script Insertion vulnerability affecting www.megwhitman.com, which at the time of submission ranked 2457485 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/12/2011. It is currently...
OpenSSL < 0.9.8m Multiple Vulnerabilities
Binary data 801064.prm...
In ASP the database insert webshell small conference-vulnerability warning-the black bar safety net
Some time ago, the new cloud management system, dynamic network Forum get a WEBSHELL and this, today, we discuss this aspect of things, in fact, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case?...
Unfixed Script Insertion vulnerability at www2.bazinama.com
Security researcher DevilZ TM, has submitted on 25/02/2010 a Script Insertion vulnerability affecting www2.bazinama.com, which at the time of submission ranked 43669 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/07/2010. It is currently...
MediaWiki Parser Script Insertion (CVE-2006-2611)
A Wiki is generally referred to a collaborative online system that allows many users to easily contribute content by creating web pages that have a common look and feel and that may be changed and revised at any time. MediaWiki is a popular implementation of the Wiki system. It uses a number of P...
Sohu 2 0 1 0 show channels exist hung it to the vulnerability 0day-vulnerability warning-the black bar safety net
Together to chat about the show section,not the user input is strict filtering,which leads can be inserted into the malicious code so as to achieve hung it to the object. ! Test code: Copy the code document. write"iframe width='1 0 0 0' height=1 0 0 0' src='http://www.hackqing.cn/mm.htm/iframe";...
SQL-Ledger Multiple Vulnerabilities
This host is running SQL-Ledger and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodsqlledgermultvuln.nasl 5122 2017-01-27 12:16:00Z teissa $ SQL-Ledger Multiple Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009 SecPod, http://www.secpod.com This program i...
Unfixed Script Insertion vulnerability at fotografosalmenara.com
Security researcher FZERO, has submitted on 26/12/2009 a Script Insertion vulnerability affecting fotografosalmenara.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It is currently...
Unfixed Script Insertion vulnerability at www.tunu.com
Security researcher tenest, has submitted on 12/01/2009 a Script Insertion vulnerability affecting www.tunu.com, which at the time of submission ranked 1583811 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/02/2009. It is currently unfixed...
SSL renegotiation attacks detailed explanation-vulnerability warning-the black bar safety net
English good friends can see my English blog on the original. The attack uses the SSL Protocol renegotiation vulnerability, allowing an attacker to man in the middle attacks way in the communication of the initial portion of the insertion of any selected plaintext. The following assuming you on t...
Design/Logic Flaw
The Backend subcomponent in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13, 4.2.x before 4.2.10, and 4.3.x before 4.3beta2 allows remote authenticated users to place arbitrary web sites in TYPO3 backend framesets via crafted parameters, related to a "frame hijacking" issue...
SA-CONTRIB-2009-085 - Insert Node - Cross Site Scripting
The Insert Node module provides an input filter that enables a node to be inserted within the body field of another node. The module fails to sanitize the inserted node, making it vulnerable to a cross site scripting XSS attack. Versions affected Insert Node module versions for Drupal 5.x prior t...
Fixed Script Insertion vulnerability at www.rewmi.com
Security researcher warvector, has submitted on 26/10/2009 a Script Insertion vulnerability affecting www.rewmi.com, which at the time of submission ranked 56407 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2010. It is currently fixed...
Unfixed Script Insertion vulnerability at www.moomountain.com
Security researcher Rockwell, has submitted on 21/10/2009 a Script Insertion vulnerability affecting www.moomountain.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2010. It is currently...
Unfixed Script Insertion vulnerability at www.turkishplace.be
Security researcher Killer-TR, has submitted on 09/12/2009 a Script Insertion vulnerability affecting www.turkishplace.be, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2010. It is currently...