1931 matches found
Fedora Core 6 : php-5.1.6-3.7.fc6 (2007-709)
This update fixes a number of security issues in PHP : - various integer overflow flaws were found in the PHP gd extension. A script that could be forced to resize images from an untrusted source could possibly allow a remote attacker to execute arbitrary code as the apache user. CVE-2007-3996 - ...
Unfixed Script Insertion vulnerability at www.lotusrockstar.com
Security researcher WhatALegend, has submitted on 24/09/2007 a Script Insertion vulnerability affecting www.lotusrockstar.com, which at the time of submission ranked 4210350 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 27/09/2007. It is...
RHEL 4 / 5 : php (RHSA-2007:0890)
The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2007:0890 advisory. - gd / php-gd ImageCreateFromPng infinite loop caused by truncated PNG CVE-2007-2756 - php chunksplit integer overflow CVE-2007-2872 - p...
Unfixed Script Insertion vulnerability at www.urbisunderground.com
Security researcher MoshBat, has submitted on 23/09/2007 a Script Insertion vulnerability affecting www.urbisunderground.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/09/2007. It is currently...
Unfixed Script Insertion vulnerability at snappoll.com
Security researcher st@rext, has submitted on 19/09/2007 a Script Insertion vulnerability affecting snappoll.com, which at the time of submission ranked 134183 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 27/09/2007. It is currently unfixed...
Fixed Script Insertion vulnerability at vu.freehostia.com
Security researcher GURUS, has submitted on 28/08/2007 a Script Insertion vulnerability affecting vu.freehostia.com, which at the time of submission ranked 1052 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/08/2007. It is currently fixed...
tikiwiki -- multiple vulnerabilities
Secunia reports: Some vulnerabilities have been reported in TikiWiki, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks and disclose potentially sensitive information. Input passed to the username parameter in tiki-remindpassword.php when remi...
Unfixed Script Insertion vulnerability at www.sda-india.com
Security researcher sshjason, has submitted on 21/08/2007 a Script Insertion vulnerability affecting www.sda-india.com, which at the time of submission ranked 201014 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/08/2007. It is currently...
Unfixed Script Insertion vulnerability at www.zevkli.org
Security researcher St@rExT, has submitted on 14/08/2007 a Script Insertion vulnerability affecting www.zevkli.org, which at the time of submission ranked 13813 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/08/2007. It is currently unfixed...
Unfixed Script Insertion vulnerability at www.z0ne-h.net
Security researcher St@rExT, has submitted on 14/08/2007 a Script Insertion vulnerability affecting www.z0ne-h.net, which at the time of submission ranked 116177 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/08/2007. It is currently unfixe...
Unfixed Script Insertion vulnerability at webkoleji.net
Security researcher St@rExT, has submitted on 29/07/2007 a Script Insertion vulnerability affecting webkoleji.net, which at the time of submission ranked 2809812 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/08/2007. It is currently unfixe...
Vulnerability against DoS attack at permission setting
Description: This bug is similar like this one: http://jira.atlassian.com/browse/CONF-8978. Exploit: Insert to the "Grant permission to" field x thousand comma without sapce...
Unfixed Script Insertion vulnerability at www.arkadason.net
Security researcher Narcoticxs, has submitted on 19/07/2007 a Script Insertion vulnerability affecting www.arkadason.net, which at the time of submission ranked 1500111 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/08/2007. It is currently...
Unfixed Script Insertion vulnerability at www.shali.tk
Security researcher Narcoticxs, has submitted on 19/07/2007 a Script Insertion vulnerability affecting www.shali.tk, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/08/2007. It is currently unfixed. I...
Unfixed Script Insertion vulnerability at jordanrose.org
Security researcher Narcoticxs, has submitted on 19/07/2007 a Script Insertion vulnerability affecting jordanrose.org, which at the time of submission ranked 3037941 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/08/2007. It is currently...
TISA2007-06-Public.txt
========================================================================= TeamIntell Security Advisory TISA2007-06-Public ------------------------------------------------------------------------- Element CMS "s" parameter script insertion vulnerability...
Unfixed Script Insertion vulnerability at gav.sourceforge.net
Security researcher st@rext, has submitted on 07/10/2007 a Script Insertion vulnerability affecting gav.sourceforge.net, which at the time of submission ranked 132 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/10/2007. It is currently...
Unfixed Script Insertion vulnerability at www.qtzar.com
Security researcher WhatALegend, has submitted on 07/09/2007 a Script Insertion vulnerability affecting www.qtzar.com, which at the time of submission ranked 2711288 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 09/09/2007. It is currently...
Fixed Script Insertion vulnerability at www.dwightwilbanks.org
Security researcher WhatALegend, has submitted on 07/09/2007 a Script Insertion vulnerability affecting www.dwightwilbanks.org, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 09/09/2007. It is currently...
Unfixed Script Insertion vulnerability at z0ne-h.net
Security researcher St@rExT, has submitted on 07/08/2007 a Script Insertion vulnerability affecting z0ne-h.net, which at the time of submission ranked 132988 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/08/2007. It is currently unfixed. I...