1931 matches found
Unfixed Script Insertion vulnerability at www.urlshare.org
Security researcher DarkToxic, has submitted on 03/03/2007 a Script Insertion vulnerability affecting www.urlshare.org, which at the time of submission ranked 1096735 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/03/2007. It is currently...
Unfixed Script Insertion vulnerability at www.zurna.com
Security researcher i-landet, has submitted on 24/02/2007 a Script Insertion vulnerability affecting www.zurna.com, which at the time of submission ranked 54886 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/02/2007. It is currently unfixed...
[Full-disclosure] Secunia Research: MailEnable Web Mail Client Multiple Vulnerabilities
====================================================================== Secunia Research 14/02/2007 - MailEnable Web Mail Client Multiple Vulnerabilities - ====================================================================== Table of Contents Affected...
Unfixed Script Insertion vulnerability at www.sceneupload.com
Security researcher GURUS, has submitted on 02/04/2007 a Script Insertion vulnerability affecting www.sceneupload.com, which at the time of submission ranked 246579 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/04/2007. It is currently...
[SA23908] Drupal Project Module Script Insertion Vulnerability
TITLE: Drupal Project Module Script Insertion Vulnerability SECUNIA ADVISORY ID: SA23908 VERIFY ADVISORY: http://secunia.com/advisories/23908/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Drupal Project Module 4.x http://secunia.com/product/12912/ DESCRIPTION:...
[SA23754] WebGUI User Name Script Insertion Vulnerability
TITLE: WebGUI User Name Script Insertion Vulnerability SECUNIA ADVISORY ID: SA23754 VERIFY ADVISORY: http://secunia.com/advisories/23754/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: WebGUI 7.x http://secunia.com/product/13252/ DESCRIPTION: A vulnerabili...
Unfixed Script Insertion vulnerability at oc.course.com
Security researcher chaunchothenacho, has submitted on 01/11/2007 a Script Insertion vulnerability affecting oc.course.com, which at the time of submission ranked 40208 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/11/2007. It is currently...
Unfixed Script Insertion vulnerability at www.mastermindtoys.com
Security researcher tenest, has submitted on 01/10/2007 a Script Insertion vulnerability affecting www.mastermindtoys.com, which at the time of submission ranked 168166 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/10/2007. It is currently...
Unfixed Script Insertion vulnerability at randomdude.com
Security researcher Mutant, has submitted on 01/10/2007 a Script Insertion vulnerability affecting randomdude.com, which at the time of submission ranked 1337729 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/10/2007. It is currently unfixe...
Unfixed Script Insertion vulnerability at www.mastermindtoys.com
Security researcher tenest, has submitted on 01/10/2007 a Script Insertion vulnerability affecting www.mastermindtoys.com, which at the time of submission ranked 168166 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/10/2007. It is currently...
[SA23484] OvBB Script Insertion Vulnerability
TITLE: OvBB Script Insertion Vulnerability SECUNIA ADVISORY ID: SA23484 VERIFY ADVISORY: http://secunia.com/advisories/23484/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: OvBB 0.x http://secunia.com/product/13131/ DESCRIPTION: A vulnerability has been...
phpProfiles <= 3.1.2b Multiple Remote File Include Vulnerabilities
Exploit for unknown platform in category web applications ================================================================== phpProfiles + include/account.inc.php, lines 09: include"$incpath/footer.inc.php"; + include/index.inc.php, lines 05: include"$incpath/adminerr.inc.php"; + ... see below fo...
Let you become the ASP Trojan master-vulnerability warning-the black bar safety net
Name: how to make a picture of the ASP Trojan can display pictures Built an asp file, the content of!-- of i nclude file="ating.jpg"-- 找 一 个 正常 图片 ating.jpg, insert the word Trojan,such as the ice Fox, with ultraedit to hex compiled, insert a picture, for A Run is successful, but also to...
thinkedit-rfi.txt
r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com ThinkEdit Remote File Inclusion Exploit Software: ThinkEdit 1.9.2 Vendor: http://www.thinkedit.org/ Released: 2006/12/08 Discovered & Exploit By: r0ut3r writ3r at gmail.com Note: The information provided in this document is for...
jambook.txt
------=Part12610429492606.1164565546478 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Advisory 14 Title: Mambo component "jambook" Html injection Vulnerability Author: 0ozeuso0 Arturo Z. Contact: zeus at diosdelared.com...
[SA22864] Netquery "User-Agent" HTTP Header Script Insertion
TITLE: Netquery "User-Agent" HTTP Header Script Insertion SECUNIA ADVISORY ID: SA22864 VERIFY ADVISORY: http://secunia.com/advisories/22864/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Netquery 4.x http://secunia.com/product/12587/ DESCRIPTION: Tal Argoni has...
Covert insertion-type ASP-Trojan-vulnerability warning-the black bar safety net
Get website the webshell, if the administrator found, then your horse is useless, deleted! Administrators are also not are exists to eat, so we have to hide our WEBSHELL, the following is about ASP insert-Trojan several the use of method is not easy to be foundOh I got a webshell to everyone to d...
TorrentFlux ?file? Script Insertion
TITLE: TorrentFlux ?file? Script Insertion CRITICAL: Moderate IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: TorrentFlux 2.x DESCRIPTION: I have discovered a vulnerability in TorrentFlux, which can be exploited by malicious users to conduct script insertion attacks. Input passed to the...
TorrentFlux ?action? Script Insertion
TorrentFlux ?action? Script Insertion TITLE: TorrentFlux ?action? Script Insertion CRITICAL: Not Critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: TorrentFlux 2.x DESCRIPTION: I have discovered a vulnerability in TorrentFlux, which can be exploited by malicious users to conduct...
drupal -- multiple XSS vulnerabilities
The Drupal Team reports: A bug in input validation and lack of output validation allows HTML and script insertion on several pages. Drupal's XML parser passes unescaped data to watchdog under certain circumstances. A malicious user may execute an XSS attack via a specially crafted RSS feed. This...