1931 matches found
drupal -- multiple XSS vulnerabilities
The Drupal Team reports: A bug in input validation and lack of output validation allows HTML and script insertion on several pages. Drupal's XML parser passes unescaped data to watchdog under certain circumstances. A malicious user may execute an XSS attack via a specially crafted RSS feed. This...
eXpBlog-0.3.5.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory: eXpBlog gmx net Application: eXpBlog = 0.3.5 Risk: Low Vendor Status: contaced | replied Vendor Site: www.expblog.de Overview: Quote from www.expblog.de: "Das eXpBlog ist eine beliebte Freeware weBlog Software basierend auf PHP und mySQL...
eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory: eXpBlog = 0.3.5 Cross Site Scripting Vulnerabilities Release Date: 10/09/2006 Last Modified: 10/09/2006 Author: Tamriel tamriel at gmx dot net Application: eXpBlog = 0.3.5 Risk: Low Vendor Status: contaced | replied Vendor Site:...
[Full-disclosure] eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory: eXpBlog = 0.3.5 Cross Site Scripting Vulnerabilities Release Date: 10/09/2006 Last Modified: 10/09/2006 Author: Tamriel tamriel at gmx dot net Application: eXpBlog = 0.3.5 Risk: Low Vendor Status: contaced | replied Vendor Site:...
torrentflux -- User-Agent XSS Vulnerability
Steven Roddis reports that User-Agent string is not properly escaped when handled by torrentflux. This allows for arbitrary code insertion...
[SA22021] Drupal Search Keywords Module Script Insertion
TITLE: Drupal Search Keywords Module Script Insertion SECUNIA ADVISORY ID: SA22021 VERIFY ADVISORY: http://secunia.com/advisories/22021/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Search Keywords 4.x module for Drupal http://secunia.com/product/12050/...
[SA21787] Attachment Mod Attachment Script Insertion Vulnerability
TITLE: Attachment Mod Attachment Script Insertion Vulnerability SECUNIA ADVISORY ID: SA21787 VERIFY ADVISORY: http://secunia.com/advisories/21787/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Attachment Mod 2.x module for phpBB http://secunia.com/product/4371/...
[SA21781] VCD-db Comments Script Insertion Vulnerability
---------------------------------------------------------------------- Want to work within IT-Security? Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit. Currently the following type of positions are available:...
[SA21728] vtiger CRM Script Insertion and Administrative Modules Access
TITLE: vtiger CRM Script Insertion and Administrative Modules Access SECUNIA ADVISORY ID: SA21728 VERIFY ADVISORY: http://secunia.com/advisories/21728/ CRITICAL: Moderately critical IMPACT: Security Bypass, Cross Site Scripting WHERE: From remote SOFTWARE: vtiger CRM 4.x...
How to become a ASP Trojan master-vulnerability warning-the black bar safety net
Name: how to make a picture of the ASP Trojan can display pictures Built an asp file, the content of!-- of i nclude file="ating.jpg"-- 找 一 个 正常 图片 ating.jpg, insert the word Trojan,such as the ice Fox, with ultraedit to hex compiled, insert a picture, in order to run successfully, but also to...
[SA21645] MyBB Avatar / Attachment Script Insertion Vulnerability
TITLE: MyBB Avatar / Attachment Script Insertion Vulnerability SECUNIA ADVISORY ID: SA21645 VERIFY ADVISORY: http://secunia.com/advisories/21645/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: MyBB formerly MyBulletinBoard 1.x http://secunia.com/product/4479/...
[SA21667] PmWiki Table Markups Script Insertion Vulnerability
TITLE: PmWiki Table Markups Script Insertion Vulnerability SECUNIA ADVISORY ID: SA21667 VERIFY ADVISORY: http://secunia.com/advisories/21667/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: PmWiki 2.x http://secunia.com/product/6195/ DESCRIPTION: A...
[SA21610] PHP iAddressBook Cross-Site Scripting and Script Insertion
TITLE: PHP iAddressBook Cross-Site Scripting and Script Insertion SECUNIA ADVISORY ID: SA21610 VERIFY ADVISORY: http://secunia.com/advisories/21610/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: PHP iAddressbook 0.x http://secunia.com/product/11678/...
[SA21611] PHP iAddressBook "cat_name" Script Insertion Vulnerability
TITLE: PHP iAddressBook "catname" Script Insertion Vulnerability SECUNIA ADVISORY ID: SA21611 VERIFY ADVISORY: http://secunia.com/advisories/21611/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: PHP iAddressbook 0.x http://secunia.com/product/11678/ DESCRIPTION:...
[SA21565] indexcity SQL Injection and Script Insertion Vulnerabilities
TITLE: indexcity SQL Injection and Script Insertion Vulnerabilities SECUNIA ADVISORY ID: SA21565 VERIFY ADVISORY: http://secunia.com/advisories/21565/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: indexcity 1.x...
[SA21604] Drupal E-commerce Module Script Insertion Vulnerabilities
---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...
[SA21560] Links Manager SQL Injection and Script Insertion Vulnerabilites
TITLE: Links Manager SQL Injection and Script Insertion Vulnerabilites SECUNIA ADVISORY ID: SA21560 VERIFY ADVISORY: http://secunia.com/advisories/21560/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: Links Manager...
[SA21603] Drupal Easylinks Module Script Insertion and SQL Injection
---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...
Hacking skills: in the Real movie put Trojan horse-vulnerability warning-the black bar safety net
Frequently encountered rm the movie plays when pop-up web pages, has been do not know how, a few days ago saw the mass of software in an article only to know the insertion and removal method, a good dongdong dare not exclusive, in the online search of the three articles, The to everyone. In the...
[SA20990] Juniper Networks DX System Log Script Insertion
---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Reversing must be a passion as your skills will be challenged on a daily basis and you will be working several hours everyday in IDA, Ollydbg, and with BinDiff. Often, it is also requir...