1082 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the EditNews function in ManageNews.php in Simple Machines Forum SMF before 1.1.13, and 2.x before 2.0 RC5, might allow remote authenticated users to inject arbitrary web script or HTML via a saveitems action...
Design/Logic Flaw
Use-after-free vulnerability in WebCore in WebKit before r77705, as used in Google Chrome before 11.0.672.2 and other products, allows user-assisted remote attackers to cause a denial of service application crash or possibly have unspecified other impact via vectors that entice a user to resubmit...
Mandriva Update for openoffice.org MDVA-2011:000 (openoffice.org)
Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDVA-2011:000 openoffice.org Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
eoCMS 0.9 nightly Mullti Vulnerability
Exploit for php platform in category web applications ====================================== eoCMS 0.9 nightly Mullti Vulnerability ====================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/...
Cyber Criminal Underground: The Comics Edition
The criminal underworld is an insular community shrouded in secrecy. That’s helped lend an air of mystique to cyber crime. See also: Bruce Willis in “Die Hard 4: Live Free or Die Hard.”. But it turns out that, like so much else, real life cyber crime is… well… pretty dull. How dull? Comic artist...
qspice security update
0.3.0-54.el55.2 - Fix unsafe accesses + spice: drop libpng from windows components 537849 + libspice: fix unsafe guest data accessing Resolves: 568719 + fix unsafe free call. Resolves: 568723 + spice server: fix unsafe cursor items handling. Resolves: 568719...
CVE-2009-4942
Cross-site request forgery CSRF vulnerability in ACollab 1.2 allows remote attackers to hijack the authentication of arbitrary users for requests that add personal agenda items...
CVE-2009-4942
Technical details (affected versions, root cause, exploit conditions) are not provided in the connected documents. Monitor for updates for additional, verifiable information.
CVE-2009-4942
Cross-site request forgery CSRF vulnerability in ACollab 1.2 allows remote attackers to hijack the authentication of arbitrary users for requests that add personal agenda items...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in ACollab 1.2 allows remote attackers to hijack the authentication of arbitrary users for requests that add personal agenda items...
Mozilla remote code execution with use-after-free in nsTreeSelection
Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors...
Joomla! Component QuickFAQ 1.0.3 - Blind SQL Injection
----------------------------------------------------------------------------------------- Joomla Component comquickfaq BSQL-i Vulnerability ----------------------------------------------------------------------------------------- +Title Joomla Component comquickfaq BSQL-i Vulnerability +Author...
Joomla DJ Classifieds Shell Upload
Exploit Title:Upload Vulnerability in comdjclassifieds Version: Web Application vendor :http://dj-extensions.com/ Date: 2 apr,2010 Dork:inurl:comdjclassifieds Author:Sid3^effects Code : ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 8...
Joomla DJ-Classifieds Extension com_djclassifieds Upload Vulnerability
Exploit for php platform in category web applications ====================================================================== Joomla DJ-Classifieds Extension comdjclassifieds Upload Vulnerability ====================================================================== Dork:inurl:comdjclassifieds...
Joomla! Component com_djClassifieds 0.9.1 - Arbitrary File Upload
Joomla! Component comdjClassifieds 0.9.1 - Arbitrary File Upload Dork:inurl:comdjclassifieds ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888 888.8' 888.8' 888 88b ooo 888' 888' o888o Y8bood8P' 8' 8'...
openSUSE Security Update : firefox35upgrade (firefox35upgrade-2262)
This patch updates Mozilla Firefox from the 3.0 stable branch to the 3.5.9 release. It includes also following security fixes: MFSA 2010-16: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes...
Mozilla Foundation Security Advisory 2010-17
Mozilla Foundation Security Advisory 2010-17 Title: Remote code execution with use-after-free in nsTreeSelection Impact: Critical Announced: March 30, 2010 Reporter: regenrecht via TippingPoint's Zero Day Initiative Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.5.9 Firefox 3.0.19...
Design/Logic Flaw
Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors...
CVE-2010-0175
Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors...
CVE-2010-0175
Use-after-free vulnerability in the nsTreeSelection implementation in Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.9, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors...