13 matches found
Foxit PhantomPDF < 10.1.12 Multiple Vulnerabilities
According to its version, the Foxit PhantomPDF application formally known as Phantom installed on the remote Windows host is prior to 10.1.12. It is, therefore affected by multiple vulnerabilities: - Addressed a potential issue where the application could be exposed to Remote Code Execution...
Foxit PDF Reader < 11.0.1 Multiple Vulnerabilities (macOS)
The version of Foxit PDF Reader for Mac installed on the remote macOS host is prior to 11.0.1. It is, therefore, affected by multiple vulnerabilities: - Multiple remote code execution vulnerabilities exist in Foxit PDF Reader due to use-after-free errors when handling certain Javascripts. An...
Cross-Site Scripting (XSS)
mailman is vulnerable to cross-site scripting XSS. A listowner is able to inject and execute arbitrary Javascripts in a user's browser via the listinfo pages...
CVE-2019-19368
A Reflected Cross Site Scripting was discovered in the Login page of Rumpus FTP Web File Manager 8.2.9.1. An attacker can exploit it by sending a crafted link to end users and can execute arbitrary Javascripts...
Cross site scripting
A Reflected Cross Site Scripting was discovered in the Login page of Rumpus FTP Web File Manager 8.2.9.1. An attacker can exploit it by sending a crafted link to end users and can execute arbitrary Javascripts...
CVE-2019-19368
A Reflected Cross Site Scripting was discovered in the Login page of Rumpus FTP Web File Manager 8.2.9.1. An attacker can exploit it by sending a crafted link to end users and can execute arbitrary Javascripts...
Cross site scripting
An XSS issue was discovered on the Job Edit page in Rundeck Community Edition before 3.0.13, related to assets/javascripts/workflowStepEditorKO.js and views/execution/wfitemEdit.gsp...
WiFi-Pumpkin v0.7.5 - Framework for Rogue Wi-Fi Access Point Attack
WiFi-Pumpkin is a security tool that provides the Rogue access point to Man-In-The-Middle and network attacks. Installation Kali 2.0/WifiSlax 4.11.1/Parrot 2.0.5 Python 2.7 git clone https://github.com/P0cL4bs/WiFi-Pumpkin.git cd WiFi-Pumpkin chmod +x installer.sh ./installer.sh --install refer t...
Espo CRM Cross Site Scripting
Affected software: http://www.espocrm.com/demo/ Discovered by: Ankit Bharathan Website: ankitbharathan.blogspot.com Type of vulnerability: Stored xss Description: A web application that allows you to see, enter and evaluate all your company relationships regardless of the type. People, companies,...
ICQ vulnerable to account theft using JavaScripts
ICQ vulnerable to account theft using JavaScripts In security advisories for ICQ and the ICQ web site , security researcher Levent Kayan warns that both the ICQ instant messenger for Windows and the ICQ web site contain vulnerabilities that potentially allow attackers to take control of a user's...
ClusterMaps - Cross Site Scripting Vulnerability
Document Title: =============== ClusterMaps - Cross Site Scripting Vulnerability Release Date: ============= 2011-07-25 Vulnerability Laboratory ID VL-ID: ==================================== 135 Product & Service Introduction: =============================== Do you know your audience? You will...
gmailsteal_local.scpt.txt
-- This script can be used to steal gmail's keychained password by injecting -- Javascripts into Safari. When executed it opens gmail's login page, reads -- saved password and prompts it into an alert box. -- It can be easly modified to steal other pass. -- poplix papuasia.org --...
SUSE-SA:2007:009: opera
The remote host is missing the patch for the advisory SUSE-SA:2007:009 opera. This update brings the Opera Web browser to version 9.10, including fixes for the following 2 security problems: - CVE-2007-0126: Opera processes a JPEG DHT marker incorrectly, which can potentially lead to remote code...