31 matches found
EUVD-2008-4638
Malware in sbrugna...
EUVD-2008-6648
Malware in sbrugna...
EUVD-2014-7075
Malware in sbrugna...
EUVD-2008-6649
Malware in sbrugna...
EUVD-2014-7074
Malware in sbrugna...
UBUNTU-CVE-2020-29661
A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/ttyjobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b...
openSUSE Security Update : hylafax+ (openSUSE-2020-1209)
This update for hylafax+ fixes the following issues : Hylafax was updated to upstream version 7.0.3. Security issues fixed : - CVE-2020-15396: Secure temporary directory creation for faxsetup, faxaddmodem, and probemodem boo1173521. - CVE-2020-15397: Sourcing of files into binaries from user...
CVE-2014-7200
Cross-site scripting XSS vulnerability in pi1/class.txdmmjobcontrolpi1.php in the JobControl dmmjobcontrol extension 2.14.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via the txdmmjobcontrolpi1searchkeyword parameter to jobs/...
Cross site scripting
Cross-site scripting XSS vulnerability in pi1/class.txdmmjobcontrolpi1.php in the JobControl dmmjobcontrol extension 2.14.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via the txdmmjobcontrolpi1searchkeyword parameter to jobs/...
Sql injection
Multiple SQL injection vulnerabilities in the search function in pi1/class.txdmmjobcontrolpi1.php in the JobControl dmmjobcontrol extension 2.14.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via the 1 education, 2 region, or 3 sector fields, as demonstrated by t...
CVE-2014-7200
Cross-site scripting XSS vulnerability in pi1/class.txdmmjobcontrolpi1.php in the JobControl dmmjobcontrol extension 2.14.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via the txdmmjobcontrolpi1searchkeyword parameter to jobs/...
CVE-2014-7200
CVE-2014-7200 affects the TYPO3 extension JobControl (dmmjobcontrol) up to version 2.14.0. The vulnerability is a Cross-Site Scripting (XSS) in pi1/class.tx_dmmjobcontrol_pi1.php, exploitable via tx_dmmjobcontrol_pi1[search][keyword] to jobs/. The root cause is insufficient escaping of user input...
CVE-2014-7201
CVE-2014-7201 pertains to the TYPO3 extension JobControl (dmmjobcontrol), specifically the pi1 search function. The affected component is the JobControl extension (dmmjobcontrol) version 2.14.0 and earlier. The root cause is multiple SQL injection vulnerabilities in the search fields (education, ...
Typo3 Extension JobControl 2.14.0 - Cross-Site Scripting / SQL Injection
Mogwai Security Advisory MSA-2014-02 ---------------------------------------------------------------------- Title: JobControl dmmjobcontrol Multiple Vulnerabilities Product: dmmjobcontrol Typo3 Extension Affected versions: 2.14.0 Impact: high Remote: yes Product link:...
Typo3 Extension JobControl 2.14.0 - Cross-Site Scripting SQL Injection
Typo3 Extension JobControl 2.14.0 - Cross-Site Scripting SQL Injection Mogwai Security Advisory MSA-2014-02 ---------------------------------------------------------------------- Title: JobControl dmmjobcontrol Multiple Vulnerabilities Product: dmmjobcontrol Typo3 Extension Affected versions:...
Typo3 JobControl 2.14.0 Cross Site Scripting / SQL Injection Vulnerability
Typo3 JobControl version 2.14.0 suffers from cross site scripting and remote SQL injection vulnerabilities. Typo3 no longer provides updates for this extension and it is considered unsafe to use. Title: JobControl dmmjobcontrol Multiple Vulnerabilities Product: dmmjobcontrol Typo3 Extension...
Several vulnerabilities in extension JobControl (dmmjobcontrol)
It has been discovered that the extension "JobControl" dmmjobcontrol is susceptible to Cross-Site Scripting and SQL Injection. Release Date: September 25, 2014 Bulletin update: October 6, 2014 added CVEs Component Type: Third party extension. This extension is not a part of the TYPO3 default...
Sql injection
SQL injection vulnerability in JobControl dmmjobcontrol 1.15.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2008-6689
SQL injection vulnerability in JobControl dmmjobcontrol 1.15.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in JobControl dmmjobcontrol 1.15.0 and earlier extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...