Lucene search
+L

34 matches found

Openbugbounty
Openbugbounty
added 2018/03/09 1:42 p.m.8 views

jonas-v.de XSS vulnerability

Open Bug Bounty ID: OBB-577328 Description| Value ---|--- Affected Website:| jonas-v.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.2AI score
Exploits0
Apache Tomcat
Apache Tomcat
added 2018/01/31 12:0 a.m.29 views

Fixed in Apache Tomcat Native Connector 1.2.16

Note: The issue below was fixed in Apache Tomcat Native Connector 1.2.15 but the release vote for the 1.2.15 release candidate did not pass. Therefore, although users must download 1.2.16 to obtain a version that includes the fix for this issue, version 1.2.15 is not included in the list of...

5.9CVSS5.8AI score0.03527EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2015/07/03 5:12 a.m.47 views

Critical: Red Hat Security Advisory: firefox security update

Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

10CVSS6.5AI score0.06181EPSS
Exploits0References11
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

JOnAS 4.10.3 'select' Parameter Error Page Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33912/info JOnAS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2011/02/19 8:2 a.m.8 views

Joe Jonas's Twitter Got Hacked !!

Joe Jonas braves the rain to go shopping at Fred Segal with a pal on Friday February 18 in West Hollywood, Calif. The same day, the 21-year-old singer's girlfriend, Ashley Greene, was spotted at LAX grabbing some Starbucks at LAX. Joe recently had to deal with some problems on his Twitter page...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2009/02/26 12:0 a.m.48 views

[DSECRG-09-008] JOnAS(4.10.3) - Linked XSS Vulnerability

Digital Security Research Group DSecRG Advisory DSECRG-09-008 ------------------link to original advisory -------------------------- http://www.dsecrg.com/pages/vul/show.php?id=81 Application: JOnAS Java Open Application Server Versions Affected: JOnAS4.10.3 / Apache Tomcat 5.5.26 Vendor URL:...

6.3AI score
Exploits0
exploitpack
exploitpack
added 2009/02/25 12:0 a.m.18 views

JOnAS 4.10.3 - select Error Page Cross-Site Scripting

JOnAS 4.10.3 - select Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/33912/info JOnAS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2009/02/25 12:0 a.m.39 views

JOnAS Cross Site Scripting

Digital Security Research Group DSecRG Advisory DSECRG-09-008 ------------------link to original advisory -------------------------- http://www.dsecrg.com/pages/vul/show.php?id=81 Application: JOnAS Java Open Application Server Versions Affected: JOnAS4.10.3 / Apache Tomcat 5.5.26 Vendor URL:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/02/25 12:0 a.m.16 views

JOnAS 4.10.3 - 'select' Error Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/33912/info JOnAS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

7.4AI score
Exploits0
NVD
NVD
added 2006/12/08 1:28 a.m.14 views

CVE-2006-6394

SQL injection vulnerability in certain database classes in Jonas Gauffin Publicera 1.0-rc2 and earlier might allow remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS8.4AI score0.01117EPSS
Exploits0References4
CVE
CVE
added 2006/12/08 1:0 a.m.36 views

CVE-2006-6393

CVE-2006-6393 is an XSS vulnerability in Jonas Gauffin Publicera 1.0-rc2 and earlier. The issue arises from InputFilter::getString, allowing remote attackers to inject arbitrary script/HTML via unspecified vectors. Documented impact is client-side data/script integrity and potential user interact...

6.8CVSS5.9AI score0.01204EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2006/12/08 1:0 a.m.54 views

CVE-2006-6394

The CVE-2006-6394 entry describes an SQL injection vulnerability in certain database classes of Jonas Gauffin Publicera 1.0-rc2 and earlier, potentially allowing remote attackers to execute arbitrary SQL commands via unspecified vectors. Affected software: Jonas Gauffin Publicera 1.0-rc2 and earl...

7.5CVSS8.8AI score0.01117EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2006/12/08 1:0 a.m.23 views

CVE-2006-6393

Cross-site scripting XSS vulnerability in Jonas Gauffin Publicera 1.0-rc2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the InputFilter::getString function...

5.7AI score0.01204EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2006/06/14 5:45 p.m.63 views

USN-297-1: Thunderbird vulnerabilities

Jonas Sicking discovered that under some circumstances persisted XUL attributes are associated with the wrong URL. A malicious web site could exploit this to execute arbitrary code with the privileges of the user. MFSA 2006-35, CVE-2006-2775 Paul Nickerson discovered that content-defined setters ...

9.3CVSS9AI score0.07251EPSS
Exploits0
Rows per page
Query Builder