305 matches found
CVE-2008-1300
Cross-site scripting XSS vulnerability in the Logfile Viewer Settings function in system/workplace/admin/workplace/logfileview/logfileViewSettings.jsp in Alkacon OpenCms 7.0.3 and 7.0.4 allows remote attackers to inject arbitrary web script or HTML via the filePath.0 parameter in a save action, a...
CVE-2008-1300
CVE-2008-1300 describes a cross-site scripting (XSS) vulnerability in Alkacon OpenCms, specifically in the Logfile Viewer Settings function (system/workplace/admin/workplace/logfileview/logfileViewSettings.jsp) in OpenCms 7.0.3 and 7.0.4. The flaw allows remote attackers to inject arbitrary web s...
Alkacon OpenCms logfileViewSettings.jsp XSS, file disclosure
Alkacon OpenCms logfileViewSettings.jsp XSS, file disclosure Product: Alkacon OpenCms http://www.opencms.org/ OpenCms contains a vulnerability in the Logfile Viewer Settings function. Input to Parameter filePath.0 in page opencms/system/workplace/admin/workplace/logfileview/logfileViewSettings.js...
Rejetto HTTP File Server (HFS) 1.52.x - Multiple Vulnerabilities
Rejetto HTTP File Server HFS 1.52.x - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/27423/info HFS HTTP File Server is prone to multiple security vulnerabilities, including cross-site scripting issues, an information-disclosure issue, an arbitrary file-creation issue, a...
Debian Security Advisory DSA 1188-1 (mailman)
The remote host is missing an update to mailman announced via advisory DSA 1188-1. Several security related problems have been discovered in mailman, the web-based GNU mailing list manager. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-3636 Moritz...
March Networks DVR 3204 Logfile Information Disclosure Exploit
No description provided by source. !/usr/bin/perl March Networks DVR 3204 Logfile Information Disclosure Exploit Since configuration of the IP address, user console and root is carried out over the "administrator console", the vulnerability lies within Watchdog's HTTP server application. Any user...
dvr3204_exp.txt
!/usr/bin/perl March Networks DVR 3204 Logfile Information Disclosure Exploit Since configuration of the IP address, user console and root is carried out over the "administrator console", the vulnerability lies within Watchdog's HTTP server application. Any user can obtain the log files without...
March Networks DVR 3204 Logfile Information Disclosure Exploit
Exploit for hardware platform in category remote exploits ============================================================== March Networks DVR 3204 Logfile Information Disclosure Exploit ============================================================== !/usr/bin/perl March Networks DVR 3204 Logfile...
March Networks DVR 3204 - Logfile Information Disclosure
March Networks DVR 3204 - Logfile Information Disclosure !/usr/bin/perl March Networks DVR 3204 Logfile Information Disclosure Exploit Since configuration of the IP address, user console and root is carried out over the "administrator console", the vulnerability lies within Watchdog's HTTP server...
March Networks DVR 3204 - Logfile Information Disclosure
!/usr/bin/perl March Networks DVR 3204 Logfile Information Disclosure Exploit Since configuration of the IP address, user console and root is carried out over the "administrator console", the vulnerability lies within Watchdog's HTTP server application. Any user can obtain the log files without...
mailman security and bug fix update
2.1.5.1-34.rhel4.6 - fix 200036 - canceling subscription confirmation crashes mailman - fix 205651 - CVE-2006-4624 logfile CRLF injection - fix 230939 - missing migrate-fhs script - fix 223191 - spam filters gets deleted when sender filter is edited - fix 242677 - wrong init script...
Buffer overflow
Multiple buffer overflows in the AMX NetLinx VNC AmxVnc ActiveX control in AmxVnc.dll 1.0.13.0 allow remote attackers to execute arbitrary code via long 1 Host, 2 Password, or 3 LogFile property values...
AMX Corp. VNC ActiveX Control - AmxVnc.dll 1.0.13.0 Remote Buffer Overflow
AMX Corp. VNC ActiveX Control - AmxVnc.dll 1.0.13.0 Remote Buffer Overflow 'metasploit one, add a user "su" with pass "tzu" scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%49%49%49%49%49%49%37%49%49%49%49%49%49%49%49%49%49%49%51%5a%6a%44%58%50%30%41%30%41%6b%41%41%54%42%41%32%41%41%32%4...
AMX Corp. VNC ActiveX Control (AmxVnc.dll 1.0.13.0) BoF Exploit
Exploit for unknown platform in category remote exploits =============================================================== AMX Corp. VNC ActiveX Control AmxVnc.dll 1.0.13.0 BoF Exploit =============================================================== script language='...
CVE-2007-2667
Buffer overflow in the DB Software Laboratory VImpX ActiveX control in VImpX.ocx 4.7.3 allows remote attackers to execute arbitrary code via a long LogFile parameter...
Buffer overflow
Buffer overflow in the DB Software Laboratory VImpX ActiveX control in VImpX.ocx 4.7.3 allows remote attackers to execute arbitrary code via a long LogFile parameter...
shoutcast-xss.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +--------------------------------------- - -- - | SaMuschie Research Labs proudly presents . . . +------------------------------------------- -- - - | Application: Nullsoft ShoutcastServer | Version: 1.9.7/Win32 other versions/platforms not tested |...
[SA23632] OpenVMS Audit Logfile Password Exposure
TITLE: OpenVMS Audit Logfile Password Exposure SECUNIA ADVISORY ID: SA23632 VERIFY ADVISORY: http://secunia.com/advisories/23632/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: Local system OPERATING SYSTEM: OpenVMS 8.x http://secunia.com/product/6052/ DESCRIPTION: A...
[SECURITY] [DSA 1188-1] New mailman packages fix several problems
-------------------------------------------------------------------------- Debian Security Advisory DSA 1188-1 [email protected] http://www.debian.org/security/ Martin Schulze October 4th, 2006 http://www.debian.org/security/faq -...
DSA-1188-1 mailman
Bulletin has no description...