27 matches found
EUVD-2005-4199
Malware in sbrugna...
EUVD-2005-4198
Malware in sbrugna...
EUVD-2006-3041
Malware in sbrugna...
EUVD-2005-4197
Malware in sbrugna...
CVE-2005-4204
Cross-site scripting XSS vulnerability in LogiSphere 0.9.9j allows remote attackers to inject arbitrary Javascript via the msg command. NOTE: due to lack of appropriate details by the original researcher, it is unclear whether this issue is distinct from the msg DoS...
LogiSphere 0.9.9 j Search URL NS-query-pat Parameter Traversal Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/15807/info LogiSphere is prone to multiple directory traversal vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to...
LogiSphere 0.9.9 j viewsource.jsp source Parameter Traversal Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/15807/info LogiSphere is prone to multiple directory traversal vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to...
LogiSphere 0.9.9 j URI Multiple Method Traversal Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/15807/info LogiSphere is prone to multiple directory traversal vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to...
CVE-2006-3044
Cross-site scripting XSS vulnerability in LogiSphere 1.6.0 allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected in an error page...
CVE-2006-3044
Cross-site scripting XSS vulnerability in LogiSphere 1.6.0 allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected in an error page...
CVE-2006-3044
CVE-2006-3044 is a documented XSS in LogiSphere 1.6.0. The vulnerability allows remote attackers to inject arbitrary web script or HTML via the URL, with the malicious code reflected in an error page. The NVD entry provides a CVSSv2 base score of 2.6 (LOW) with vector AV:N/AC:H/Au:N/C:N/I:P/A:N. ...
[SA20578] LogiSphere Cross-Site Scripting Vulnerability
---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerabilit...
CVE-2005-4204
Cross-site scripting XSS vulnerability in LogiSphere 0.9.9j allows remote attackers to inject arbitrary Javascript via the msg command. NOTE: due to lack of appropriate details by the original researcher, it is unclear whether this issue is distinct from the msg DoS...
CVE-2005-4202
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via 1 .. dot dot, 2 "..." triple dot, and 3 "..//" sequences in the URL, 4 "../" sequences in the source parameter to viewsource.jsp, or 5 ".." dot dot backslash sequences in the...
CVE-2005-4203
LogiSphere 0.9.9j does not restrict the number of messages that can be sent, which allows remote attackers to cause a denial of service by sending a large number of messages via the msg command. NOTE: due to lack of appropriate details by the original researcher, it is unclear whether this...
CVE-2005-4203
LogiSphere 0.9.9j does not restrict the number of messages that can be sent, which allows remote attackers to cause a denial of service by sending a large number of messages via the msg command. NOTE: due to lack of appropriate details by the original researcher, it is unclear whether this...
CVE-2005-4204
CVE-2005-4204 affects LogiSphere 0.9.9j, where a cross-site scripting (XSS) vulnerability exists that could allow remote attackers to inject arbitrary Javascript via the msg command. The available sources report a persistent description of an XSS issue and note uncertainty whether it is distinct ...
CVE-2005-4204
Cross-site scripting XSS vulnerability in LogiSphere 0.9.9j allows remote attackers to inject arbitrary Javascript via the msg command. NOTE: due to lack of appropriate details by the original researcher, it is unclear whether this issue is distinct from the msg DoS...
CVE-2005-4202
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via 1 .. dot dot, 2 "..." triple dot, and 3 "..//" sequences in the URL, 4 "../" sequences in the source parameter to viewsource.jsp, or 5 ".." dot dot backslash sequences in the...
CVE-2005-4202
CVE-2005-4202 describes multiple directory traversal vulnerabilities in LogiSphere 0.9.9j that allow remote attackers to access arbitrary files. Exploitation paths include URL-based sequences (.., ..., ..//), the source parameter to viewsource.jsp (../), and the NS-query-pat parameter to the sear...