IBM SPSS Data Collection CVE-2013-0464跨站脚本漏洞

Bugtraq ID:60246 CVE ID:CVE-2013-0464 IBM SPSS Data Collection是全球业界领先的问卷调查、市场研究以及客户行为分析的专业解决方案。 IBM SPSS Data Collection存在一个输入验证漏洞，允许远程攻击者利用漏洞注入恶意脚本或HTML代码，当恶意数据被用户查看时可获取敏感信息或劫持用户会话。 0 IBM SPSS Data Collection 6.0.1 IBM SPSS Data Collection 6.0 IBM SPSS Data Collection 7.0 用户可参考如下厂商提供的安全公告获得补丁程序：...

OpenDocMan 1.2.6.5 - Persistent Cross-Site Scripting

Exploit Title: OpenDocMan 1.2.6.5 Stored/Reflective XSS Date: 05/04/2013 Exploit Author: drone @dronesec More Exploit Information: Vendor Homepage: http://www.opendocman.com/ Software Link: http://sourceforge.net/projects/opendocman/files/opendocman/1.2.6.5/opendocman-1.2.6.5.zip/download Version...

Passenger passenger witkey system CSRF+getshell-a vulnerability warning-the black bar safety net

Registered members 2, The http://127.0.0.1/index.php?do=user&view=message&msgtype=write 3, is sent to the admin, the following is a csrf, the purpose is to add an administrator account kppw password kppwkppw script src=http://127.0.0.1/control/admin/index. php?...

[Converter v0.7] Analyzing and Deobfuscating Malicious Scripts

Malicious Java applets have been making news for awhile so I thought I would update Converter to include some new features to help with deobfuscating them. This is a list of changes made to this version: + Replaced Binary-to/from-Text with Binary-to/from-Hex to make it more useful + Added Filter...

FortiMail IBE - Exception & Filter Bypass Vulnerability

Document Title: =============== FortiMail IBE - Exception & Filter Bypass Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=772 Download: http://www.vulnerability-lab.com/resources/videos/772.wmv View: http://www.youtube.com/watch?v=5d7cIaM80oY Advisory:...

OrangeHRM 2.7.1 Vacancy Name Persistent XSS

OrangeHRM1 2.7.12 -- the latest stable release as of this writing -- suffers from a persistent XSS in the vacancy name variable. Steps: 1. Navigate to following URL: http://domain/symfony/web/index.php/recruitment/viewJobVacancy 2. Add or Edit a Vacancy 3. In the Vacancy Name parameter put XSS...

Vulnerability in HTC website allow attacker to hijack accounts

Thamatam Deepak Mr.47™ reported a Cross site scripting XSS Vulnerability and cookie handling in HTC website, that allow an attacker to HTC website hijack accounts. Mr. Deepak is a 16 years old whitehat hacker, listed in Apple Hall of Fame with 'The Hacker News' researcher Mohit Kumar this month...

XSS Vulnerability in Apple website

A 16 years old Spanish Whitehat hacker going by name "The Pr0ph3t" found XSS Vulnerability on Apple website. The Vulnerability reported in Apple subdomain - https://locate.apple.com, where users can choose a service center location. About Cross site scripting : Cross-Site Scripting attacks are a...

300% Increase in malnets Attack in the past six months

Blue Coat systems has undertaken detailed research into the use of 'malnets' by criminals to help support their various attacks in order to uncover the best ways to take down these systems. Botnet infections are commonly spread though compromised websites seeded with malicious scripts and promote...

The Tale of One Thousand and One DSL Modems

This is the description of an attack happening in Brazil since 2011 using 1 firmware vulnerability, 2 malicious scripts and 40 malicious DNS servers, which affected 6 hardware manufacturers, resulting in millions of Brazilian internet users falling victim to a sustained and silent mass attack on...

Cross-site Scripting Vulnerability in JP1/Integrated Management - Service Support

Overview A cross-site scripting vulnerability was found in JP1/Integrated Management - Service Support. Impact Remote users can exploit this vulnerability to execute malicious scripts. Solution Please refer to the 'Vendor Information' section for the official countermeasure and take appropriate...

Certain characters in HTML can incorrectly be ignored, which can facilitate XSS attacks

Sites that allow content to be provided by untrusted users, such as forums and blogging sites, typically sanitize the untrusted content to ensure that it does not contain any harmful content, such as malicious scripts. When certain characters appear at specific locations within HTML markup, they...

Zabbix 2.0.1 - Session Extractor

!/usr/bin/python import re import sys,urllib2,urllib print "\n Zabbix 2.0.1 Session Extractor 0day" print " http://www.offensive-security.com" print "\n" ''' The sessions found by this tool may allow you to access the scripts.php file. Through this web interface, an administrator can define new...

Zabbix 2.0.1 and Earlier Session Extractor 0day

Exploit for php platform in category web applications !/usr/bin/python import re import sys,urllib2,urllib print "\n Zabbix 2.0.1 Session Extractor 0day" print " http://www.offensive-security.com" print "\n" ''' The sessions found by this tool may allow you to access the scripts.php file. Through...

Zabbix 2.0.1 - Session Extractor

Zabbix 2.0.1 - Session Extractor !/usr/bin/python import re import sys,urllib2,urllib print "\n Zabbix 2.0.1 Session Extractor 0day" print " http://www.offensive-security.com" print "\n" ''' The sessions found by this tool may allow you to access the scripts.php file. Through this web interface, ...

Yellow Pages module XSS vulnerability to get PHPCMS V9 admin permissions and repair programme-vulnerability warning-the black bar safety net

Principles PHPCMS in the background is by the Cookie with the QueryString in pchash to determine whether you are a system administrator, wherein the Cookie is there the user local, pchash is the presence of the site database. If you get both and in the configuration of the browser environment the...

CMS Wizard Cross Site Scripting

================================================================= -=CMS wizard Cross Site Scripting ================================================================= Author: XaDaL Date: 14-02-2012 vendor: http://www.cmswizard.co.uk/ tested on: windows mobile dork : powered by CMS wizard This...

Cryptome Webpages infected with Blackhole exploit kit

Cryptome Webpages infected with Blackhole exploit kit Cryptome.org a popular website and similar to Wikileaks was hacked by the cybercriminals & Attackers were able to hide malicious scripts on every one of the site's 6,000 pages. Anyone visiting with a vulnerable browser will have found themselv...

ATMAIL WebMail Admin v6.3.4 - Multiple Vulnerabilities

Document Title: =============== ATMAIL WebMail Admin v6.3.4 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=376 Release Date: ============= 2012-01-07 Vulnerability Laboratory ID VL-ID: ==================================== 376...

Winn Guestbook 2.4.8c Cross Site Scripting

Exploit Title: Winn Guestbook v2.4.8c Stored XSS Date: 12/29/11 Author: G13 Software Link: http://code.google.com/p/winn-guestbook/, http://www.winn.ws Version: 2.4.8c Category: webapps php CVE: 2011-5026 Vulnerability There is no sanitation on the input of the name variable. This allows maliciou...