2585 matches found
Joomla Google Maps Remote File Inclusion
========================================================== Joomla Component comgooglemaps Remote File Inclusion =========================================================== WWw.HaCkTeacH.oRg/cc +===================================================================================+ ?Joomla Component...
Joomla Component com_google_maps Remote File Inclusion Vulnerability
Exploit for php platform in category web applications ==================================================================== Joomla Component comgooglemaps Remote File Inclusion Vulnerability ====================================================================...
Google Maps Cross Site Scripting
Google Maps XSS currently unpatched Discovered By - Pratul Agrawal [email protected] Gaurav Baruah [email protected] PoC -...
jpgraph2 -- XSS vulnerability
Martin Barbella reports: JpGraph is an object oriented library for PHP that can be used to create various types of graphs which also contains support for client side image maps. The GetURLArguments function for the JpGraph's Graph class does not properly sanitize the names of get and post...
Mozilla Seamonkey Multiple Vulnerabilities (Nov 2009) - Windows
Mozilla Seamonkey browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mozilla Seamonkey Multiple Vulnerabilities (Nov 2009) - Linux
Mozilla Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mozilla Seamonkey Multiple Vulnerabilities Nov-09 (Windows)
This host is installed with Mozilla Seamonkey browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbseamonkeymultvulnnov09win.nasl 4869 2016-12-29 11:01:45Z teissa $ Mozilla Seamonkey Multiple Vulnerabilities Nov-09 Windows Authors: Sharath S Copyright: Copyright c...
kernel: /proc/$pid/maps visible during initial setuid ELF loading
The mmformaps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local users to read 1 maps and 2 smaps files under proc/ via vectors related to ELF loading, a setuid process, and a race condition...
SA-CONTRIB-2009-067 Dex module - Cross Site Scripting, no longer maintained
The Dex: Contact Information Manager module enables contact information management with Google Maps and Yahoo Maps compatible geocoding. The module suffers from a Cross Site Scripting XSS vulnerability. Such an attack may lead to a malicious user gaining full administrative access. This module is...
RHEL 4 : kernel (RHSA-2009:1132)
Updated kernel packages that fix several security issues and various bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
Memcached stats maps命令信息泄露漏洞
BUGTRAQ ID: 34756 CVECAN ID: CVE-2009-1255 Memcached是一个开源的多平台数据库缓存软件。 如果远程攻击者连接到了memcached的TCP端口(默认11211)并发布了stats maps命令,Memcached就会直接将/proc/self/maps的输出管道传输给客户端。这可能导致泄漏所分配内存区域的地址。 Danga Interactive memcached 1.2.7 MemcacheDB MemcacheDB 1.2 Danga Interactive -----------------...
DEBIAN-CVE-2009-1255
The processstat function in 1 Memcached before 1.2.8 and 2 MemcacheDB 1.2.0 discloses a the contents of /proc/self/maps in response to a stats maps command and b memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain sensitive information such ...
memcached -- memcached stats maps Information Disclosure Weakness
Secunia reports: A weakness has been reported in memcached, which can be exploited by malicious people to disclose system information. The weakness is caused due to the application disclosing the content of /proc/self/maps if a stats maps command is received. This can be exploited to disclose e.g...
CVE-2008-4908
CVE-2008-4908 affects CrossFire’s maps package, specifically maps/Info/combine.pl in crossfire-maps 1.11.0 . The vulnerability is a local-file overwrite through a symlink attack on a temporary file, allowing local users to overwrite arbitrary files. The available connected documents confirm the v...
CVE-2008-4908
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
CVE-2008-4908
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
CVE-2008-4908
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
DEBIAN-CVE-2008-4908
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
FreeBSD Ports: apache
The remote host is missing an update to the system as announced in the referenced advisory. VID 9fff8dc8-7aa7-11da-bf72-00123f589060 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
httpd cross-site scripting flaw in mod_imap
Cross-site scripting XSS vulnerability in the modimap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps...