13 matches found
EUVD-2006-3361
Malware in sbrugna...
EUVD-2008-3176
Malware in sbrugna...
RTMPDump librtmp AMF3 MemberName Denial of Service Vulnerability
Talos Vulnerability Report TALOS-2016-0066 RTMPDump librtmp AMF3 MemberName Denial of Service Vulnerability January 7, 2016 CVE Number CVE-2015-8270 Description The vulnerability occurs within the AMF3ReadString function within amf.c. If an attacker sets up a malicious RTMP Media server that...
Chipmunk Blog cat.php membername Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29883/info Chipmunk Blog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in th...
Chipmunk Blog members.php membername Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29883/info Chipmunk Blog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in th...
Chipmunk Blog photos.php membername Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29883/info Chipmunk Blog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in th...
KingView 6.53 - ActiveX Remote File Creation / Overwrite (KChartXY)
No description provided by source. !-- KingView ActiveX Control KChartXY Remote File Creation / Overwrite Vendor: http://www.wellintech.com Version: KingView 6.53 Tested on: Windows XP SP3 / IE Download: http://www.wellintech.com/documents/KingView6.53EN.zip Author: Blake CLSID:...
KingView 6.53 - ActiveX Remote File Creation / Overwrite (KChartXY)
Exploit for windows platform in category local exploits arg1="..................................\WINDOWS\win.ini" target.SaveToFile arg1 0day.today 2018-03-13...
KingView 6.53 Active-X File Overwrite / Creation
arg1="..................................\WINDOWS\win.ini" target.SaveToFile arg1...
Crystal Report Viewer 8.0.0.371 Denial Of Service
Crystal Reporting Viewer v8.0.0.371 Author: Matthew Bergin Website: www.berginpentesting.com Website: www.smashthestack.org targetFile = "C:\WINDOWS\system32\crviewer.dll" prototype = "Sub SearchByFormula ByVal formula As String " memberName = "SearchByFormula" progid = "CRVIEWERLib.CRViewer"...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Chipmunk Blog Blogger allow remote attackers to inject arbitrary web script or HTML via the membername parameter to 1 members.php, 2 comments.php, 3 photos.php, 4 archive.php, or 5 cat.php. NOTE: the provenance of this information is unknown; t...
CVE-2008-3186
Chipmunk Blog (Blogger) contains cross-site scripting (XSS) vulnerabilities in the membername parameter of five PHP scripts (members.php, comments.php, photos.php, archive.php, cat.php). Root cause: improper handling of user-supplied membername leads to script/HTML injection. Impact: allows remot...
CVE-2006-6995
mycontacts.php in V3 Chat allows remote authenticated users to gain privileges as other users via a modified membername parameter...