23 matches found
EUVD-2005-4453
Malware in sbrugna...
MetaDot Portal Server 5.6.x index.pl Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attacker may be able to corrupt dat...
MetaDot Portal Server 5.6.x userchannel.pl op Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attacker may be able to corrupt dat...
MetaDot Portal Server 5.6.x index.pl Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attacker may be able to corrupt dat...
MetaDot Portal Server 5.6.x index.pl Information Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attacker may be able to corrupt dat...
Vulnerability in Metadot portal server allows users to gain administrative privileges
Title --------------------------------------------------------------------------------------- Vulnerability in Metadot portal server allows users to gain administrative privileges Vendor --------------------------------------------------------------------------------------- Metadot Corporation...
CVE-2005-4458
Group.pm in Metadot Portal Server 6.4.4 and earlier does not properly reset the $ISOWNER, $ISADMIN, and $ISMANAGER global variables when performing checks for special privileges, which allows users to gain administrator privileges by adding themselves to the SITEMGR group...
CVE-2005-4458
Group.pm in Metadot Portal Server 6.4.4 and earlier does not properly reset the $ISOWNER, $ISADMIN, and $ISMANAGER global variables when performing checks for special privileges, which allows users to gain administrator privileges by adding themselves to the SITEMGR group...
CVE-2005-4458
The CVE-2005-4458 entry concerns Metadot Portal Server (Group.pm) versions 6.4.4 and earlier. The flaw stems from not resetting the global privilege flags ($IS_OWNER, $IS_ADMIN, $IS_MANAGER) when performing privilege checks, enabling a user to grant themselves administrator rights by adding to th...
[Full-disclosure] Vulnerability in Metadot portal server allows users to gain administrative privileges
Title --------------------------------------------------------------------------------------- Vulnerability in Metadot portal server allows users to gain administrative privileges Vendor --------------------------------------------------------------------------------------- Metadot Corporation...
Multiple MetaDot Vulnerabilities
The remote host is running Metadot, a popular open source portal software. Multiple vulnerabilities have been found in this product, which may allow a malicious user to inject arbitrary SQL commands, reveal valuable information about the server and perform Cross Site Scripting attacks...
[UNIX] Multiple Vulnerabilities MetaDot Portal Server
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Multiple MetaDot Vulnerabilities [ All Versions ]
Vendor : Metadot Corporation URL : http://www.metadot.com Version : MetaDot Portal 5.6.5.4b5 && Earlier All Versions Risk : Multiple Vulnerabilities Description: Metadot is a popular open source portal software GPL recognized for its revolutionary ease-of-use. It provides content management like...
MetaDot Portal Server 5.6.x - index.pl Multiple SQL Injections
MetaDot Portal Server 5.6.x - index.pl Multiple SQL Injections source: https://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attack...
MetaDot Portal Server 5.6.x - index.pl Information Disclosure
MetaDot Portal Server 5.6.x - index.pl Information Disclosure source: https://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attacke...
MetaDot Portal Server 5.6.x - index.pl Multiple Cross-Site Scripting Vulnerabilities
MetaDot Portal Server 5.6.x - index.pl Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate...
MetaDot Portal Server 5.6.x - userchannel.pl?op Cross-Site Scripting
MetaDot Portal Server 5.6.x - userchannel.pl?op Cross-Site Scripting source: https://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an...
MetaDot Portal Server 5.6.x - 'userchannel.pl?op' Cross-Site Scripting
source: https://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attacker may be able to corrupt data, force the server to disclose...
MetaDot Portal Server 5.6.x - 'index.pl' Multiple SQL Injections
source: https://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attacker may be able to corrupt data, force the server to disclose...
MetaDot Portal Server 5.6.x - 'index.pl' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/9439/info A number of vulnerabilities have been found in all version of MetaDot Corporation's MetaDot Portal Server. Due to a failure of the software to properly validate user input, an attacker may be able to corrupt data, force the server to disclose...