Drupal 6.15, 5.21 (API function drupal_goto) Open Redirect Vulnerability

Exploit for unknown platform in category web applications =========================================================================== Drupal 6.15, 5.21 API function drupalgoto Open Redirection Vulnerability =========================================================================== Open redirecti...

XSS vulnerability in Drupal's MP3 Player contributed module (version 6.x-1.0-beta1)

XSS vulnerability in Drupal's MP3 Player contributed module version 6.x-1.0-beta1 Discovered by Martin Barbella [email protected] Description of Vulnerability: ----------------------------- Drupal is a free software package that allows an individual or a community of users to easily publish...

SA-CONTRIB-2010-013 - Menu Breadcrumb - Cross site scripting

The Menu Breadcrumb module allows to use the menu the current page belongs to as breadcrumb. The module does not properly sanitize parts of the provided block, leading to a cross-site scripting XSS vulnerability. Such an attack may lead to a malicious user gaining full administrative access...

Drupal MP3 Player Cross Site Scripting

XSS vulnerability in Drupal's MP3 Player contributed module version 6.x-1.0-beta1 Discovered by Martin Barbella Description of Vulnerability: ----------------------------- Drupal is a free software package that allows an individual or a community of users to easily publish, manage and organize a...

Drupal's Node Blocks Cross Site Scripting

XSS Vulnerability in Drupal's Node Blocks contributed module 6.x-1.3 and 5.x-1.1 Discovered by Martin Barbella Description of Vulnerability: ----------------------------- Drupal is a free software package that allows an individual or a community of users to easily publish, manage and organize a...

Active Calendar 1.2.0 Cross Site Scripting

XSS Vulnerability in Active Calendar 1.2.0 Discovered by Martin Barbella Description of Vulnerability: ----------------------------- Active Calendar is PHP Class, that generates calendars year, month or week view as a HTML Table XHTML-Valid. From: http://micronetwork.de/activecalendar/index.php I...

Magento Community Edition 1.3.2.43 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The full text of this advisory can be found at: http://www.madirish.net/?article=445 Description of Vulnerability: - ----------------------------- Magento http://www.magentocommerce.com/ is an eCommerce platform written in MySQL and PHP. Magento...

Quiksoft EasyMail 6.0.3.0 imap connect() ActiveX BOF Exploit

Exploit for windows platform in category remote exploits ============================================================ Quiksoft EasyMail 6.0.3.0 imap connect ActiveX BOF Exploit ============================================================ !-- I - TITLE Security advisory: Quiksoft EasyMail 6.0.3.0...

Robert "Rsnake" Hansen On Slowloris, DoS Attacks And RFC-1918 Networks

Dennis Fisher talks with Robert “Rsnake” Hansen about his Slowloris tool, low-bandwidth DoS attacks and the law of unintended consequences. Download SHOW NOTES: Mitigating the Slowloris HTTP DoS Attack New attack class exploits intranet weaknesses Subscribe to the Digital Underground podcast on...

Microsoft confirms flaw in WebDAV in IIS

Microsoft has confirmed the reported vulnerability in the WebDAV implementation in IIS 5.0, 5.1 and 6.0, saying that the flaw could be used to bypass the authentication mechanism on the Web server. However, the company said that there are a number of mitigating factors involved and that company...

CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities

Title: CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities CA Advisory Reference: CA20090126-01 CA Advisory Date: 2009-01-26 Reported By: Thierry Zoller and Sergio Alvarez of n.runs AG Impact: A remote attacker can evade detection. Summary: The CA Anti-Virus engine...

ACROS Security: HTML Injection in BEA (Oracle) WebLogic Server Console (ASPR #2009-01-27-1)

=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2009-01-27-1 ------------------------------------------------------------------------- ASPR 2009-01-27-1: HTML Injection in BEA WebLogic Server Console...

rPSA-2007-0172-1 tar

rPath Security Advisory: 2007-0172-1 Published: 2007-08-25 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Indirect User Deterministic Vulnerability Updated Versions: tar=/conary.rpath.com@rpl:devel//1/1.15.1-7.2-1 References: https://vulners.com/cve/CVE-2001-1267...

[Full-disclosure] [CAID 35527]: CA Message Queuing (CAM / CAFT) Buffer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: CAID 35527: CA Message Queuing CAM / CAFT Buffer Overflow Vulnerability CA Vuln ID CAID: 35527 CA Advisory Date: 2007-07-24 Reported By: Paul Mehta of ISS X-Force Impact: A remote attacker can execute arbitrary code. Summary: Multiple CA produc...

[CAID 35145]: CA eTrust Admin Privilege Escalation Vulnerability

Title: CAID 35145: CA eTrust Admin Privilege Escalation Vulnerability CA Vuln ID CAID: 35145 CA Advisory Date: 2007-03-08 Impact: Attackers can gain escalated privileges. Summary: The CA eTrust Admin GINA component contains a privilege escalation vulnerability within the reset password interface...

[CAID 34616, 34617, 34618]: CA eSCC and eTrust Audit vulnerabilities

Title: CAID 34616, 34617, 34618: CA eTrust Security Command Center and eTrust Audit vulnerabilities CA Vulnerability ID CAID: 34616, 34617, 34618 CA Advisory Date: 2006-09-20 Discovered By: Patrick Webster of aushack.com Impact: Remote attacker can read/delete files, or potentially execute replay...

Simpliciti Locked Browser Jail Breakout Vulnerability

Simpliciti Locked Browser Jail Breakout Vulnerability ESRL Discovery Date: March 20, 2006 Discovery By: Adam Baldwin [email protected] Versions Effected: All versions Background: Simpliciti Locked Browser is a product that provides "no-programming required PC lockdown..." functionality f...

Input Validation/Output Encoding Vulnerabilities in Cisco CallManager Allow Script Injection Attacks

I. SYNOPSIS Release Date: 07/19/2006 Affected Application: Cisco CallManager 3.1 and up versions prior to 3.1 were not tested but may still be vulnerable Severity If Exploited: High Impact: Arbitrary configuration of phone system/Theft of individual phone users' credentials Mitigating Factors:...

CYBSEC - Security Advisory: Watchfire AppScan QA Remote Code Execution

The following advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSECSecurityAdvisoryAppScanQARemoteCodeExec.pdf CYBSEC S.A. www.cybsec.com Advisory Name: Watchfire AppScan QA Remote Code Execution ========== Vulnerability Class: Buffer Overflow =============...

Security Bulletin MS01-018

---------------------------------------------------------------------- Title: Visual Studio VB-TSQL Object Contains Unchecked Buffer Date: 27 March 2001 Software: Visual Studio 6.0 Enterprise Edition Impact: Run code of attacker's choice Bulletin: MS01-018 Microsoft encourages customers to review...