CVE-2011-4887

Cross-site scripting XSS vulnerability in the Violations Table in the management GUI in the MX Management Server in Imperva SecureSphere Web Application Firewall WAF 9.0 allows remote attackers to inject arbitrary web script or HTML via the username field...

MX-SmartTimer 13.18.5.11 SQL Injection

"CVE-2014-5440 MX-SmartTimer SQL Injection" - Vendor Status: CONFIRMED - Vendor Disclosure Date: July, 17th, 2014 - Public Disclosure Date: August, 29th, 2014 - Affected Vendor: MPEX Business Solutions http://www.mpexsolutions.com/ - Affected System: MX-SmartTimer Version 13.18.5.11 - Vulnerabili...

SHARP MX Series - Denial of Service

Exploit for hardware platform in category dos / poc Exploit Title: SHARP MX Series - Denial Of Service Date: 08/08/2014 Exploit Author: pws Vendor Homepage: Sharp Printers Firmware Link: Not found Tested on: Latest version Shodan d0rk: "SHARP Telnet server" 4000 devices CVE : None yet $ python -c...

SHARP MX Series - Denial of Service

Exploit Title: SHARP MX Series - Denial Of Service Date: 08/08/2014 Exploit Author: pws Vendor Homepage: Sharp Printers Firmware Link: Not found Tested on: Latest version Shodan d0rk: "SHARP Telnet server" 4000 devices CVE : None yet $ python -c 'print "A"200 + "\n"' | nc 192.168.30.5 23 $ telnet...

SHARP MX Denial Of Service

Exploit Title: SHARP MX Series - Denial Of Service Date: 08/08/2014 Exploit Author: pws Vendor Homepage: Sharp Printers Firmware Link: Not found Tested on: Latest version Shodan d0rk: "SHARP Telnet server" 4000 devices CVE : None yet $ python -c 'print "A"200 + "\n"' | nc 192.168.30.5 23 $ telnet...

mxBB Module Meeting <= 1.1.2 - Remote FileInclusion Vulnerability

No description provided by source. Title : mxBB Module Meeting = 1.1.2meetingconstants.php Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://www.mx-system.com ERROR------------------------------------------------------ .... .. include$modulerootpath . 'language/lang'...

Calendar MX BASIC <= 1.0.2 (ID) Remote SQL Injection Vulnerability

No description provided by source. Title : Calendar MX BASIC = 1.0.2 ID Remote SQL Injection Vulnerability Author : ajann Contact : : $$ : Free SQL--------------------------------------------------------- http://target/path//calendardetail.asp?ID=SQL Example:...

Macromedia Flash Player 6.0.x Flash Cookie Predictable File Location Weakness

No description provided by source. source: http://www.securityfocus.com/bid/8900/info Macromedia Flash Player is reported to store Flash cookies .sol files in a predictable location on client systems. Other attacks are possible given the ability to store content on a system in a predictable...

InterAKT Online MX Shop 1.1.1 - SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12957/info MX Shop is reportedly affected by an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. This vulnerability...

ColdFusion MX Missing Template Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5011/info ColdFusion MX is prone to cross site scripting attacks. Attacker-supplied script code may be included in a malicious missing template URI generated by the default Missing Template handler of ColdFusion. The...

Gbook MX 4.1.0 Arabic Version - File Inclusion Vulnerability

No description provided by source...

Entergal MX 2.0 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15631/info Entergal MX is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

mxBB Module WebLinks <= 2.05 Remote Inclusion Vulnerability

No description provided by source. Title : mxBB Module WebLinks = 2.05mxrootpath Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://www.mx-system.com Dork : /modules/mxlinks/ ERROR------------------------------------------------------ .... .. includeonce $mxrootpath...

Macromedia ColdFusion MX 6.0 SQL Error Message Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8840/info It has been reported that Macromedia ColdFusion MX may be prone to a cross-site scripting vulnerability due to improper handling of error messages generated by the underlying database. This problem may be...

Macromedia ColdFusion MX 6.1 Template Handling Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11316/info Reportedly Macromedia ColdFusion MX is affected by privilege escalation vulnerability when handling templates. This issue is due to an access validation error that allows a user to perform actions with...

MX Shop 3.2 Index.PHP Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/14876/info MX Shop is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker...

Calendar MX Professional 2.0.0 - Blind SQL Injection Vulnerability

No description provided by source. ----------------------------بسم الله الرحمن الرحيم------------------------------ Tybe:calendarEventupdate.asp ID Blind SQL Injection Vulnerability Vendor: www.mxmania.net Software: Calendar Mx Professional author: я3d D3v!L Date: 28.11.2008 Home: www.ahacker.biz...

Macromedia ColdFusion MX 6.0 Error Message Path Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7443/info A vulnerability has been reported for Macromedia ColdFusion MX that may reveal the physical path information to attackers. When certain malformed URL requests are received by the server, an error message is...

Design/Logic Flaw

Juniper Junos before 11.4R11, 12.1 before 12.1R9, 12.2 before 12.2R7, 12.3R4 before 12.3R4-S3, 13.1 before 13.1R4, 13.2 before 13.2R2, and 13.3 before 13.3R1, as used in MX Series and T4000 routers, allows remote attackers to cause a denial of service PFE restart via a crafted IP packet to certai...

Juniper Junos MX and T4000 Series MPC Reboot DoS (JSA10621)

According to its self-reported version number, the remote Junos device is affected by a denial of service vulnerability. The issue exists in MX and T4000 series routers that use either Trio-based or Cassis-based PFE modules. An attacker can exploit this vulnerability by sending a crafted IP packe...