11 matches found
EUVD-2014-7163
Malware in sbrugna...
EUVD-2004-1651
Malware in sbrugna...
Newtelligence dasBlog 'url' Parameter Open Redirect Vulnerability
Newtelligence dasBlog is prone to an open redirect vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-7292
Open redirect vulnerability in the Click-Through feature in Newtelligence dasBlog 2.1 2.1.8102.813, 2.2 2.2.8279.16125, and 2.3 2.3.9074.18820 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter to ct.ashx...
Open redirect
Open redirect vulnerability in the Click-Through feature in Newtelligence dasBlog 2.1 2.1.8102.813, 2.2 2.2.8279.16125, and 2.3 2.3.9074.18820 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter to ct.ashx...
CVE-2014-7292
Newtelligence dasBlog is affected by an Open Redirect vulnerability (CVE-2014-7292) in the Click-Through feature. The issue allows an attacker to redirect users to arbitrary external sites via the url parameter passed to ct.ashx, potentially enabling phishing. Affected versions include dasBlog 2....
CVE-2014-7292
Open redirect vulnerability in the Click-Through feature in Newtelligence dasBlog 2.1 2.1.8102.813, 2.2 2.2.8279.16125, and 2.3 2.3.9074.18820 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter to ct.ashx...
Newtelligence dasBlog 2.3 Open Redirect
Exploit Title: Newtelligence dasBlog Open Redirect Vulnerability Product: dasBlog Vendor: Newtelligence Vulnerable Versions: 2.3 2.3.9074.18820 2.2 2.2.8279.16125 2.12.1.8102.813 Tested Version: 2.3 2.3.9074.18820 Advisory Publication: OCT 15, 2014 Latest Update: OCT 15, 2014 Vulnerability Type:...
CVE-2004-1657
The provided connected documents confirm CVE-2004-1657 affects dasBlog’s Activity and Events Viewer, where the application fails to sanitize HTTP headers (User-Agent and Referrer), enabling cross-site scripting. The Nessus NASL item specifies vulnerability in dasBlog versions up to 1.6.0 due to u...
CVE-2004-1657
Cross-site scripting XSS vulnerability in the Activity and Events Viewer for Newtelligence DasBlog allows remote attackers to inject arbitrary web script or HTML via the 1 User Agent or 2 Referrer HTTP headers...
CVE-2004-1657
Cross-site scripting XSS vulnerability in the Activity and Events Viewer for Newtelligence DasBlog allows remote attackers to inject arbitrary web script or HTML via the 1 User Agent or 2 Referrer HTTP headers...