925 matches found
Design/Logic Flaw
The browser-plugin implementation in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1 allows remote attackers to arguments to the RecordClip method, which allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via a "...
RealPlayer Enterprise for Windows < Build 6.0.12.1823 Multiple Vulnerabilities
According to its build number, the installed version of RealPlayer on the remote Windows host has multiple buffer overflow vulnerabilities : - A 'QCP' parsing heap-based buffer overflow vulnerability exists. CVE-2010-2578 - An uninitialized pointer vulnerability exists in the CDDA URI ActiveX...
CVE-2010-3749
The browser-plugin implementation in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1 allows remote attackers to arguments to the RecordClip method, which allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via a "...
CVE-2010-3749
The CVE-2010-3749 flaw affects RealNetworks RealPlayer 11.0–11.1 and RealPlayer SP 1.0–1.1, in the browser-plugin/ActiveX implementation for the RecordClip method. A specific argument containing a double-quote enables parameter injection that allows remote code execution: an attacker can craft a ...
RealNetworks Realplayer RecordClip Parameter Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the browser plugins provided by...
CVE-2009-4926
Multiple cross-site scripting XSS vulnerabilities in Online Contact Manager formerly EContact PRO 3.0 allow remote attackers to inject arbitrary web script or HTML via the 1 showGroup parameter to a index.php and the 2 id parameter to b view.php, c email.php, d edit.php, and e delete.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Online Contact Manager formerly EContact PRO 3.0 allow remote attackers to inject arbitrary web script or HTML via the 1 showGroup parameter to a index.php and the 2 id parameter to b view.php, c email.php, d edit.php, and e delete.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in oBlog allow remote attackers to inject arbitrary web script or HTML via the 1 commentName, 2 commentEmail, 3 commentWeb, or 4 commentText parameter to article.php; and allow remote authenticated administrators to inject arbitrary web script or...
Eshopbuilde CMS SQL Injection
================= IUT-CERT ================= Title: Eshopbuilde CMS SQL Injection Vulnerability Vendor: www.eshopbuilder.ir Dork: Design by Satcom Co Type: Input.Validation.Vulnerability SQL Injection Fix: N/A ================== nsec.ir ================= Description: ------------------ Eshopbuild...
PEAR Mail软件包Sendmail Mail::Send()方式参数注入漏洞
BUGTRAQ ID: 37081 PEAR是“PHP扩展和应用库”的缩写,用于为PHP用户提供结构化的开源代码库。 PEAR的Mail软件包中sendmail实现没有正确地过滤对Mail::Send方式所提交的from参数,远程攻击者可以向sendmail命令传送任意参数,绕过安全限制获取任意文件的内容。 PEAR Mail 1.1.4 厂商补丁: PEAR ---- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CUPS < 1.4.2 kerberos Parameter XSS
According to its banner, the version of CUPS installed on the remote host is earlier than 1.4.2. The 'kerberos' parameter in such versions is not properly sanitized before being used to generate dynamic HTML content. An attacker can leverage this issue via a combination of attribute injection and...
GLSA-200909-06 : aMule: Parameter injection
The remote host is affected by the vulnerability described in GLSA-200909-06 aMule: Parameter injection Sam Hocevar discovered that the aMule preview function does not properly sanitize file names. Impact : A remote attacker could entice a user to download a file with a specially crafted file nam...
aMule: Parameter injection
Background aMule is an eMule-like client for the eD2k and Kademlia networks, supporting multiple platforms. Description Sam Hocevar discovered that the aMule preview function does not properly sanitize file names. Impact A remote attacker could entice a user to download a file with a specially...
Perl$hop e-commerce Script Trust Boundary Input Parameter Injection
No description provided by source. A while back I was playing around with Perl$hop, which if you are not aware, is an e-commerce script developed by Waverider Systems. XSS Cross Site Scripting, Directory Traversal, Code Execution, and more! Wow, that sure is a lot of vulnerabilities for one...
Perl$hop E-Commerce Script - Trust Boundary Input Parameter Injection
Perl$hop E-Commerce Script - Trust Boundary Input Parameter Injection A while back I was playing around with Perl$hop, which if you are not aware, is an e-commerce script developed by Waverider Systems. XSS Cross Site Scripting, Directory Traversal, Code Execution, and more! Wow, that sure is a l...
Perl$hop e-commerce Script Trust Boundary Input Parameter Injection
Exploit for cgi platform in category web applications =================================================================== Perl$hop e-commerce Script Trust Boundary Input Parameter Injection =================================================================== A while back I was playing around with...
CVE-2009-2156
Multiple cross-site scripting XSS vulnerabilities in TorrentTrader Classic 1.09 allow remote authenticated users to inject arbitrary web script or HTML via 1 the Title field to requests.php, related to viewrequests.php; and 2 the Torrent Name field to torrents-upload.php, related to the logging o...
Directory traversal
Multiple directory traversal vulnerabilities in Blogplus 1.0 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 rowmysqlblockscenterdownfile parameter to includes/blockcenterdown.php; 2 rowmysqlblockscentertopfile includes/parameter to blockcentertop.php...
[DSECRG-09-013] IBM WebSphere Application Server 7.0 Multiple XSS Vulnerabilities
Digital Security Research Group DSecRG Advisory DSECRG-09-013 !!! official advisory: !!! http://dsecrg.com/pages/vul/DSECRG-09-013.html Application: IBM WebSphere Application Server Versions Affected: 7.0 and 6.1 Vendor URL: http://www.ibm.com/websphere/ Bug: Multiple XSS Vulnerabilities Exploits...
CVE-2008-6531
The WebWork 1 web application framework in Atlassian JIRA before 3.13.2 allows remote attackers to invoke exposed public JIRA methods via a crafted URL that is dynamically transformed into method calls, aka "WebWork 1 Parameter Injection Hole."...