Novell Filr Cross-Site Scripting Vulnerability

Novell Filr is a file access and sharing solution for the enterprise from Novell, USA. A cross-site scripting vulnerability exists in version 1.2 prior to Novell Filr Hot Patch 4. The vulnerability can be exploited by a remote attacker to inject arbitrary web script or HTML via a specially crafte...

PT-2014-3840 · Indusoft · Indusoft Web Studio

Name of the Vulnerable Software and Affected Versions: InduSoft Web Studio version 7.1 before SP2 Patch 4 Description: The issue allows remote attackers to read administrative passwords in APP files and execute arbitrary code via unspecified web requests. This is due to a directory traversal...