87 matches found
Pearson eSIS Enterprise Student Information System XSS vulnerability
Overview Pearson eSIS Enterprise Student Information System contains a XSS vulnerability. Description CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'Pearson eSIS Enterprise Student Information System contains a reflected cross-site scripting vulnerabilit...
SA-CONTRIB-2011-015 - Translation Management - Multiple Vulnerabilities
This Translation Management module helps to manage the process of translating content on your site. The module has several vulnerabilities. It doesn't sufficiently escape user text when printed to the browser nor when used in database queries resulting in Cross Site Scripting XSS and SQL Injectio...
CVE-2007-1044
Pearson Education PowerSchool 4.3.6 allows remote attackers to list the contents of the admin folder via a URI composed of the admin/ directory name and an arbitrary filename ending in ".js." NOTE: it was later reported that this issue had been addressed by 5.1.2...
Design/Logic Flaw
Pearson Education PowerSchool 4.3.6 allows remote attackers to list the contents of the admin folder via a URI composed of the admin/ directory name and an arbitrary filename ending in ".js." NOTE: it was later reported that this issue had been addressed by 5.1.2...
CVE-2007-1044
Pearson Education PowerSchool 4.3.6 allows remote attackers to list the contents of the admin folder via a URI composed of the admin/ directory name and an arbitrary filename ending in ".js." NOTE: it was later reported that this issue had been addressed by 5.1.2...
CVE-2007-1044
The CVE-2007-1044 issue affects Pearson Education PowerSchool 4.3.6, where remote attackers could enumerate contents of the admin folder by requesting a URI composed of the admin/ directory and a .js filename. The underlying impact is partial confidentiality loss. A fix is noted as addressed by P...
MS Jet Database (msjet40.dll) Reverse Shell Exploit
Exploit for unknown platform in category local exploits =================================================== MS Jet Database msjet40.dll Reverse Shell Exploit =================================================== See-security Technologies ltd. http://www.see-security.com Microsoft Jet msjet40.dll...