net2ftp <= 0.97 Cross-Site Scripting/Request Forgery Vulnerabilities

No description provided by source. =cicatriz [email protected]==advisories= / / / / // / / // / o / / .-/ =net2ftp = 0.97 Cross-Site Scripting/Request Forgery==/= == =Advisory & Vulnerability Information=== Title: net2ftp = 0.97 Cross-Site Scripting/Request Forgery Advisory ID:...

Vote It Up 1.2.2 Path Disclosure

Vulnerability ID: HTB22838 Reference: http://www.htbridge.ch/advisory/pathdisclosureinvoteitupwordpressplugin.html Product: Vote It Up wordpress plugin Vendor: Nicholas Kwan multippt http://www.onfry.com/ Vulnerable Version: 1.2.2 Vendor Notification: 08 February 2011 Vulnerability Type: Path...

www.eVuln.com : &quot;error&quot; Non-persistent XSS in slickMsg

www.eVuln.com advisory: error - Non-persistent XSS in slickMsg Summary: http://evuln.com/vulns/163/summary.html Details: http://evuln.com/vulns/163/description.html -----------Summary----------- eVuln ID: EV0163 Software: slickMsg Vendor: n/a Version: 0.7-alpha Critical Level: low Type: Cross Sit...

SQL Injection in Enano CMS

Vulnerability ID: HTB22709 Reference: http://www.htbridge.ch/advisory/sqlinjectioninenanocms.html Product: Enano CMS Vendor: enanocms.org http://enanocms.org/ Vulnerable Version: 1.1.7pl1 Vendor Notification: 16 November 2010 Vulnerability Type: SQL Injection Status: Fixed by Vendor Risk level:...

SweetRice 0.6.7 - Multiple Vulnerabilities

SweetRice 0.6.7 - Multiple Vulnerabilities Vulnerability ID: HTB22669 Reference: http://www.htbridge.ch/advisory/resetadminpasswordinsweetricecms.html Product: SweetRice CMS Vendor: basic-cms.org http://www.basic-cms.org/ Vulnerable Version: 0.6.7 Vendor Notification: 21 October 2010 Vulnerabilit...

MemHT Portal 4.0.1 Cross Site Scripting

===================================== Vulnerability ID: HTB22663 Reference: http://www.htbridge.ch/advisory/storedxsscrosssitescriptingvulnerabilityinmemhtportal.html Product: MemHT Portal Vendor: Miltenovik Manojlo http://www.memht.com/ Vulnerable Version: 4.0.1 and probably prior versions Vendo...

SQL injection vulnerability in TCMS

Vulnerability ID: HTB22576 Reference: http://www.htbridge.ch/advisory/sqlinjectionvulnerabilityintcms2.html Product: TCMS Vendor: Target CMS http://targetcms.com/ Vulnerable Version: 100728 and Probably Prior Versions Vendor Notification: 09 August 2010 Vulnerability Type: SQL Injection Status: N...

XSS vulnerability in CMSimple

Vulnerability ID: HTB22558 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincmsimple.html Product: CMSimple Vendor: Peter Andreas Harteg http://www.cmsimple.org/ Vulnerable Version: 3.3 and Probably Prior Versions Vendor Notification: 02 August 2010 Vulnerability Type: XSS Cross Site...

CMS Source SQL Injection / Cross Site Scripting / Local File Inclusion

================================================================== Vulnerability ID: HTB22545 Reference: http://www.htbridge.ch/advisory/localfileinclusionincmssource.html Product: CMS Source Vendor: Proud Daddy Web Design http://www.prouddaddy.net/ Vulnerable Version: Current at 28.07.2010 and...

XSS vulnerability in DT Centrepiece

Vulnerability ID: HTB22521 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityindtcentrepiece2.html Product: DT Centrepiece Vendor: DT Services http://www.dt.net.nz/ Vulnerable Version: 4.5 and Probably Prior Versions Vendor Notification: 22 July 2010 Vulnerability Type: XSS Cross Site...

net2ftp 0.97 - Cross-Site Scripting Request Forgery

net2ftp 0.97 - Cross-Site Scripting Request Forgery =cicatriz ==advisories= / / / / // / / // / o / / .-/ =net2ftp = 0.97 Cross-Site Scripting/Request Forgery==/= == =Advisory & Vulnerability Information=== Title: net2ftp = 0.97 Cross-Site Scripting/Request Forgery Advisory ID: VUDO-2009-0804...

CVE-2008-6679

Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service ps2pdf crash and possibly execute arbitrary code via a crafted Postscript file...

CVE-2009-0781

Cross-site scripting XSS vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18 allows remote attackers to inject arbitrary web script or HTML via the time parameter, relat...

EV0104.txt

New eVuln Advisory: Skull-Splitter's PHP Guestbook XSS Vulnerability http://evuln.com/vulns/104/summary.html --------------------Summary---------------- eVuln ID: EV0104 CVE: CVE-2006-1256 Software: Skull-Splitter's PHP Guestbook Sowtware's Web Site: http://www.boysen.be/ Versions: 2.6 2.7 Critic...