CVE-2026-6143

A security flaw has been discovered in farion1231 cc-switch up to 3.12.3. Affected by this issue is some unknown functionality of the file src-tauri/src/proxy/server.rs of the component ProxyServer. The manipulation results in permissive cross-domain policy with untrusted domains. The attack can ...

CC Switch 安全漏洞

CC Switch is a multi-model command-line tool manager developed by Jason Young. Versions of CC Switch 3.12.3 and earlier contained security vulnerabilities. These vulnerabilities were caused by improper handling of unknown functions in the ProxyServer component’s file src-tauri/src/proxy/server.rs...

EUVD-2002-1610

Malware in sbrugna...

SAP NetWeaver Cross-Site Scripting Vulnerability (CNVD-2016-01150)

SAP NetWeaver is SAP SAP company's set of service-oriented integrated application platform. A cross-site scripting vulnerability exists in the Java Proxy Runtime ProxyServer servlet in SAP NetWeaver version 7.4. A remote attacker can exploit this vulnerability to inject arbitrary web script or HT...

CVE-2016-2387

Multiple cross-site scripting XSS vulnerabilities in the Java Proxy Runtime ProxyServer servlet in SAP NetWeaver 7.4 allow remote attackers to inject arbitrary web script or HTML via the 1 ns or 2 interface parameter to ProxyServer/register, aka SAP Security Note 2220571...

CVE-2016-2387

Multiple cross-site scripting XSS vulnerabilities in the Java Proxy Runtime ProxyServer servlet in SAP NetWeaver 7.4 allow remote attackers to inject arbitrary web script or HTML via the 1 ns or 2 interface parameter to ProxyServer/register, aka SAP Security Note 2220571...

CVE-2016-2387

CVE-2016-2387 pertains to SAP NetWeaver 7.4, affecting the Java Proxy Runtime ProxyServer servlet. The vulnerability enables cross-site scripting (XSS) via the ProxyServer/register endpoint, by manipulating the ns or interface parameters, as noted in SAP Security Note 2220571. Public advisories (...

InterTech (etemplaite.php) Sql Injection Vulnerability

Exploit for php platform in category web applications ====================================================== InterTech etemplaite.php Sql Injection Vulnerability ====================================================== 010101010101010101010101010101010101010101010101010101010 0 0 1 Iranian Datacode...

auracms-blindsql.txt

!/usr/bin/perl -w Indonesian Newhack Security Advisory ------------------------------------ AuraCMS 2.x online.php - Remote Blind SQL Injection Exploit Waktu : Feb 15 2008 01:00PM Software : AuraCMS Versi : 2.0 2.1 2.2.1 Vendor : http://www.auracms.org/ ------------------------------------ Audit...

CVE-2002-1629

Multi-Tech ProxyServer products MTPSR1-100, MTPSR1-120, MTPSR1-202ST, MTPSR2-201, and MTPSR3-200 ship with a null password, which allows remote attackers to gain administrative privileges via Telnet or HTTP...

CVE-2002-1629

CVE-2002-1629 affects multiple MultiTech ProxyServer models (MTPSR1-100, MTPSR1-120, MTPSR1-202ST, MTPSR2-201, MTPSR3-200). The issue is caused by a default/null password on the remote administration account (supervisor), allowing remote attackers to gain administrative privileges via Telnet or H...

RHEL 2.1 / 3 : perl (RHSA-2005:069)

An updated perl-DBI package that fixes a temporary file flaw in DBI::ProxyServer is now available. DBI is a database access Application Programming Interface API for the Perl programming language. The Debian Security Audit Project discovered that the DBI library creates a temporary PID file in an...

perl DBI::ProxyServer module symbolic links problem

Symbolic links problem on pid file creation...

Multi-Tech ProxyServers ship with null password for administrative access

Overview Some versions of the Multi-Tech ProxyServer products ship without a default password for the administrative interface. Description Some versions of the Multi-Tech ProxyServer products ships without a default password for the administrative interface permitting unauthenticated access via...

CVE-2002-1629

Multi-Tech ProxyServer products MTPSR1-100, MTPSR1-120, MTPSR1-202ST, MTPSR2-201, and MTPSR3-200 ship with a null password, which allows remote attackers to gain administrative privileges via Telnet or HTTP...