36 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs...
CVE-2006-1393
Multiple cross-site scripting XSS vulnerabilities in the modpubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack...
CVE-2006-1392
Multiple cross-site scripting XSS vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Microsoft IIS ISAPI filter aka application server module in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vecto...
CVE-2006-1394
Multiple cross-site scripting XSS vulnerabilities in the Microsoft IIS ISAPI filter aka application server module in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vecto...
CVE-2006-1392
Multiple cross-site scripting XSS vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs...
CVE-2006-1392
The CVE pertains to Pubcookie’s login server (index.cgi) containing multiple non‑persistent XSS flaws due to insufficient input sanitization. Affected versions are Pubcookie login server 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a. An attacker can inject arbitrary script/HTML vi...
CVE-2006-1393
CVE-2006-1393 describes multiple cross-site scripting (XSS) vulnerabilities in the University of Washington Pubcookie project, specifically the mod_pubcookie Apache module. Affected are Pubcookie 1.x and releases 3.0.0, 3.1.0, 3.1.1, and 3.2 before 3.2.1b, as well as 3.3 before 3.3.0a. The issues...
CVE-2006-1394
CVE-2006-1394 affects University of Washington Pubcookie through vulnerable IIS ISAPI filter versions 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a. Description: multiple XSS vulnerabilities allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Impact (pe...
CVE-2006-1393
Multiple cross-site scripting XSS vulnerabilities in the modpubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack...
CVE-2006-1394
Multiple cross-site scripting XSS vulnerabilities in the Microsoft IIS ISAPI filter aka application server module in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vecto...
[SA19348] Pubcookie Cross-Site Scripting Vulnerabilities
TITLE: Pubcookie Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA19348 VERIFY ADVISORY: http://secunia.com/advisories/19348/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Pubcookie 3.x http://secunia.com/product/8916/ DESCRIPTION: Some vulnerabiliti...
Pubcookie login server contains cross-site scripting vulnerabilities
Overview Cross-site scripting vulnerabilities in the Pubcookie login server could allow a remote attacker to gain access to sensitive information. Description Pubcookie is a software package that provides intra-institutional single-sign-on authentication for end-users over the web. The Pubcookie...
Pubcookie application server modules contain cross-site scripting vulnerabilities
Overview Cross-site scripting vulnerabilities in the Pubcookie application server modules could allow a remote attacker to gain access to sensitive information. Description Pubcookie is a software package that provides intra-institutional single-sign-on authentication for end-users over the web...
pubcookie-login-server -- cross site scripting vulnerability
Nathan Dors of the Pubcookie Project reports: Multiple non-persistent XSS vulnerabilities were found in the Pubcookie login server's compiled binary "index.cgi" CGI program. The CGI program mishandles untrusted data when printing responses to the browser. This makes the program vulnerable to...
mod_pubcookie -- cross site scripting vulnerability
Nathan Dors of the Pubcookie Project reports: Non-persistent XSS vulnerabilities were found in the Pubcookie Apache module modpubcookie and ISAPI filter. These components mishandle untrusted data when printing responses to the browser. This makes them vulnerable to carefully crafted requests...