14 matches found
EUVD-2009-0614
Malware in sbrugna...
c-kreul.de XSS vulnerability
Open Bug Bounty ID: OBB-578578 Description| Value ---|--- Affected Website:| c-kreul.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Novell QuickFinder Server Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/33708/info Novell QuickFinder Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to execute arbitrary...
Novell QuickFinder Server Multiple Cross Site Scripting (CVE-2009-0611)
QuickFinder is a site-specific search engine that allows users to search the public and private sites, partners' sites and any number of additional Web sites across the Internet, all from a single search interface on one Web site. A cross-site scripting vulnerability exists in Novell QuickFinder...
Update Protection against Novell QuickFinder Server Multiple Cross Site Scripting
A cross-site scripting vulnerability was reported in Novell QuickFinder Server, a site-specific search engine. The flaw is due to lack of validation of user supplied input data. An attacker can leverage this flaw to execute arbitrary HTML and script code on target user's web browser, within the...
CVE-2009-0611
Multiple cross-site scripting XSS vulnerabilities in qfsearch/AdminServlet in QuickFinder Server in Novell Open Enterprise Server 1.x allow remote attackers to inject arbitrary web script or HTML via 1 the siteloc parameter in a displayaddsite action, the site parameter in a 2 generalproperties o...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in qfsearch/AdminServlet in QuickFinder Server in Novell Open Enterprise Server 1.x allow remote attackers to inject arbitrary web script or HTML via 1 the siteloc parameter in a displayaddsite action, the site parameter in a 2 generalproperties o...
CVE-2009-0611
Multiple cross-site scripting XSS vulnerabilities in qfsearch/AdminServlet in QuickFinder Server in Novell Open Enterprise Server 1.x allow remote attackers to inject arbitrary web script or HTML via 1 the siteloc parameter in a displayaddsite action, the site parameter in a 2 generalproperties o...
CVE-2009-0611
CVE-2009-0611 affects Novell Open Enterprise Server 1.x via QuickFinder Server’s qfsearch/AdminServlet. The vulnerability is multiple cross-site scripting (XSS) in which attackers can inject arbitrary script/HTML through parameters: siteloc (displayaddsite), site (generalproperties or clusterserv...
Novell Open Enterprise Server QuickFinder多个跨站脚本漏洞
BUGTRAQ ID: 33708 QuickFinder是Novell Open Enterprise Server中所提供的搜索服务器,可以将搜索和打印功能添加到任何万维网站点或内网。 QuickFinder没有验证对qfsearch/AdminServlet所传送的siteloc、site、adminurl和print-list参数便返回给了用户,这允许远程攻击者通过提交恶意请求执行跨站脚本攻击,导致在用户浏览器会话中执行任意HTML和脚本代码。 Novell QuickFinder Server 厂商补丁: Novell ------...
[Suspected Spam][Fwd: Re: Novell-QuickFinder Server Xss & Java remote execution Code]
NULL CODE SERVICES www.nullcode.com.ar Hunting Security Bugs! +================================================================================================================================+ + Novell-QuickFinder Server //Cross-site scripting XSS Remote Java Execution Code +...
Novell-QuickFinder Server XSS
NULL CODE SERVICES www.nullcode.com.ar Hunting Security Bugs! +================================================================================================================================+ + Novell-QuickFinder Server //Cross-site scripting XSS Remote Java Execution Code +...
Novell QuickFinder Server - Multiple Cross-Site Scripting Vulnerabilities
Novell QuickFinder Server - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/33708/info Novell QuickFinder Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may...
Novell QuickFinder Server - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/33708/info Novell QuickFinder Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to execute arbitrary script code in the browser of an...