16 matches found
EUVD-2010-2052
Malware in sbrugna...
Caucho Resin Professional 3.1.5 - 'resin-admin/digest.php' Multiple Cross-Site Scripting Vulnerabili
CVE-2010-2032Caucho Resin Professional is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of...
Caucho Resin - resin-admin URI Cross-Site Scripting
Caucho Resin - resin-admin URI Cross-Site Scripting source: https://www.securityfocus.com/bid/60426/info Resin Professional is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitra...
Caucho Resin - index.php?logout Cross-Site Scripting
Caucho Resin - index.php?logout Cross-Site Scripting source: https://www.securityfocus.com/bid/60426/info Resin Professional is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...
Caucho Resin Multiple Cross-Site Scripting Vulnerabilities
The host is running Caucho Resin and is prone to multiple cross-site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: secpodcauchoresinmultxssvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ Caucho Resin Multiple Cross-Site Scripting Vulnerabilities Authors: Sooraj KS Copyright: Copyright c...
CVE-2010-2032
Multiple cross-site scripting XSS vulnerabilities in resin-admin/digest.php in Caucho Technology Resin Professional 3.1.5, 3.1.10, 4.0.6, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via the 1 digestrealm or 2 digestusername parameters. NOTE: some of...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in resin-admin/digest.php in Caucho Technology Resin Professional 3.1.5, 3.1.10, 4.0.6, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via the 1 digestrealm or 2 digestusername parameters. NOTE: some of...
CVE-2010-2032
Multiple cross-site scripting XSS vulnerabilities in resin-admin/digest.php in Caucho Technology Resin Professional 3.1.5, 3.1.10, 4.0.6, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via the 1 digestrealm or 2 digestusername parameters. NOTE: some of...
CVE-2010-2032
Multiple cross-site scripting XSS vulnerabilities in resin-admin/digest.php in Caucho Technology Resin Professional 3.1.5, 3.1.10, 4.0.6, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via the 1 digestrealm or 2 digestusername parameters. NOTE: some of...
CVE-2010-2032
CVE-2010-2032 concerns multiple XSS flaws in Caucho Resin’s resin-admin/digest.php. Affected products include Resin Professional 3.1.5, 3.1.10, 4.0.6 (and potentially other versions). The vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the digest_realm or digest_...
Caucho Technology Resin digest.php Cross Site Scripting Vulnerability
This vulnerability do not need to login.digest.php use the REQUEST method in a wrong way to accept parametersthe malicious user could submit xss code on this page and an attacker could use this vulnerability to steal the victim's cookie-based authentication credentials. exp:...
Caucho Resin Professional 3.1.5 - resin-admindigest.php Multiple Cross-Site Scripting Vulnerabilities
Caucho Resin Professional 3.1.5 - resin-admindigest.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/40251/info Caucho Resin Professional is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize...
Caucho Resin Professional 3.1.5 - '/resin-admin/digest.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/40251/info Caucho Resin Professional is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of...
CVE-2007-2439
Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for Windows allows remote attackers to cause a denial of service device hang and read data from a COM or LPT device via a DOS device name with an arbitrary extension...
CVE-2007-2441
Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for Windows allows remote attackers to obtain the system path via certain URLs associated with 1 deploying web applications or 2 displaying .xtp files...
CVE-2007-2439
Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for Windows allows remote attackers to cause a denial of service device hang and read data from a COM or LPT device via a DOS device name with an arbitrary extension...