Improper Input Validation in Mortbay Jetty

jetty 6.0.x jetty6 beta16 allows remote attackers to read arbitrary script source code via a capital P in the .jsp extension, and probably other mixed case manipulations...

CVE-2021-39183 Unsafe inline XSS Owncast

Owncast is an open source, self-hosted live video streaming and chat server. In affected versions inline scripts are executed when Javascript is parsed via a paste action. This issue is patched in 0.0.9 by blocking unsafe-inline Content Security Policy and specifying the script-src. The worker-sr...

PT-2021-22441 · Owncast · Owncast

Name of the Vulnerable Software and Affected Versions: Owncast versions prior to 0.0.9 Description: The issue concerns the execution of inline scripts when Javascript is parsed via a paste action in the chat server. This can lead to the execution of malicious scripts. The problem is resolved by...

rubygem-secure_headers: directive injection when using dynamic overrides with user input

A flaw was found in rubygem-secureheaders in versions prior to 6.2.0, 5.1.0, and 3.8.0. If user-supplied input was passed into append/overridecontentsecuritypolicydirectives, a semicolon could be injected leading to directive injection which could be used to override a script-src directive. The...

Directory traversal

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended code via a crafted character sequence, as...

CVE-2014-4650

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended code via a crafted character sequence, as...

Azure DevOps Server Spoofing Vulnerability

A spoofing vulnerability that could allow a security feature bypass exists in when Azure DevOps Server does not properly sanitize user provided input. An attacker who exploited the vulnerability could trick a user into loading a page containing malicious content. An authenticated attacker could...

Uber: muber-id Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint

Summary The muber-id request parameter at the https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js mobile endpoint is copied into a javascript string encapsulated in double quotation marks, resulting in SSL-protected payloads being reflected unmodified in the application's response. The script-src...

JGI CMS 1.0 - Multiple Vulnerabilities

Exploit for php platform in category web applications JGI CMS 1.0 - Multiple Vulnerabilities 1---------------------------------- A Directory Traversal vulnerability has been discovered in the JCI CMS web-application. The vulnerability is located in the 'arquivo' parameter of thedl.php action GET...

Cuvva: cuvva.com website CSP "script-src" includes "unsafe-inline"

Hello cuvva Reporting a low profile risk, "script-src" value should be considered best practice The cuvva.com website https://cuvva.com has a Content-Security-Policy configured the "script-src" parameter is set to "unsafe-inline", which allows injection of user passed values, which in result can ...

Code injection

The interpreter in IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ allows remote attackers to discover script source code via unspecified vectors...

CVE-2015-6469

CVE-2015-6469 affects IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ where an interpreter misconfiguration allows remote disclosure of executable script source code. Affected products are web-based SCADA systems; attacker could obtain source code via unspecified vectors. ICS-CERT reports no patc...

CVE-2015-6469

The interpreter in IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ allows remote attackers to discover script source code via unspecified vectors...

TinyMCE WYSIWYG Editor - Multiple Vulnerabilities

No description provided by source. + Vurnerebility: Js tinymce/tinymce WYSIWYGjava script vurnerebility xss--popup & SQl implemented + Language : Java--,Xml + lisences : LGPL + Vendor : Moxiecode Systems AB + support : IE7J0/IE6.0/NS8.1-IE/NS8.1-G/FF2.0/O9.02; + Category : bug report + vendor :...

navicopa webserver 3.0.1 (bof/sd) Multiple Vulnerabilities

No description provided by source. NaviCopa webserver 3.0.1 Multiple Vulnerabilities By: e.wiZz! Bosnian Idiot FTW! Mail: [email protected] Greetz goes to GYEZyou know who you are lol In the wild... Vendor site: http://www.navicopa.com/ Platforms: Windows OS only Info: Award Winning NaviCOPA is...

Sambar Server 5.1 Script Source Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4533/info An issue has been discovered in Sambar Server, which could allow a user to reveal the source code of script files. Submitting a request for a known script file along with a space and null character %00, will...

Microsoft IIS 2.0/3.0 Appended Dot Script Source Disclosure Vulnerability

source: http://www.securityfocus.com/bid/2074/info Microsoft Internet Information Server IIS is a popular web server, providing support for a variety of scripting languages, including ASP active server pages. IIS 2.0 and 3.0 suffer from an issue allowing a remote user to retrieve the source code...

CVE-2014-4650

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended code via a crafted character sequence, as...

UBUNTU-CVE-2014-4650

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended code via a crafted character sequence, as...

PT-2012-2871 · Moodle · Moodle

Name of the Vulnerable Software and Affected Versions: Moodle versions 1.9.x through 1.9.15 Moodle versions 2.0.x through 2.0.6 Moodle versions 2.1.x through 2.1.3 Moodle versions 2.2.x through 2.2.0 Description: The issue concerns the use of a hardcoded password in the rc4encrypt function, makin...