GNUTurk Mods.PHP Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24152/info Gnuturk is prone to a cross-site scripting vulnerability. Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected website...

CVE-2013-2710

Cross-site request forgery CSRF vulnerability in the Contextual Related Posts plugin before 1.8.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via unspecified vectors...

Ubuntu 13.10 : horizon vulnerability (USN-2206-1)

Cristian Fiorentino discovered that OpenStack Horizon did not properly perform input sanitization for Heat templates. If a user were tricked into using a specially crafted Heat template, an attacker could conduct cross-site scripting attacks. With cross-site scripting vulnerabilities, if a user...

Google Chrome < 32.0.1700.77 Multiple Vulnerabilities (Mac OS X)

The version of Google Chrome installed on the remote Mac OS X host is a version prior to 32.0.1700.77. It is, therefore, affected by the following vulnerabilities : - Use-after-free errors exist related to forms, web workers and speech input elements. CVE-2013-6641, CVE-2013-6645, CVE-2013-6646 -...

Debian Security Advisory DSA 2740-2 (python-django - cross-site scripting vulnerability)

Nick Brunn reported a possible cross-site scripting vulnerability in python-django, a high-level Python web development framework. The issafeurl utility function used to validate that a used URL is on the current host to avoid potentially dangerous redirects from maliciously-constructed...

Firefox < 23.0 Multiple Vulnerabilities (Mac OS X)

The installed version of Firefox is earlier than 23.0 and is, therefore, potentially affected by multiple vulnerabilities : - Various errors exist that could allow memory corruption conditions. CVE-2013-1701, CVE-2013-1702 - Use-after-free errors exist related to DOM modification when using...

Thunderbird < 17.0.8 Multiple Vulnerabilities (Mac OS X)

The installed version of Thunderbird is earlier than 17.0.8 and is, therefore, potentially affected by the following vulnerabilities : - Various errors exist that could allow memory corruption conditions. CVE-2013-1701, CVE-2013-1702 - Use-after-free errors exist related to DOM modification when...

Firefox ESR 17.x < 17.0.7 Multiple Vulnerabilities

The installed version of Firefox ESR 17.x is earlier than 17.0.7, and is, therefore, potentially affected by the following vulnerabilities : - Various, unspecified memory safety issues exist. CVE-2013-1682 - Heap-use-after-free errors exist related to 'LookupMediaElementURITable',...

IBM WebSphere Application Server 8.0 < Fix Pack 6 Multiple Vulnerabilities

IBM WebSphere Application Server 8.0 before Fix Pack 6 appears to be running on the remote host. It is, therefore, potentially affected by the following vulnerabilities : - An input validation error exists that could allow cross-site request forgery CSRF attacks. CVE-2012-4853 / PM62920 - The...

Mozilla SeaMonkey 2.x < 2.9.0 Multiple Vulnerabilities

Binary data 801320.prm...

glFusion 1.2.2 Cross Site Scripting Vulnerability

glFusion version 1.2.2 suffers from multiple cross site scripting vulnerabilities. Product: glFusion Vendor: http://www.glfusion.org/ Vulnerable Versions: 1.2.2 and probably prior Tested Version: 1.2.2 Vendor Notification: January 30, 2013 Vendor Patch: January 30, 2013 Public Disclosure: Februar...

Cross-Site Scripting (XSS) vulnerability in Quick.Cms and Quick.Cart

High-Tech Bridge Security Research Lab discovered XSS vulnerability in Quick.Cms and Quick.Cart - two products developed by OpenSolution team, which can be exploited to perform cross-site scripting attacks. 1. Cross-Site Scripting XSS vulnerability in Quick.Cms and Quick.Cart: CVE-2012-6430 The...

SeaMonkey 2.x < 2.14 Multiple Vulnerabilities

Binary data 6626.prm...

CentOS Update for firefox CESA-2012:1482 centos5

Check for the Version of firefox OpenVAS Vulnerability Test CentOS Update for firefox CESA-2012:1482 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

CentOS 5 / 6 : firefox (CESA-2012:1407)

Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity rating...

firefox, xulrunner security update

CentOS Errata and Security Advisory CESA-2012:1407 Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CV...

Ubuntu Update for webkit USN-1617-1

Ubuntu Update for Linux kernel vulnerabilities USN-1617-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN16171.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for webkit USN-1617-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

FreeBSD : django -- multiple vulnerabilities (5f326d75-1db9-11e2-bc8f-d0df9acfd7e5)

The Django Project reports : - Host header poisoning Some parts of Django -- independent of end-user-written applications -- make use of full URLs, including domain name, which are generated from the HTTP Host header. Some attacks against this are beyond Django's ability to control, and require t...

Ubuntu 12.04 LTS : webkit vulnerabilities (USN-1617-1)

A large number of security issues were discovered in the WebKit browser and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service...

CentOS Update for thunderbird CESA-2012:1351 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...