247 matches found
PHP vulnerability full solution-vulnerability warning-the black bar safety net
PHP web page security issues For PHP website mainly exist the following types of attacks: 1. Command injectionCommand Injection 2. eval injectionEval Injection 3. Client scripting attacksScript Insertion 4. Cross-site scripting attacksCross Site Scripting, XSS 5. SQL injectionattacksSQL injection...
Cross site scripting
The Apache HTTP Server in Apple Mac OS X before 10.6.2 enables the HTTP TRACE method, which allows remote attackers to conduct cross-site scripting XSS attacks via unspecified web client software...
CVE-2009-3264
The getSVGDocument method in Google Chrome before 3.0.195.21 omits an unspecified "access check," which allows remote web servers to bypass the Same Origin Policy and conduct cross-site scripting attacks via unknown vectors, related to a user's visit to a different web server that hosts an SVG...
Google Chrome 'javascript: URI' XSS Vulnerability - Sep09
This host is installed with Google Chrome Web Browser and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbgooglechromejsurixssvulnsep09.nasl 4869 2016-12-29 11:01:45Z teissa $ Google Chrome 'javascript: URI' XSS Vulnerability - Sep09 Authors: Sharath S Copyright:...
Mandrake Security Advisory MDVSA-2009:185 (firefox)
The remote host is missing an update to firefox announced via advisory MDVSA-2009:185. OpenVAS Vulnerability Test $Id: mdksa2009185.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:185 firefox Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
DSA-1840-1 xulrunner - several vulnerabilities
Bulletin has no description...
Ubuntu Update for mozilla-thunderbird, thunderbird vulnerabilities USN-605-1
Ubuntu Update for Linux kernel vulnerabilities USN-605-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6051.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for mozilla-thunderbird, thunderbird vulnerabilities USN-605-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networ...
Ubuntu Update for firefox vulnerabilities USN-428-1
Ubuntu Update for Linux kernel vulnerabilities USN-428-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4281.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox vulnerabilities USN-428-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Ubuntu Update for firefox vulnerabilities USN-592-1
Ubuntu Update for Linux kernel vulnerabilities USN-592-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5921.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox vulnerabilities USN-592-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Nagios -- Cross Site Scripting Vulnerability
Secunia reports: A vulnerability has been reported in Nagios, which can be exploited by malicious people to conduct cross-site scripting attacks...
Universal honker CNN attack techniques parsing-vulnerability warning-the black bar safety net
Recently, CNN anchor, Carver te for the Chinese people with a strong discriminatory remarks, and CNN for this event the lack of sincerity of the apology and for the Chinese government's groundless accusations, roused the people of the country to strong indignation. So in some Patriotic art...
Debian: Security Advisory (DSA-265)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Cross site scripting
Unspecified vulnerability in the Boost module before 4.7.x-1.0, and 5.x before 5.x-1.0, for Drupal allows remote attackers to create or overwrite arbitrary files, and conduct cross-site scripting attacks XSS via unspecified vectors...
CVE-2007-5270
Unspecified vulnerability in the Boost module before 4.7.x-1.0, and 5.x before 5.x-1.0, for Drupal allows remote attackers to create or overwrite arbitrary files, and conduct cross-site scripting attacks XSS via unspecified vectors...
MSIE DHTML Edit cross-site scripting vulnerability in-depth use-vulnerability warning-the black bar safety net
MSIE DHTML Edit cross-site scripting vulnerability Microsoft at last released the MSIE DHTML Edit control cross site scripting vulnerability, but the circle has not released a good EXP, got a bunch of newbies Complain incessantly, don't worry, this is not for everyone to feast?! Affected system...
FreeBSD : joomla -- multiple vulnerabilities (4872d9a7-4128-11dc-bdb0-0016179b2dd5)
A Secunia Advisory reports : joomla can be exploited to conduct session fixation attacks, cross-site scripting attacks or HTTP response splitting attacks. Certain unspecified input passed in comsearch, comcontent and modlogin is not properly sanitised before being returned to a user. This can be...
Cross site scripting
Argument injection vulnerability in Mozilla Firefox before 2.0.0.5, when running on systems with Thunderbird 1.5 installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a mailto URI, which...
CVE-2007-4039
Argument injection vulnerability involving Mozilla, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in an unspecified URI, which are inserted into the command line when invoking the handli...
EPortfolio 1.0 - Client-Side Input Validation
source: https://www.securityfocus.com/bid/22829/info ePortfolio is prone to a client-side input-validation vulnerability because the application fails to sufficiently sanitize user-supplied data. An attacker can exploit this issue to perform various attacks that are caused by input-validation...
PHP Link Directory XSS Vulnerability version <= 3.0.6
Smilehouse Oy -= Security Advisory =- Advisory: PHP Link Directory XSS Vulnerability Release Date: 2007/01/21 Last Modified: 2007/01/21 Authors: Jussi Vuokko, CISSP [email protected] Henri Lindberg, Associate of ISCІ [email protected] Application: PHP Link Directory = 3.0.6...