Microsoft Windows: MSS: Enable Safe DLL search mode

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winmlsafedllsearchmode.nasl 11337 2018-09-11 14:23:53Z emoss $ Check value for MSS: SafeDllSearchMode Enable Safe DLL search mode recommended Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH,...

CURL-CVE-2016-4802 Windows DLL hijacking

libcurl would load Windows system DLLs in a manner that may make it vulnerable to a DLL hijacking aka binary planting attack in certain configurations. libcurl has a unified code base that builds and runs on a multitude of different versions of Windows. To make that possible, when libcurl is buil...

KaiBB 2.0.1 - SQL Injection Arbitrary File Upload

KaiBB 2.0.1 - SQL Injection Arbitrary File Upload source: https://www.securityfocus.com/bid/49421/info KaiBB is prone to multiple SQL-injection vulnerabilities and a arbitrary-file-upload vulnerability because it fails to sanitize user-supplied data. Exploiting these issues could allow an attacke...

Unfixed XSS vulnerability at www.balyayla.com

Security researcher CiCoSz, has submitted on 11/08/2007 a cross-site-scripting XSS vulnerability affecting www.balyayla.com, which at the time of submission ranked 11345283 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/08/2007. It is...

CVE-2006-4543

CVE-2006-4543 is an XSS vulnerability in HLStats 1.34 (index.php). The issue allows remote attackers to inject arbitrary script or HTML via specific parameters across multiple modes: (1) game in players mode, (2) weapon in weaponinfo mode, (3) st in search mode, (4) action in actioninfo mode, and...