23 matches found
CVE-2010-2404 | Persistent Cross Site Scripting Vulnerability in Oracle I-Recruitment - E-Business Suite
Advisory: Persistent Cross Site Scripting Vulnerability in Oracle I-Recruitment File Uploading Module- E-Business Suite CVE-2010-2404 Version Affected - 11.5.10.2, 12.0.6, 12.1.3 About: Oracle I-Recruitment Suite Oracle iRecruitment is a web based full-cycle recruiting solution that gives manager...
NoScript可绕过 "Reflective XSS"检测漏洞
NoScript Firefox extension是一款免费的开源插件,提供对Firefox、Seamonkey和其他基于Mozilla浏览器的额外保护。 NoScript的实现上存在漏洞,远程攻击者可利用此漏洞绕过反射式XSS保护。 在通过SQLXSSI发动攻击时,NoScript未能从受信任的域中检测到反射式XSS。通过利用浏览器中的错误信息机制发动Union SQL投毒攻击而导致的“Reflective XSS”可成功地绕过NoScript。 NoScript NoScript 2.0.5.1 NoScript NoScript 2.0.6 厂商补丁: NoScript...
CVE-2010-2408 | Persistent Log Out Redirection Vulnerability in Oracle I-Recruitment OA.jsp
Advisory: Persistent Log Out Redirection Vulnerability in Oracle I-Recruitment OA.jsp CVE-2010-2408 Version Affected - 11.5.10.2, 12.0.6, 12.1.3 About: Oracle I-Recruitment Suite Oracle iRecruitment is a web based full-cycle recruiting solution that gives managers, recruiters and candidates the...
NoScript Cross Site Scripting Via SQL Injection
Hi List NoScript fails to detect the reflective XSS from trusted domains when an attack is conducted through SQLXSSI. The bypass in NoScript has been successfully conducted by using "Reflective XSS" through Union SQL poisoning attacks by exploiting the reverted errors in the browser. The attack...
Oracle I-Recruitment Redirection
Advisory: Persistent Log Out Redirection Vulnerability in Oracle I-Recruitment OA.jsp CVE-2010-2408 Version Affected - 11.5.10.2, 12.0.6, 12.1.3 About: Oracle I-Recruitment Suite Oracle iRecruitment is a web based full-cycle recruiting solution that gives managers, recruiters and candidates the...
Opera PDF Javascript Security Bypass Vulnerability (Windows)
The host is installed with Opera Web Browser and is prone to PDF Javascript Security Bypass Vulnerability. OpenVAS Vulnerability Test $Id: secpodoperapdfjsrestbypassvulnwin.nasl 5122 2017-01-27 12:16:00Z teissa $ Opera PDF Javascript Security Bypass Vulnerability Windows Authors: Antu Sanadi...
Google Chrome 1.0.154.53 (Null Pointer) Remote Crash Exploit
No description provided by source. html head titleGoogle Chrome 1.0.154.53 "throw exception" Remote Crash and Denial of Service - /title script language="JavaScript" var nopsled=unescape"%u9090"; var...
Google Chrome 1.0.154.53 - Null Pointer Remote Crash
Google Chrome 1.0.154.53 - Null Pointer Remote Crash Google Chrome 1.0.154.53 "throw exception" Remote Crash and Denial of Service - var nopsled=unescape"%u9090"; var...
Google Chrome 1.0.154.53 (Null Pointer) Remote Crash Exploit
Exploit for unknown platform in category dos / poc ============================================================ Google Chrome 1.0.154.53 Null Pointer Remote Crash Exploit ============================================================ Google Chrome 1.0.154.53 "throw exception" Remote Crash and Denia...
Google Chrome 1.0.154.53 - Null Pointer Remote Crash
Google Chrome 1.0.154.53 "throw exception" Remote Crash and Denial of Service - var nopsled=unescape"%u9090"; var...
Google Chrome 1.0.154.48 Single Thread Alert Out of Bound MEM Access
Exploit for unknown platform in category dos / poc ============================================================ Google Chrome 1.0.154.53 Null Pointer Remote Crash Exploit ============================================================ Google Chrome 1.0.154.53 "throw exception" Remote Crash and Denia...
Advisory: Oracle EBusiness Suite Sensitive Information Disclosure Vulnerability
Version Affected: Oracle E-Business Suite Release 12, version 12.0.6 Oracle E-Business Suite Release 11i, version 11.5.10.2 CVE: 2008-5446 Description: The oracle E Business including applications like I-Recruitment etc is vulnerable to flaw which leads to sensitive information disclosure about t...
Google Chrome - MetaCharacter URI Obfuscation
Google Chrome - MetaCharacter URI Obfuscation Google Chrome MetaCharacter URI Obfuscation Vulnerability. Google Chrome MetaCharacter URI Obfuscation Vulnerability.C SecNiche Security / Proof of Concept By:- Aditya K Sood. This POC has been designed with minimum object usage. This can be made more...
Google Chrome OnbeforeUload and OnUnload Null Check Vulnerability.
Advisory: Google Chrome OnbeforeUload and OnUnload Null Check Vulnerability. Version Affected: Chrome/0.2.149.30 Chrome/0.2.149.29 Chrome/0.2.149.27 Description: Google chrome is susceptible to stringent behavior while handling "onbeforeunload" and "onunload" event in body tags. The malicious...
Advisory: Mozilla Firefox User Interface Null Pointer Dereference Dispatcher Crash and Remote Denial of Service.
Mozilla Firefox User Interface Null Pointer Dereference Dispatcher Crash and Remote Denial of Service. Version Tested: Mozilla 3.0.3 - 1.9.0 Branch /Specifically for Latest Version/ Severity: High Description: The mozilla firefox is vulnerable to user interface event dispatcher null pointer...
Opera 9.52 Window Object Suppressing Remote Denial of Service Exploit
No description provided by source. Opera Window Object Suppressing Remote Denial of Service. Version Affected: Opera 9.52 Severity: High Description: The opera browser is vulnerable to window object based denial of service attack. The opera fails to sanitize a check when window.close function is...
Mozilla Firefox 3.0.3 User Interface Null Pointer Dereference Crash
Exploit for unknown platform in category dos / poc =================================================================== Mozilla Firefox 3.0.3 User Interface Null Pointer Dereference Crash ===================================================================...
Opera 9.52 - Window Object Suppressing Remote Denial of Service
Opera Window Object Suppressing Remote Denial of Service. Version Affected: Opera 9.52 Severity: High Description: The opera browser is vulnerable to window object based denial of service attack. The opera fails to sanitize a check when window.close function is called in number of dynamically...
Opera 9.52 Window Object Suppressing Remote Denial of Service Exploit
Exploit for unknown platform in category dos / poc ===================================================================== Opera 9.52 Window Object Suppressing Remote Denial of Service Exploit ===================================================================== Opera Window Object Suppressing Remo...
Google Chrome - Carriage Return Null Object Memory Exhaustion
Google Chrome - Carriage Return Null Object Memory Exhaustion Google Chrome Carriage Return Null Object Memory Exhaustion Remote Dos. window.open"\r\n\r\n"; window.refresh; window.open"\r\n\r\n"; Google Chrome Carriage Return Null Object Memory Exhaustion Remote Denial of Service.Proof of Concept...