ExpressView Browser Plugin 6.5.0.3330 - Multiple Integer Overflow Remote Code Execution Vulnerabilities

ExpressView Browser Plugin 6.5.0.3330 - Multiple Integer Overflow Remote Code Execution Vulnerabilities source: https://www.securityfocus.com/bid/51367/info ExpressView Browser Plug-in is prone to multiple integer overflow and remote code-execution vulnerabilities. Successful attacks will allow...

w-CMS <= 2.0.1 Multiple Vulnerabilities - Active Check

w-CMS is prone to multiple HTML-injection vulnerabilities and a local file include LFI vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

SAPID CMS Multiple Remote File Include Vulnerabilities

SAPID CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute arbitrary script code in the context of the webserver process. This...

Wireshark - Buffer Underflow / Denial of Service

source: https://www.securityfocus.com/bid/51710/info Wireshark is prone to a buffer-underflow vulnerability and multiple denial-of-service vulnerabilities. Remote attackers can exploit these issues to execute arbitrary code in the context of the application or cause denial-of-service conditions...

Clipbucket 2.6 - &#039;videos.php?time&#039; SQL Injection

source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

Clipbucket 2.6 - &#039;search_result.php?query&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

Clipbucket 2.6 - &#039;collections.php?cat&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

Clipbucket 2.6 - &#039;videos.php?cat&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

Atar2b CMS 4.0.1 - pageH.php?id SQL Injection

Atar2b CMS 4.0.1 - pageH.php?id SQL Injection source: https://www.securityfocus.com/bid/51317/info Atar2b CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...

SenseSites CommonSense CMS - article.php?id SQL Injection

SenseSites CommonSense CMS - article.php?id SQL Injection source: https://www.securityfocus.com/bid/55893/info CommonSense CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue cou...

SQLiteManager <= 1.2.4 Multiple XSS Vulnerabilities

SQLiteManager is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

eFront 3.6.10 - &#039;download&#039; Directory Traversal

source: https://www.securityfocus.com/bid/51302/info eFront is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Successfully exploiting the issue may allow an attacker to obtain sensitive information that could aid in further attacks...

PHP Booking Calendar 'page_info_message' Parameter Cross Site Scripting Vulnerability

PHP Booking Calendar is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

StatIt 4 - &#039;statistik.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51280/info StatIt is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

phpMyAdmin Setup '$host' Variable Cross Site Scripting Vulnerability

phpMyAdmin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Mozilla Products DOMAttrModified Memory Corruption Vulnerability - Windows

Mozilla Firefox/Thunderbird/Seamonkey is prone to out of bounds memory corruption vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

Joomla Component (com_dshop) SQL Injection Vulnerability

0 0 0 Exploit Title: Joomla Component comdshop SQL Injection Vulnerability Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : inurl:comdshop Status : High-Risk Script Page : null Reference : http://www.securityfocus.com/bid/47971/info SQL Vulnerability...

Joomla! Component com_tsonymf - idofitem SQL Injection

Joomla! Component comtsonymf - idofitem SQL Injection source: https://www.securityfocus.com/bid/51125/info Joomla! 'comtsonymf' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...

HomeSeer HS2 Web Interface <= 2.5.0.20 Multiple XSS Vulnerabilities - Active Check

HomeSeer HS2 is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

Joomla Component (com_dshop) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla Component comdshop SQL Injection Vulnerability Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : inurl:comdshop Status : High-Risk Script Page : null Reference : http://www.securityfocus.com/bid/47971/info...