2326 matches found
Joomla! Component com_dshop - SQL Injection
Joomla! Component comdshop - SQL Injection Exploit Title: Joomla Component comdshop SQL Injection Vulnerability Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : inurl:comdshop Status : High-Risk Script Page : null Reference : https://www.securityfocus.com/bid/47971/info SQL...
Joomla! Component com_dshop - SQL Injection
Exploit Title: Joomla Component comdshop SQL Injection Vulnerability Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : inurl:comdshop Status : High-Risk Script Page : null Reference : https://www.securityfocus.com/bid/47971/info SQL Vulnerability...
Nagios XI - Multiple Cross-Site Scripting HTML Injection Vulnerabilities
Nagios XI - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: www.securityfocus.com/bid/51069/info Nagios XI is prone to an HTML injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Successful...
BrowserCRM 5.100.1 - contact_id SQL Injection
BrowserCRM 5.100.1 - contactid SQL Injection source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...
HP OpenView Network Node Manager Multiple RCE Vulnerabilities
HP OpenView Network Node Manager NNM is prone to multiple remote code-execution vulnerabilities because it fails to sanitize user-supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective rig...
BrowserCRM 5.100.1 - 'contact_id' SQL Injection
source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...
Trend Micro InterScan Web Security Suite Local Privilege Escalation
Added: 12/09/2011 BID: 50380 OSVDB: 76637 Background Trend Micro InterScan Web Security Suite is an application which dynamically defends against web-based attacks at the Internet gateway. Problem Trend Micro InterScan Web Security Suite is vulnerable to local privilege escalation vulnerability...
Oracle Database Server Multiple Vulnerabilities (Jul 2006)
Oracle database is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:databaseserver";...
Support Incident Tracker 3.45 - 3.65 RCE Vulnerability
Support Incident Tracker is prone to a remote code execution RCE vulnerability because the application fails to sufficiently sanitize user-supplied input. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Hastymail < 2.1.1 RC2 RCE Vulnerability
Hastymail2 is prone to a remote code execution vulnerability. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...
Balitbang CMS 3.3 - alumni.php?hal SQL Injection
Balitbang CMS 3.3 - alumni.php?hal SQL Injection source: https://www.securityfocus.com/bid/50797/info CMS Balitbang is prone to multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...
PrestaShop 1.4.4.1 - modulesmondialrelaykit_mondialrelaySuiviExpedition_ajax.php?Expedition Cross-Site Scripting
PrestaShop 1.4.4.1 - modulesmondialrelaykitmondialrelaySuiviExpeditionajax.php?Expedition Cross-Site Scripting source: https://www.securityfocus.com/bid/50784/info PrestaShop is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An...
Embedthis GoAhead 2.5 'name' and 'address' XSS Vulnerabilities - Active Check
Embedthis GoAhead is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Centreon 'command_name' Parameter Remote Command Execution Vulnerability
Centreon is prone to a remote command-injection vulnerability. Attackers can exploit this issue to execute arbitrary commands in the context of the application. Centreon 2.3.1 is affected; other versions may also be vulnerable. OpenVAS Vulnerability Test $Id: gbcentreon50568.nasl 7044 2017-09-01...
DLGuard XSS Vulnerability (Nov 2011)
DLGuard is prone to a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Infoblox NetMRI 6.2.1 - Admin Login Page Multiple Cross-Site Scripting Vulnerabilities
Infoblox NetMRI 6.2.1 - Admin Login Page Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/50646/info Infoblox NetMRI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in...
Wireshark CSN.1 Dissector Denial of Service Vulnerability - Windows
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
KnFTP 1.0 - Remote Buffer Overflow (DEP Bypass) (Metasploit)
KnFTP 1.0 - Remote Buffer Overflow DEP Bypass Metasploit module for metasploit framework, for more information see the Description. Copyright C October 04th 2011 Author: Javier Aguinaga pasta el.tio.pastafrolaatgmail.com This program is free software: you can redistribute it and/or modify it unde...
KnFTP 1.0 - Remote Buffer Overflow (DEP Bypass) (Metasploit)
module for metasploit framework, for more information see the Description. Copyright C October 04th 2011 Author: Javier Aguinaga pasta el.tio.pastafrolaatgmail.com This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as publishe...
CaupoShop 'template' Parameter Local File Include Vulnerability
CaupoShop is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the Web server process. This may all...