ProjectForum 7.0.1 3038 - 'more' Object HTML Injection

source: https://www.securityfocus.com/bid/49895/info ProjectForum is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of th...

WordPress Plugin WP Bannerize 2.8.7 - 'ajax_sorter.php' SQL Injection

source: https://www.securityfocus.com/bid/49893/info The WP Bannerize plug-in for WordPress is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

FreeBSD UIPC socket heap overflow proof-of-concept

Exploit for freebsd platform in category dos / poc !/bin/sh fbsd-uipcsock-heap.sh, by Shaun Colley , 29/09/11 proof-of-concept crash for the freebsd unix domain sockets heap overflow. this was tested on freebsd 8.2-RELEASE. just a PoC for now. see advisory & patches for details:...

MyNews 1.2 'basepath' Parameter Multiple Remote File Include Vulnerabilities

MyNews 1.2 is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user- supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or to execute arbitrary script code in the context of the Web server...

IceWarp Web Mail Multiple Information Disclosure Vulnerabilities

IceWarp Web Mail is prone to multiple information-disclosure vulnerabilities. Attackers can exploit these issues to gain access to potentially sensitive information, and possibly cause denial-of-service conditions; other attacks may also be possible. OpenVAS Vulnerability Test $Id:...

A2CMS - index.php Local File Disclosure

A2CMS - index.php Local File Disclosure source: https://www.securityfocus.com/bid/49883/info A2CMS is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive...

Bloggeruniverse 'editcomments.php' SQL Injection Vulnerability

Bloggeruniverse is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Vanira CMS - 'vtpidshow' SQL Injection

source: https://www.securityfocus.com/bid/49789/info Vanira CMS is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit will allow an attacker to compromise the application, access or...

Joomla! Component Biitatemplateshop - groups SQL Injection

Joomla! Component Biitatemplateshop - groups SQL Injection source: https://www.securityfocus.com/bid/49786/info The 'combiitatemplateshop' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Tourismscripts Hotel Portal 'hotel_city' Parameter HTML Injection Vulnerability

Hotel Portal is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie- based authentication credentials or...

Bonza Digital Cart Script Cross Site Scripting and SQL Injection Vulnerabilities

Bonza Digital Cart Script is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources,...

TWiki 5.0.2 SlideShowPlugin - Slide Show Pages URI Cross-Site Scripting

TWiki 5.0.2 SlideShowPlugin - Slide Show Pages URI Cross-Site Scripting source: https://www.securityfocus.com/bid/49746/info TWiki is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execu...

GeoClassifieds Lite Multiple Vulnerabilities (Sep 2011) - Active Check

GeoClassifieds Lite is prone to multiple SQL injection SQLi and cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Cogent DataHub Unicode Buffer Overflow Vulnerability - Active Check

Cogent DataHub is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Papoo CMS Light <= 4.0 Multiple XSS Vulnerabilities - Active Check

Papoo CMS Light is prone to multiple cross-site scripting XSS vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

TWiki 5.0.2 SlideShowPlugin - Slide Show Pages URI Cross-Site Scripting

source: https://www.securityfocus.com/bid/49746/info TWiki is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

WordPress <= 0.1 Filedownload Plugin Local File Disclosure Vulnerability

The Filedownload plugin for WordPress is prone to a local file- disclosure vulnerability because it fails to adequately validate user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...

WordPress Count per Day Plugin 'month' Parameter SQL Injection Vulnerability

The SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; if description scriptoid"1.3.6.1.4.1.25623.1.0.103259";...

iBrowser Plugin v1.4.1 (lang) Local File Inclusion Vulnerability

Summary iBrowser is an image browser plugin for WYSIWYG editors like tinyMCE, SPAW, htmlAREA, Xinha and FCKeditor developed by net4visions. It allows image browsing, resizing on upload, directory management and more with the integration of the phpThumb image library. Description iBrowser suffers...

Support Incident Tracker (SiT!) < 3.65 Multiple Vulnerabilities - Active Check

Support Incident Tracker SiT! is prone to multiple vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...