20 matches found
EUVD-2008-3216
Malware in sbrugna...
EUVD-2016-10094
Malware in sbrugna...
Malicious code in @zalastax/nolb-_sef (npm)
The package @zalastax/nolb-sef was found to contain malicious code...
MAL-2025-10399 Malicious code in @zalastax/nolb-_sef (npm)
The package @zalastax/nolb-sef was found to contain malicious code...
sef-technologies.com Cross Site Scripting vulnerability OBB-3474621
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Joomla! doesn't configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs
Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors...
GHSA-MXR8-PCPG-M23J Joomla! doesn't configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs
Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors...
Sql injection
SQL Injection in framework/core/subsystems/expRouter.php in Exponent CMS v2.4.0 allows remote attackers to read database information via address/addContentToSearch/id/ and a trailing string, related to a "sef URL" issue...
CVE-2016-9283
SQL Injection in framework/core/subsystems/expRouter.php in Exponent CMS v2.4.0 allows remote attackers to read database information via address/addContentToSearch/id/ and a trailing string, related to a "sef URL" issue...
Joomla Component Sef (com_sef) - LFI Vulnerability
No description provided by source...
Joomla Component com_sef LFI Vulnerability
Exploit for php platform in category web applications ========================================== Joomla Component comsef LFI Vulnerability ========================================== Author: mlk Software Link: http://bugsec.googlecode.com/files/Joomlacomsef.zip Version: 0 Tested on: all OS CVE : 0...
Joomla Component com_joomfish sef plugin version < 2.0.4 XSS Vuln
Exploit for php platform in category web applications ========================================================================== Joomla Component comjoomfish sef plugin version XSS By Fatal Error x Demo: http://www.euskaletxeak.net/index.php?option=whatevertextyouwant="XSS By Fatal Error x Made i...
Design/Logic Flaw
Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors...
CVE-2008-3228
Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors...
CVE-2008-3228
Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors...
CVE-2006-3480
Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.0.10 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters involving the 1 getUserStateFromRequest function, and the 2 SEF and 3 commessages modules...
Joomla -- multiple vulnerabilities
Joomla Site reports: Secured "Remember Me" functionality against SQL injection attacks Secured "Related Items" module against SQL injection attacks Secured "Weblinks" submission against SQL injection attacks Secured SEF from XSS vulnerability Hardened frontend submission forms against spoofing...
CVE-2002-0302
The CVE-2002-0302 issue affects the Notify daemon in Symantec Enterprise Firewall (SEF) 6.5.x. When SNMP is used as the transport, the daemon drops large alerts, which could prevent some alerts from being sent during an attack. This reduces visibility of events that would otherwise trigger notifi...
CVE-2003-0106
The CVE-2003-0106 entry concerns Symantec Enterprise Firewall (SEF) 7.0 HTTP proxy URL pattern matching that can be bypassed when requests are URL-encoded (escapes, Unicode, UTF-8). The issue allows proxy users to bypass blocked URL pattern matching, enabling access to URLs that should be blocked...
CVE-2003-0030
The CVE-2003-0030 issue affects Protegrity Secure.Data for Microsoft SQL Server 2000, where buffer overflows in protegrity.dll (SEF) enable arbitrary code execution via extended stored procedures xp_pty_checkusers, xp_pty_insert, and xp_pty_select. Affected versions include SEF prior to 2.2.3.9; ...