Rockwell Automation FactoryTalk Updater Agent < 4.20.00 Privilege Escalation

The version of Rockwell Automation FactoryTalk Updater Agent installed on the remote Windows host is prior to 4.20.0. It is, therefore, affected by a privilege escalation vulnerability. For more information, consult the vendor advisory. Note that Nessus has not tested for these issues but has...

Multiple Vendors '/servlets/FetchFile' Multiple Vulnerabilities - Active Check

Multiple vulnerabilities affecting the remote device have been found, these vulnerabilities allows uploading of arbitrary files and their execution, arbitrary file download with directory traversal, use of a weak algorithm for storing passwords and session hijacking. SPDX-FileCopyrightText: 2016...

Fortimail 5.2.1 Cross Site Scripting

I. VULNERABILITY ------------------------- XSS Reflected vulnerabilities in Fortimail version 5.2.1 II. BACKGROUND ------------------------- Fortinet’s industry-leading, Network Security Platforms deliver Next Generation Firewall NGFW security with exceptional throughput, ultra low latency, and...

threedify designer 5.0.2 - Multiple Vulnerabilities

No description provided by source. ========================================= Vulnerability ID: HTB23021 Reference: http://www.htbridge.ch/advisory/threedifydesigneractivexcontrolinsecuremethod.html Product: ThreeDify Designer Vendor: ThreeDify http://www.threedify.com Vulnerable Version: 5.0.2 an...

Mod_Auth_OpenID Session Stealing Vulnerability

No description provided by source. https://github.com/paranoid/modauthopenid/blob/master/CVE-2012-2760.markdown Security Advisory 1201 Summary : Session stealing Date : May 2012 Affected versions : all versions prior to modauthopenid-0.7 ID : modauthopenid-1201 CVE reference : CVE-2012-2760 Detai...

Apache Mod_Auth_OpenID - Session Stealing

Apache ModAuthOpenID - Session Stealing https://github.com/paranoid/modauthopenid/blob/master/CVE-2012-2760.markdown Security Advisory 1201 Summary : Session stealing Date : May 2012 Affected versions : all versions prior to modauthopenid-0.7 ID : modauthopenid-1201 CVE reference : CVE-2012-2760...

Blog:CMS 4.2.1e - Multiple Vulnerabilities

Blog:CMS 4.2.1e - Multiple Vulnerabilities Vulnerability ID: HTB22727 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinblogcms.html Product: BLOG:CMS Vendor: Radek Hulán http://blogcms.com/ Vulnerable Version: 4.2.1.e and probably prior versions Vendor Notification: 30 November 2010...

Contenido CMS 4.8.12 - Cross-Site Scripting

Vulnerability ID: HTB22635 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincontenidocms.html Product: Contenido CMS Vendor: four for business AG http://www.contenido.org/ Vulnerable Version: 4.8.12 and Probably Prior Versions Vendor Notification: 29 September 2010 Vulnerability Type:...

Front Accounting 2.3RC2 - Multiple Persistent Cross-Site Scripting Vulnerabilities

Front Accounting 2.3RC2 - Multiple Persistent Cross-Site Scripting Vulnerabilities Advisory Name: Multiple Persistent Cross-Site Scripting XSS in Front Accounting Internal Cybsec Advisory Id: 2010-1001-Multiple Persistent XSSs in Front Accounting Vulnerability Class: Permanent Cross-Site Scriptin...

SweetRice 0.6.7 - Multiple Vulnerabilities

SweetRice 0.6.7 - Multiple Vulnerabilities Vulnerability ID: HTB22669 Reference: http://www.htbridge.ch/advisory/resetadminpasswordinsweetricecms.html Product: SweetRice CMS Vendor: basic-cms.org http://www.basic-cms.org/ Vulnerable Version: 0.6.7 Vendor Notification: 21 October 2010 Vulnerabilit...

REvolution 10.02 - Cross-Site Request Forgery

REvolution 10.02 - Cross-Site Request Forgery Vulnerability ID: HTB22367 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinnpdsrevolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 06 May 2010 Vulnerability...

gpEasy CMS 1.6.2 Cross Site Scripting

Vulnerability ID: HTB22370 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityingpeasycms.html Product: gpEasy CMS Vendor: gpeasy Vulnerable Version: 1.6.2 and Probably Prior Versions Vendor Notification: 05 May 2010 Vulnerability Type: XSS Cross Site Scripting Status: Fixed by Vendor Ris...

aMSN session hijack vulnerability (Windows)

This host is installed with aMSN and is prone to session hijack vulnerability. OpenVAS Vulnerability Test $Id: secpodamsnsessionhijackvulnwin.nasl 7573 2017-10-26 09:18:50Z cfischer $ aMSN session hijack vulnerability Windows Authors: Madhuri D Copyright: Copyright c 2010 SecPod,...

Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability

The host is running Adobe Presenter, which prone to to input validation errors which can be exploited by malicious people to conduct cross-site scripting vulnerability. OpenVAS Vulnerability Test $Id: secpodadobepresenterxssvuln900110.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: Adobe...

PHP ZLink 'go.php' SQL注入漏洞

PHP ZLink是一款基于PHP的WEB应用程序。 PHP ZLink不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行SQL注入攻击，可获得敏感信息或操作数据库。 问题是由于'go.php'脚本对用户提交的WEB参数处理缺少充分过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 Zeak.net PHP ZLink 0.3 目前没有解决方案提供： http://www.zeak.net/ !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV3 print "\n \'/...

phpBB < 2.0.10 Multiple XSS

The remote host is running a version of phpBB older than 2.0.10. phpBB contains a flaw that allows a remote cross-site scripting attack. This flaw exists because the application does not validate user-supplied input in the 'searchauthor' parameter. This version is also vulnerable to an HTTP...

Samba < 2.2.8a / 3.0.0 Multiple Remote Overflows

The remote Samba server is vulnerable to a buffer overflow when it calls the function trans2open. An attacker may exploit this flaw to gain a root shell on this host. In addition, it is reported that this version of Samba is vulnerable to additional overflows, although Nessus has not checked for...

CUPS < 1.1.18 Multiple Vulnerabilities

The remote CUPS server seems vulnerable to various flaws buffer overflow, denial of service, privilege escalation that could allow a remote attacker to shut down this service or remotely gain the privileges of the 'lp' user. C Tenable Network Security, Inc. This script checks for CVE-2002-1368, b...

UUCP package contains multiple buffer overflows via long string of characters sent as command line argument

Overview Several Linux/Unix systems ship with a utility package called UUCP derived from System V. A buffer overflow in components of the UUCP package can allow an intruder to gain elevated privileges. Description Several Linux/Unix systems ship with a utility package called UUCP derived from...

openssh.forwarding.txt

Hostile servers can force OpenSSH clients to do agent or X11 forwarding 1. Systems affected: All versions of OpenSSH prior to 2.3.0 are affected. 2. Description: If agent or X11 forwarding is disabled in the ssh client configuration, the client does not request these features during session setup...