1036 matches found
Parallels H Sphere 3.3 P1 Cross Site Scripting
Title: ====== Parallels H Sphere v3.3 P1 - Multiple Persistent Vulnerabilities Date: ===== 2012-01-22 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=392 VL-ID: ===== 392 Introduction: ============= Parallels H-Sphere delivers a multi-server hosting automation solution...
Parallels H Sphere v3.3 P1 - Multiple Web Vulnerabilities
Document Title: =============== Parallels H Sphere v3.3 P1 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=392 Release Date: ============= 2012-01-21 Vulnerability Laboratory ID VL-ID: ==================================== 3...
Parallels H Sphere v3.3 P1 - Multiple Web Vulnerabilities
Document Title: =============== Parallels H Sphere v3.3 P1 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=392 Release Date: ============= 2012-01-21 Vulnerability Laboratory ID VL-ID: ==================================== 3...
Unfixed XSS vulnerability at www.micro-sphere-ch.com
Security researcher IrIsT.Ir, has submitted on 29/12/2011 a cross-site-scripting XSS vulnerability affecting www.micro-sphere-ch.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/12/2011. It is...
Fedora 13 : gimp-2.6.11-14.fc13 (2011-7397)
This update fixes buffer overflows in the PSP CVE-2010-4543, CVE-2011-1782, sphere-designer CVE-2010-4541, gfig CVE-2010-4542 and lighting CVE-2010-4540 plugins. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable ha...
gimp security update
CentOS Errata and Security Advisory CESA-2011:0837 Updated gimp packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...
Gimp: Stack-based buffer overflow in SphereDesigner plug-in
Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...
Gimp: Stack-based buffer overflow in SphereDesigner plug-in
Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...
Gimp: Stack-based buffer overflow in SphereDesigner plug-in
Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...
DEBIAN-CVE-2010-4541
Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...
CVE-2010-4541
CVE-2010-4541 affects GIMP 2.6.11 via the Sphere Designer plugin (loadit function). A stack-based buffer overflow can be triggered by a long Number of lights value in a plugin configuration file, enabling user-assisted remote exploitation and potentially crashing the application or executing arbi...
CVE-2010-4541
Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...
CVE-2010-4541
Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...
XlentCMS 1.0.4 SQL Injection
Script : XlentCMS V1.0.4 downloads.php?cat SQL Injection Vulnerability Script site : http://sphere.xlentprojects.se/portal.php AUTHOR : Gamoscu HOME : http://www.1923turk.biz Blog : http://gamoscu.wordpress.com/ Greetz : Manas58 Baybora Delibey Tiamo Psiko Turco infazci X-TRO...
XlentCMS 1.0.4 - 'downloads.php?cat' SQL Injection
Script : XlentCMS V1.0.4 downloads.php?cat SQL Injection Vulnerability Script site : http://sphere.xlentprojects.se/portal.php AUTHOR : Gamoscu HOME : http://www.1923turk.biz Blog : http://gamoscu.wordpress.com/ Greetz : Manas58 Baybora Delibey Tiamo Psiko Turco infazci X-TRO...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remote attackers to inject arbitrary web script or HTML via the 1 err, 2 errorcode, and 3 login parameters...
CVE-2008-6465
Multiple cross-site scripting XSS vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remote attackers to inject arbitrary web script or HTML via the 1 err, 2 errorcode, and 3 login parameters...
CVE-2008-6465
CVE-2008-6465 affects Parallels H-Sphere 3.0.0 P9 and 3.1 P1. The NUCLEI template documents multiple cross-site scripting (XSS) flaws in login.php within webshell4, allowing an attacker to inject arbitrary script/HTML via the parameters (err, errorcode, login). Potential impact includes theft of ...
CVE-2008-6465
Multiple cross-site scripting XSS vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remote attackers to inject arbitrary web script or HTML via the 1 err, 2 errorcode, and 3 login parameters...
CVE-2008-4447
Cross-site scripting XSS vulnerability in actions.php in Positive Software H-Sphere WebShell 4.3.10 allows remote attackers to inject arbitrary web script or HTML via 1 the fn parameter during a dload action, 2 the mask parameter during a search action, and 3 the tab parameter during a sysinfo...