Lucene search
K

1036 matches found

Packet Storm
Packet Storm
added 2012/01/23 12:0 a.m.43 views

Parallels H Sphere 3.3 P1 Cross Site Scripting

Title: ====== Parallels H Sphere v3.3 P1 - Multiple Persistent Vulnerabilities Date: ===== 2012-01-22 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=392 VL-ID: ===== 392 Introduction: ============= Parallels H-Sphere delivers a multi-server hosting automation solution...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/01/21 12:0 a.m.130 views

Parallels H Sphere v3.3 P1 - Multiple Web Vulnerabilities

Document Title: =============== Parallels H Sphere v3.3 P1 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=392 Release Date: ============= 2012-01-21 Vulnerability Laboratory ID VL-ID: ==================================== 3...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/01/21 12:0 a.m.18 views

Parallels H Sphere v3.3 P1 - Multiple Web Vulnerabilities

Document Title: =============== Parallels H Sphere v3.3 P1 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=392 Release Date: ============= 2012-01-21 Vulnerability Laboratory ID VL-ID: ==================================== 3...

0.3AI score
Exploits0
xssed
xssed
added 2011/12/29 12:0 a.m.17 views

Unfixed XSS vulnerability at www.micro-sphere-ch.com

Security researcher IrIsT.Ir, has submitted on 29/12/2011 a cross-site-scripting XSS vulnerability affecting www.micro-sphere-ch.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/12/2011. It is...

6.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2011/06/09 12:0 a.m.30 views

Fedora 13 : gimp-2.6.11-14.fc13 (2011-7397)

This update fixes buffer overflows in the PSP CVE-2010-4543, CVE-2011-1782, sphere-designer CVE-2010-4541, gfig CVE-2010-4542 and lighting CVE-2010-4540 plugins. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable ha...

9.3CVSS5.6AI score0.16273EPSS
Exploits3References7
Cent OS
Cent OS
added 2011/06/01 12:26 p.m.65 views

gimp security update

CentOS Errata and Security Advisory CESA-2011:0837 Updated gimp packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

9.3CVSS6.6AI score0.16273EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2011/05/31 2:3 p.m.7 views

Gimp: Stack-based buffer overflow in SphereDesigner plug-in

Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...

9.3CVSS6.4AI score0.06812EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/05/31 1:59 p.m.5 views

Gimp: Stack-based buffer overflow in SphereDesigner plug-in

Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...

9.3CVSS6.4AI score0.06812EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/05/31 1:48 p.m.8 views

Gimp: Stack-based buffer overflow in SphereDesigner plug-in

Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...

9.3CVSS6.4AI score0.06812EPSS
Exploits0References4
OSV
OSV
added 2011/01/07 8:0 p.m.2 views

DEBIAN-CVE-2010-4541

Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...

9.3CVSS8.2AI score0.06812EPSS
Exploits0References1
CVE
CVE
added 2011/01/07 7:0 p.m.85 views

CVE-2010-4541

CVE-2010-4541 affects GIMP 2.6.11 via the Sphere Designer plugin (loadit function). A stack-based buffer overflow can be triggered by a long Number of lights value in a plugin configuration file, enabling user-assisted remote exploitation and potentially crashing the application or executing arbi...

9.3CVSS8.1AI score0.06812EPSS
Exploits0References18Affected Software1
Debian CVE
Debian CVE
added 2011/01/07 7:0 p.m.33 views

CVE-2010-4541

Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...

9.3CVSS8.1AI score0.06812EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2011/01/07 12:0 a.m.29 views

CVE-2010-4541

Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...

9.3CVSS6.4AI score0.06812EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2010/01/04 12:0 a.m.17 views

XlentCMS 1.0.4 SQL Injection

Script : XlentCMS V1.0.4 downloads.php?cat SQL Injection Vulnerability Script site : http://sphere.xlentprojects.se/portal.php AUTHOR : Gamoscu HOME : http://www.1923turk.biz Blog : http://gamoscu.wordpress.com/ Greetz : Manas58 Baybora Delibey Tiamo Psiko Turco infazci X-TRO...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/01/01 12:0 a.m.26 views

XlentCMS 1.0.4 - 'downloads.php?cat' SQL Injection

Script : XlentCMS V1.0.4 downloads.php?cat SQL Injection Vulnerability Script site : http://sphere.xlentprojects.se/portal.php AUTHOR : Gamoscu HOME : http://www.1923turk.biz Blog : http://gamoscu.wordpress.com/ Greetz : Manas58 Baybora Delibey Tiamo Psiko Turco infazci X-TRO...

7.4AI score
Exploits0
Prion
Prion
added 2009/03/13 10:30 a.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remote attackers to inject arbitrary web script or HTML via the 1 err, 2 errorcode, and 3 login parameters...

4.3CVSS6.1AI score0.05114EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2009/03/13 10:30 a.m.21 views

CVE-2008-6465

Multiple cross-site scripting XSS vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remote attackers to inject arbitrary web script or HTML via the 1 err, 2 errorcode, and 3 login parameters...

4.3CVSS5.8AI score0.05114EPSS
Exploits1References6
CVE
CVE
added 2009/03/13 10:0 a.m.104 views

CVE-2008-6465

CVE-2008-6465 affects Parallels H-Sphere 3.0.0 P9 and 3.1 P1. The NUCLEI template documents multiple cross-site scripting (XSS) flaws in login.php within webshell4, allowing an attacker to inject arbitrary script/HTML via the parameters (err, errorcode, login). Potential impact includes theft of ...

4.3CVSS5.9AI score0.05114EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2009/03/13 10:0 a.m.33 views

CVE-2008-6465

Multiple cross-site scripting XSS vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remote attackers to inject arbitrary web script or HTML via the 1 err, 2 errorcode, and 3 login parameters...

5.8AI score0.05114EPSS
Exploits1References6
NVD
NVD
added 2008/10/06 7:56 p.m.21 views

CVE-2008-4447

Cross-site scripting XSS vulnerability in actions.php in Positive Software H-Sphere WebShell 4.3.10 allows remote attackers to inject arbitrary web script or HTML via 1 the fn parameter during a dload action, 2 the mask parameter during a search action, and 3 the tab parameter during a sysinfo...

4.3CVSS5.7AI score0.01445EPSS
Exploits1References4
Rows per page
Query Builder