LightNEasy Version Detection

This script detects the installed version of LightNEasy. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

LightNEasy < 2.2.1 / 2.2.2 XSS Vulnerability

LightNEasy is prone to a cross-site scripting XSS vulnerability. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

CVE-2009-1937

Cross-site scripting XSS vulnerability in the comment posting feature in LightNEasy 2.2.1 "no database" aka flat and 2.2.2 SQLite allows remote attackers to inject arbitrary web script or HTML via the 1 commentname aka Author, 2 commentemail aka Email, and 3 commentmessage aka Comment parameters...

Mandrake Security Advisory MDVSA-2009:118 (kernel)

The remote host is missing an update to the kernel announced via advisory MDVSA-2009:118. OpenVAS Vulnerability Test $Id: mdksa2009118.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:118 kernel Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...

Mandriva Linux Security Advisory : kernel (MDVSA-2009:118)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The clone system call in the Linux kernel 2.6.28 and earlier allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONEPARE...

Mandriva Update for php MDKSA-2007:089 (php)

Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDKSA-2007:089 php Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Mandriva Update for sqlite MDKSA-2007:091 (sqlite)

Check for the Version of sqlite OpenVAS Vulnerability Test Mandriva Update for sqlite MDKSA-2007:091 sqlite Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CVE-2008-6590

Multiple directory traversal vulnerabilities in LightNEasy "no database" aka flat version 1.2.2, and possibly SQLite version 1.2.2, allow remote attackers to read arbitrary files via a .. dot dot in the page parameter to 1 index.php and 2 LightNEasy.php...

Code injection

LightNEasy "no database" aka flat version 1.2.2, and possibly SQLite version 1.2.2, allows remote attackers to create arbitrary files via the page parameter to 1 index.php and 2 LightNEasy.php...

Directory traversal

thumbsup.php in Thumbs-Up 1.12, as used in LightNEasy "no database" aka flat and SQLite 1.2.2 and earlier, allows remote attackers to copy, rename, and read arbitrary files via directory traversal sequences in the image parameter with a modified cachedir parameter containing a %00 encoded null by...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in LightNEasy "no database" aka flat version 1.2.2, and possibly SQLite version 1.2.2, allow remote attackers to inject arbitrary web script or HTML via the page parameter to 1 index.php and 2 LightNEasy.php...

Sql injection

SQL injection vulnerability in LightNEasy/lightneasy.php in LightNEasy SQLite 1.2.2 and earlier allows remote attackers to inject arbitrary PHP code into comments.dat via the dlid parameter to index.php...

Directory traversal

Multiple directory traversal vulnerabilities in LightNEasy "no database" aka flat version 1.2.2, and possibly SQLite version 1.2.2, allow remote attackers to read arbitrary files via a .. dot dot in the page parameter to 1 index.php and 2 LightNEasy.php...

CVE-2008-6591

LightNEasy "no database" aka flat version 1.2.2, and possibly SQLite version 1.2.2, allows remote attackers to create arbitrary files via the page parameter to 1 index.php and 2 LightNEasy.php...

CVE-2008-6593

SQL injection vulnerability in LightNEasy/lightneasy.php in LightNEasy SQLite 1.2.2 and earlier allows remote attackers to inject arbitrary PHP code into comments.dat via the dlid parameter to index.php...

CVE-2008-6590

LightNEasy has directory traversal flaws in version 1.2.2 (and possibly SQLite 1.2.2) where a crafted .. in the page parameter to index.php or LightNEasy.php allows remote attackers to read arbitrary files. Root cause appears to be inadequate validation of the page parameter, enabling traversal t...

CVE-2008-6589

Multiple cross-site scripting XSS vulnerabilities in LightNEasy "no database" aka flat version 1.2.2, and possibly SQLite version 1.2.2, allow remote attackers to inject arbitrary web script or HTML via the page parameter to 1 index.php and 2 LightNEasy.php...

CVE-2008-6589

CVE-2008-6589 affects LightNEasy “no database” (flat) 1.2.2 (and possibly SQLite 1.2.2). The issue is multiple XSS vulnerabilities that allow remote attackers to inject arbitrary script or HTML via the page parameter to (1) index.php and (2) LightNEasy.php. The connected documents provide the vul...

Fedora Update for mono FEDORA-2007-067

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for dbmail FEDORA-2008-3371

Check for the Version of dbmail OpenVAS Vulnerability Test Fedora Update for dbmail FEDORA-2008-3371 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...