58 matches found
CVE-2006-5028
Directory traversal vulnerability in filemanager/filemanager.php in SWsoft Plesk 7.5 Reload and Plesk 7.6 for Microsoft Windows allows remote attackers to list arbitrary directories via a ../ dot dot slash in the file parameter in a chdir action...
CVE-2006-5028
CVE-2006-5028 : A directory traversal flaw exists in SWsoft Plesk 7.5 Reload and Plesk 7.6 for Windows, in filemanager/filemanager.php, where a crafted file parameter using ../ in a chdir action lets remote attackers list arbitrary directories. This is documented in the NVD entries, with the impa...
Plesk Control Panel <= 8.0.0 XSS vulnerability
Product: Plesk control panel Version: = 8.0.0 Vendor: SWSoft Inc. URL: http://www.swsoft.com/en/products/plesk/ VULNERABILITY CLASS: XSS Product Description Plesk is comprehensive server management software developed specifically for the Hosting Service Industry with the assistance of Web hosting...
plesk800.txt
Product: Plesk control panel Version: alert; Credits INVENT...
CVE-2006-3737
CVE-2006-3737 describes a cross-site scripting (XSS) vulnerability in the filemanager/filemanager.php component of the SWsoft Plesk control panel (version 8.0 and earlier). The issue arises when an authenticated user supplies a crafted file parameter, allowing injection of arbitrary web script or...
confixx3.txt
Software: Confixx alert'p0 w3r oWnZ'...
Confixx <= 3
Software: Confixx = 3 Vendor: http://www.swsoft.com/ Discovered by: p0w3r - curse-crew.de Example: confixx/user/username/toolsftppwaendern.php?account=scriptalert'p0 w3r oWnZ'/script...
CVE-2006-1759
Cross-site scripting XSS vulnerability in allgemeintransfer.php in SWSoft Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the jahr parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in allgemeintransfer.php in SWSoft Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the jahr parameter...
CVE-2006-1759
Cross-site scripting XSS vulnerability in allgemeintransfer.php in SWSoft Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the jahr parameter...
CVE-2006-1759
CVE-2006-1759 describes a Cross-site Scripting (XSS) vulnerability in SWSoft Confixx 3.1.2, specifically in the file allgemein_transfer.php . The issue arises through the jahr parameter, enabling remote attackers to inject arbitrary web script or HTML. The entry notes the vulnerability as applica...
CVE-2006-1754
SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter...
Sql injection
SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter...
CVE-2006-1754
SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter...
CVE-2006-1754
CVE-2006-1754 affects SWSoft Confixx versions 3.0.6, 3.0.8, and 3.1.2. The vulnerability is a SQL injection in index.php that allows remote attackers to execute arbitrary SQL commands via the SID parameter. The connection documents confirm the affected product/version and the injection mechanism,...
SWSoft Confixx 3.0.63.0.83.1.2 - index.php SQL Injection
SWSoft Confixx 3.0.63.0.83.1.2 - index.php SQL Injection source: https://www.securityfocus.com/bid/17476/info Confixx is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successfu...
SWSoft Confixx 3.1.2 - 'Jahr' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17466/info Confixx is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of a...
ASPSeek.txt
Hi comrades: I'dont speak write wery good English by this reason a go to pass to describe the information that I have and I could test about this vulnerability: I know some servers whit this bug, I only test it in this type of servers but should run in others whitout problems. Tested in Server:...