CVE-2011-5137

Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the 1 TopicID parameter to viewtopic.php, the 2 BoardID parameter to viewboard.php, or 3 CatID parameter to viewcat.php...

DSA-2535-1 rtfm - cross-site scripting

Bulletin has no description...

DEBIAN-CVE-2012-2769

Multiple cross-site scripting XSS vulnerabilities in the topic administration page in the Extension::MobileUI extension before 1.02 for Best Practical Solutions RT 3.8.x and in Best Practical Solutions RT before 4.0.6 allow remote attackers to inject arbitrary web script or HTML via unspecified...

DEBIAN-CVE-2012-2768

Multiple cross-site scripting XSS vulnerabilities in the topic administration page in the RTFM extension 2.0.4 through 2.4.3 for Best Practical Solutions RT allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Scientific Linux Security Update : pidgin on SL4.x, SL5.x i386/x86_64

CVE-2009-3026 pidgin: ignores SSL/TLS requirements with old jabber servers CVE-2009-2703 Pidgin: NULL pointer dereference by handling IRC topics DoS CVE-2009-3083 Pidgin: NULL pointer dereference by processing incomplete MSN SLP invite DoS CVE-2009-3085 Pidgin: NULL pointer dereference by...

CVE-2012-2909

Multiple cross-site scripting XSS vulnerabilities in Viscacha 0.8.1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 text field in the Private Messages System, 2 Bad Word field in Zensur, or 3 Portal or 4 Topic field in Kommentar...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Viscacha 0.8.1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 text field in the Private Messages System, 2 Bad Word field in Zensur, or 3 Portal or 4 Topic field in Kommentar...

CVE-2012-2909

Multiple cross-site scripting XSS vulnerabilities in Viscacha 0.8.1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 text field in the Private Messages System, 2 Bad Word field in Zensur, or 3 Portal or 4 Topic field in Kommentar...

OneForum SQL Injection

Title : OneForum SQL Injection Vulnerability Author : Red Security TEAM Date : 22/02/2012 Risk : High Software : http://www.onescripts.de/ Download : http://www.onescripts.de/download/oneforum.zip Tested On : CentOS Contact : Info at RedSecurity . COM Home : http://RedSecurity.COM Exploit :...

CVE-2011-3010

Multiple cross-site scripting XSS vulnerabilities in TWiki before 5.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the newtopic parameter in a WebCreateNewTopic action, related to the TWiki.WebCreateNewTopicTemplate topic; or 2 the query string to SlideShow.pm in the...

Snow Hui voting system php version upload vulnerability-vulnerability warning-the black bar safety net

Snow Hui voting system not only has a PHP version, but also ASP and ASP. NET version, it seems that the comparison focus, you can add a voting topic, vote items, delete modify functions, friendly interface. The root directory to upload file imgupload.php file code: ? php requireonce"conn.php";...

Sql injection

Multiple SQL injection vulnerabilities in VastHTML Forum Server aka ForumPress plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 searchmax parameter in a search action to index.php, which is not properly handled by wpf.class.php, 2 id paramete...

CVE-2010-3713

CVE-2010-3713 affects UseBB up to version 1.0.10. RSS feeds (rss.php) do not correctly honor read vs. view permissions: a user with view permission but lacking read permission can bypass access restrictions by reading a forum feed together with a topic feed. This exposes restricted forum content ...

UseBB Forum and Topic Feed Security Bypass Vulnerability

UseBB is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

phpBB 3.0.7 feed.php脚本错误权限检查漏洞

CVECAN ID: CVE-2010-1627 phpBB是非常流行的WEB论坛程序。 phpBB的feed.php脚本没有正确地检查订阅源的权限，在以下环境中远程攻击者可以绕过权限检查执行非授权操作： 启用了订阅源 启用了张贴或主题源 非授权用户对私人论坛设置了论坛权限 phpBB 3.0.7 厂商补丁： phpBB Group ----------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.phpbb.com/community/viewtopic.php?f=14&t=2014195...

HP OpenView NNM OvWebHelp.exe CGI Topic overflow

No description provided by source. !/usr/bin/python Exploit title: HP OpenView NNM OvWebHelp.exe CGI Topic overflow Date: 2010.03.30 Software link: hp.comhttp://hp.com Version: 7.53 Tested on: Windows 2003 SP2 CVE: 2009-4178 Code: Trying 172.16.29.130... Connected to 172.16.29.130. Escape charact...

HP OpenView NNM OvWebHelp.exe CGI Topic Overflow

!/usr/bin/python Exploit title: HP OpenView NNM OvWebHelp.exe CGI Topic overflow Date: 2010.03.30 Author: Software link: hp.com Version: 7.53 Tested on: Windows 2003 SP2 CVE: 2009-4178 Code: Trying 172.16.29.130... Connected to 172.16.29.130. Escape character is '^'. Microsoft Windows Version...

HP OpenView NNM OvWebHelp.exe CGI Topic overflow

Exploit for windows platform in category remote exploits ================================================ HP OpenView NNM OvWebHelp.exe CGI Topic overflow ================================================ !/usr/bin/python Exploit title: HP OpenView NNM OvWebHelp.exe CGI Topic overflow Date:...

HP OpenView Network Node Manager (OV NNM) - 'OvWebHelp.exe' CGI Topic Overflow

!/usr/bin/python Exploit title: HP OpenView NNM OvWebHelp.exe CGI Topic overflow Date: 2010.03.30 Software link: hp.com Version: 7.53 Tested on: Windows 2003 SP2 CVE: 2009-4178 Code: Trying 172.16.29.130... Connected to 172.16.29.130. Escape character is '^'. Microsoft Windows Version 5.2.3790 C...

IT-Grundschutz M4.023: Sicherer Aufruf ausführbarer Dateien

IT-Grundschutz M4.023: Sicherer Aufruf ausführbarer Dateien. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.94194 Diese Prüfung bezieht sich auf die 11...