13 matches found
EUVD-2007-3669
Malware in sbrugna...
EUVD-2007-3670
Malware in sbrugna...
EUVD-2007-3668
Malware in sbrugna...
PWGen - Generator of cryptographically-strong passwords
PWGen is a professional password generator capable of creating large amounts of cryptographically-secure passwords or passphrases consisting of words from a word list. It uses a “random pool ” technique to generate random data based on user inputs keystrokes, mouse handling and volatile system...
Cross site scripting
Cross-site scripting XSS vulnerability in rpc.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter...
Crlf injection
CRLF injection vulnerability in db.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary HTTP headers and data via CRLF sequences in the HTTPREFERER parameter...
CVE-2007-3686
CRLF injection vulnerability in db.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary HTTP headers and data via CRLF sequences in the HTTPREFERER parameter...
CVE-2007-3685
Cross-site scripting XSS vulnerability in rpc.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter...
CVE-2007-3684
Multiple SQL injection vulnerabilities in Unobtrusive Ajax Star Rating Bar before 1.2.0 allow remote attackers to execute arbitrary SQL commands via the 1 q and 2 t parameters in a db.php and b rpc.php...
CVE-2007-3685
Cross-site scripting XSS vulnerability in rpc.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter...
CVE-2007-3685
CVE-2007-3685 affects the Unobtrusive Ajax Star Rating Bar (rpc.php). The issue is a cross-site scripting (XSS) flaw that allows an attacker to inject arbitrary script/HTML via the q parameter in rpc.php, for versions before 1.2.0. The vulnerability is described across multiple sources as XSS in ...
CVE-2007-3684
Affected software: Unobtrusive Ajax Star Rating Bar before 1.2.0. Root cause: SQL injection in the (1) q and (2) t parameters in (a) db.php and (b) rpc.php. Impact: remote attackers can execute arbitrary SQL commands. Mitigation: upgrade to version 1.2.0 or later (apply patch).
CVE-2007-3686
The CVE-2007-3686 entry describes a CRLF injection vulnerability in the Unobtrusive Ajax Star Rating Bar prior to 1.2.0. The flaw occurs in db.php and allows remote attackers to inject arbitrary HTTP headers and data via CRLF sequences in the HTTP_REFERER parameter. Public references corroborate ...