61 matches found
USN-6841-1: PHP vulnerability
It was discovered that PHP could early return in the filtervar function resulting in invalid user information being treated as valid user information. An attacker could possibly use this issue to expose raw user input information...
PT-2024-10482 · Sap · Sap Gui For Windows
Name of the Vulnerable Software and Affected Versions: SAP GUI for Windows affected versions not specified Description: The issue concerns the storage of user input on the client PC to improve usability. Under specific circumstances, an attacker with administrative privileges or access to the...
PT-2023-29151 · Cockpit · Cockpit
Name of the Vulnerable Software and Affected Versions: cockpit versions prior to 2.6.3 Description: The issue is related to Cross-site Scripting XSS - Stored in the GitHub repository cockpit-hq/cockpit. This type of attack occurs when an application stores user input data without proper validatio...
PT-2023-20516 · Unknown · Drogonframework/Drogon
Name of the Vulnerable Software and Affected Versions: drogonframework/drogon versions prior to the fixed version Description: The issue arises when untrusted user input is used to set request headers in the addHeader function, allowing an attacker to inject additional headers by adding r carriag...
CVE-2023-0600 WP Visitor Statistics (Real Time Traffic) < 6.9 - Unauthenticated SQLi
The WP Visitor Statistics Real Time Traffic WordPress plugin before 6.9 does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks...
django-sendfile2 before 0.7.0 contains reflected file download vulnerability
Similar to CVE-2022-36359 for Django, django-sendfile2 did not protect against a reflected file download attack in version 0.6.1 and earlier. If the file name used by django-sendfile2 was derived from user input, then it would be possible to perform a such an attack. A new version of...
PT-2022-11608 · Unknown · Visam Vbase
Name of the Vulnerable Software and Affected Versions: VISAM VBASE version 11.6.0.6 Description: The issue concerns the failure to properly neutralize user-controllable input before it is used in output for a public-facing webpage. This could potentially lead to security issues, but specific...
CVE-2022-31108
Mermaid is a JavaScript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. An attacker is able to inject arbitrary CSS into the generated graph allowing them to change the styling of elements outside of the...
Expression Language Injection in Apache Struts
The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could perform a double evaluation if a developer applied forced OGNL evaluation by using the %... syntax. Using forced OGNL evaluation on untrusted user input can lead to a...
CVE-2021-25297
Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command...
Directory Traversal
gyfserver is vulnerable to directory traversal attacks. The vulnerability exists due to the lack of ../ sanitization on the user input, allowing attackers to access files outside of the server's scope...
MGASA-2016-0390 Updated gnuchess packages fix security vulnerability
gnuchess before 6.2.4 is vulnerable to a stack buffer overflow related to user move input, where 160 characters of input can crash gnuchess CVE-2015-8972...
Indexu 5.05.3 - user_detail.php?u Cross-Site Scripting
Indexu 5.05.3 - userdetail.php?u Cross-Site Scripting source: https://www.securityfocus.com/bid/22084/info Indexu is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script cod...
DanPHPSupport 0.5 - 'admin.php?do' Cross-Site Scripting
source: https://www.securityfocus.com/bid/20203/info DanPHPSupport is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script code execute in the browser of an...
QwikiWiki v1.4 XSS Vulnerability
Software - QwikiWiki Version - v1.4 Type - XSS Vulnerability Powered by QwikiWiki v1.4 - www.qwikiwiki.com Examples: http://host/index.php?page="body bgcolor="black"/body http://host/index.php?page="alertdocument.cookie;/script Found by Dr^Death of Suicide Scene Internet Security Group 2006...
Exensive cPanel Cross Site Scripting
Description: cPanel 9.1.0-R85 is vulnerable to Cross Site Scripting XSS in almost every field which is returned to the browser. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the...
waraxe-2004-SA005.txt
================================================================================ waraxe-2004-SA005 ================================================================================ XSS in Php-Nuke 7.1.0 - part 2 ================================================================================ Autho...
pMachine (PHP) : Include() Security Hole
Informations : °°°°°°°°°°°°° Language : PHP Version : Free 2.2.1 Website : http://www.pmachine.com Problem : Include Security Hole PHP Code/Location : °°°°°°°°°°°°°°°°°°° This will work if registerglobals is ON OR OFF. /pm/lib.inc.php : ------------------------------------------------------------...
sql injection vulnerability in WBB 2.0 RC1 and below
Hi, I discovered a serious vulnerability in Woltlab Burning Board 2.0 RC 1 and below some weeks ago. The latest version WBB 2.0 RC 2 seems not vulnerable, but there are still sites using vulnerable versiones. versions tested vulnerable WBB 2.0 RC 1 WBB 2.0 beta 5 WBB 2.0 beta 4 WBB 2.0 beta 3...
[SECURITY] [DSA 153-2] New mantis package fixes several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 153-2 [email protected] http://www.debian.org/security/ Martin Schulze August 20th, 2002 http://www.debian.org/security/faq -...