1269 matches found
Unfixed XSS vulnerability at www.collegeweeklive.com
Security researcher PaPPy, has submitted on 26/04/2008 a cross-site-scripting XSS vulnerability affecting www.collegeweeklive.com, which at the time of submission ranked 451479 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 19/06/2008. It is...
Unfixed XSS vulnerability at www.sierrasnowboard.com
Security researcher tenest, has submitted on 14/02/2008 a cross-site-scripting XSS vulnerability affecting www.sierrasnowboard.com, which at the time of submission ranked 63794 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 26/03/2008. It is...
Unfixed XSS vulnerability at www.targus.com
Security researcher DerickTham, has submitted on 30/01/2008 a cross-site-scripting XSS vulnerability affecting www.targus.com, which at the time of submission ranked 49142 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 15/03/2008. It is...
Unfixed XSS vulnerability at www.teach12.com
Security researcher SCRiPToRiuM, has submitted on 12/02/2007 a cross-site-scripting XSS vulnerability affecting www.teach12.com, which at the time of submission ranked 64154 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/02/2007. It is...
Unfixed XSS vulnerability at www.onlinesecurity.com
Security researcher Uber0n, has submitted on 21/11/2007 a cross-site-scripting XSS vulnerability affecting www.onlinesecurity.com, which at the time of submission ranked 4702468 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 29/11/2007. It is...
Unfixed XSS vulnerability at murat.elmas.ws
Security researcher Narcoticxs, has submitted on 10/09/2007 a cross-site-scripting XSS vulnerability affecting murat.elmas.ws, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/09/2007. It is currently...
Unfixed XSS vulnerability at www.md5decrypter.com
Security researcher Uber0n, has submitted on 22/09/2007 a cross-site-scripting XSS vulnerability affecting www.md5decrypter.com, which at the time of submission ranked 498524 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/09/2007. It is...
DEBIAN-CVE-2007-3999
Stack-based buffer overflow in the svcauthgssvalidate function in lib/rpc/svcauthgss.c in the RPCSECGSS RPC library librpcsecgss in MIT Kerberos 5 krb5 1.4 through 1.6.2, as used by the Kerberos administration daemon kadmind and some third-party applications that use krb5, allows remote attackers...
Unfixed XSS vulnerability at allesnemen.com
Security researcher OMEHA, has submitted on 09/05/2007 a cross-site-scripting XSS vulnerability affecting allesnemen.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/05/2007. It is currently...
krb5 RPC library buffer overflow
Stack-based buffer overflow in the svcauthgssvalidate function in lib/rpc/svcauthgss.c in the RPCSECGSS RPC library librpcsecgss in MIT Kerberos 5 krb5 1.4 through 1.6.2, as used by the Kerberos administration daemon kadmind and some third-party applications that use krb5, allows remote attackers...
Unfixed XSS vulnerability at www.hypernav.com
Security researcher zuppergazi, has submitted on 08/03/2007 a cross-site-scripting XSS vulnerability affecting www.hypernav.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/03/2007. It is currentl...
Unfixed XSS vulnerability at www.ozgurmedya.org
Security researcher BackDoor, has submitted on 07/10/2007 a cross-site-scripting XSS vulnerability affecting www.ozgurmedya.org, which at the time of submission ranked 7821535 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/10/2007. It is...
Information disclosure
The canUpdate function in model/MRole.java in Adempiere before 3.1.6 does not properly validate user roles, which allows remote authenticated read-only users to gain read-write privileges. NOTE: some of these details are obtained from third party information...
Unfixed XSS vulnerability at www.cbronline.com
Security researcher cyber, has submitted on 30/03/2007 a cross-site-scripting XSS vulnerability affecting www.cbronline.com, which at the time of submission ranked 44542 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/03/2007. It is currentl...
Unfixed XSS vulnerability at gdataonline.com
Security researcher x2Fusion, has submitted on 02/09/2007 a cross-site-scripting XSS vulnerability affecting gdataonline.com, which at the time of submission ranked 161251 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/09/2007. It is...
Cross site scripting
Cross-site scripting XSS vulnerability in index.html aka the administration page in PHP Link Directory phpLD 3.0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted link, which is triggered when the administrator uses the "Validate Links" functionality...
CVE-2007-0529
Cross-site scripting XSS vulnerability in index.html aka the administration page in PHP Link Directory phpLD 3.0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted link, which is triggered when the administrator uses the "Validate Links" functionality...
PT-2006-7480 · Unknown · Phpirc Bot
Name of the Vulnerable Software and Affected Versions: PHPIrc bot version 0.2 Description: A remote file inclusion issue in the php4you.php file allows remote attackers to execute arbitrary PHP code via a URL in the dir parameter. Recommendations: For PHPIrc bot version 0.2, consider validating a...
phpBB Import Tools Mod <= 0.1.4 Remote File Include Vulnerability
No description provided by source. Title: phpBB Import Tools Mod = 0.1.4 phpbbrootpath Remote File Inclusion Author/Discovery: boecke Vulnerability Type: Remote File Inclusion Risk: High Risk Software Affected: phpBB Import Tools Mod = 0.1.4 Literally shouts to: str0ke and henrik Don't promote...
Vegadns blind sql injection and cross site scripting
Author : Ph03n1X email : [email protected] site : http://kandangjamur.net/ vendor : www.vegadns.org version: 0.99 XSS ---- PoC : http://exam.com/vegadns/index.php?VDNSSessid=m42644r75o1eg4f7mb7e4rnpg7&message=3Ch13E3Cmarquee3Ealoo3C/marquee3E3C/h13E Vulnerable script is located in index.php...