CVE-2009-4771

The PayPal Website Payments Standard functionality in the Ubercart module 5.x before 5.x-1.9 and 6.x before 6.x-2.1 for Drupal does not properly validate orders, which allows remote attackers to trigger unspecified "duplicate actions" via unknown vectors...

RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities

RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities Vulnerable: v3.0.7.x Vendor: www.rj-itop.com Category: Input Validation Error Impact: SQL injection Details: ========= Multiple SQL Injection Vulnerabilities has been found in DRJ-iTop Network Vulnerability Scanne...

Nucleus CMS v.3.51 (DIR_LIBS) Multiple Vulnerability

Vulnerability: Nucleus v3.51 other or lower version may also be affected Vendor: http://nucleuscms.org/ Category: Input Validation Error Impact: rfi/lfi Multiple Vulnerability Details: Multiple Vulnerability has been found in Nucleus v3.51 because it fails to sufficiently sanitize user-supplied...

Cross-site Scripting Vulnerability in ecoCMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in ecoCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in ecoCMS: CVE-2010-5046 Input validation error was found in the "p" parameter in /admin.php. A remote attack...

RJ-iTop Network Vulnerability Scanner System - Multiple SQL Injections

RJ-iTop Network Vulnerability Scanner System - Multiple SQL Injections RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities Vulnerable: v3.0.7.x Vendor: www.rj-itop.com Category: Input Validation Error Impact: SQL injection Details: ========= Multiple SQL Injection...

RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vuln

Exploit for jsp platform in category web applications =================================================================================== RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities...

RJ-iTop Network Vulnerability Scanner System - Multiple SQL Injections

RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities Vulnerable: v3.0.7.x Vendor: www.rj-itop.com Category: Input Validation Error Impact: SQL injection Details: ========= Multiple SQL Injection Vulnerabilities has been found in DRJ-iTop Network Vulnerability Scanne...

Ikiwiki 'htmlscrubber' Cross Site Scripting Vulnerability

This host is installed Ikiwiki and is prone to Cross Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbikiwikihtmlscrubberxssvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ Ikiwiki 'htmlscrubber' Cross Site Scripting Vulnerability Authors: Madhuri D Copyright: Copyright c 2010 Greenbon...

Tracking Requirements And Use Cases Cross Site Scripting vulnerability

Tracking Requirements and Use Cases is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CA BrightStor ARCserve Backup Media Server SUN-RPC Procedure Code Execution (CVE-2007-1785)

Computer Associates BrightStor ARCserve Backup products offer data protection for distributed servers, clients, databases and applications. They provide centralized control over a series of distributed operations including Backup and Restore, Data Migration, and Threat Management. There exists a...

TT Web Site Manager 'tt_name' Remote SQL Injection Vulnerability

The host is running TT web site manager and is prone to SQL injection vulnerability. OpenVAS Vulnerability Test $Id: secpodttwmsqlinjvuln.nasl 7806 2017-11-17 09:22:46Z cfischer $ TT Web Site Manager 'ttname' Remote SQL Injection Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010...

Discloser 'more' Parameter SQL Injection Vulnerability

The host is running Discloser and is prone to SQL injection vulnerability. OpenVAS Vulnerability Test $Id: secpoddisclosersqlinjvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ Discloser 'more' Parameter SQL Injection Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 SecPod,...

Netpet CMS Directory Traversal Vulnerability

The host is running Netpet CMS and is prone to directory traversal vulnerability. OpenVAS Vulnerability Test $Id: secpodnetpetcmsdirtravvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ Netpet CMS Directory Traversal Vulnerability Authors: Madhuri D Copyright: Copyright c 2010 SecPod,...

Netpet CMS <= 1.9 Directory Traversal Vulnerability

Netpet CMS is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:netpet:netpetcms";...

Vulnerability httpdx v1.5.3

!/usr/bin/perl Program : Httpdx v1.5.3 PoC : Remote Break Services Homepage : http://sourceforge.net/projects/httpdx/ Found by : Jonathan Salwan This Advisory : Jonathan Salwan Contact : [email protected] //----- Application description Single-process HTTP1.1/FTP server; no threads or process...

Httpdx 1.5.3 Remote Break Services

!/usr/bin/perl Program : Httpdx v1.5.3 PoC : Remote Break Services Homepage : http://sourceforge.net/projects/httpdx/ Found by : Jonathan Salwan This Advisory : Jonathan Salwan Contact : [email protected] //----- Application description Single-process HTTP1.1/FTP server; no threads or process...

Httpdx v1.5.3 Remote Break Server HTTP

Exploit for windows platform in category dos / poc ====================================================================== httpdx v1.5.3 PNG File Handling Remote Denial of Service Vulnerability ====================================================================== Vulnerable: httpdx httpdx 1.5.3...

httpdx 1.5.3 - .png File Handling Remote Denial of Service

httpdx 1.5.3 - .png File Handling Remote Denial of Service source: https://www.securityfocus.com/bid/38638/info The 'httpdx' program is prone to a denial-of-service vulnerbaility. Remote attackers can exploit this issue to cause the server to stop responding, denying service to legitimate users...

tDiary 'tb-send.rb' Plugin Cross-Site Scripting Vulnerability

The host is running tDiary and is prone to Cross-Site Scripting Vulnerability. OpenVAS Vulnerability Test $Id: gbtdiaryxssvuln.nasl 5373 2017-02-20 16:27:48Z teissa $ tDiary 'tb-send.rb' Plugin Cross-Site Scripting Vulnerability Authors: Rachana Shetty Copyright: Copyright c 2010 SecPod,...

httpdx 1.5.3 - &#039;.png&#039; File Handling Remote Denial of Service

source: https://www.securityfocus.com/bid/38638/info The 'httpdx' program is prone to a denial-of-service vulnerbaility. Remote attackers can exploit this issue to cause the server to stop responding, denying service to legitimate users. This issue affects httpdx 1.5.3; other versions may also be...