12 matches found
EUVD-2002-2225
Malware in sbrugna...
EUVD-2003-0450
Malware in sbrugna...
Deerfield VisNetic WebSite 3.5.13 .1 Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6369/info A vulnerability has been discovered in VisNetic Website when generating a 404 page for a non-existent resources. The issue is due to insufficient sanitization of the HTTP 'referer' header. It is possible to caus...
CVE-2002-2246
Cross-site scripting XSS vulnerability in VisNetic Website before 3.5.15 allows remote attackers to inject arbitrary web script or HTML via the HTTP referer header HTTPREFERER to a non-existent page, which is injected into the resulting 404 error page...
Non-Existent Page Physical Path Disclosure Vulnerability (HTTP)
The remote web server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2003 Michel Arboi SPDX-FileCopyrightText: Improved / extended code / detection routine since 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright ...
CVE-2003-0456
VisNetic WebSite 3.5 allows remote attackers to obtain the full pathname of the server via a request containing a folder that does not exist, which leaks the pathname in an error message, as demonstrated using vtibin/fpcount.exe...
CVE-2003-0456
CVE-2003-0456 concerns VisNetic WebSite 3.5 where a remote attacker can reveal the serverβs full pathname via an error message triggered by a request for a non-existent folder (e.g., using _vti_bin/fpcount.exe). This is a path-disclosure vulnerability that exposes sensitive filesystem information...
CVE-2003-0456
VisNetic WebSite 3.5 allows remote attackers to obtain the full pathname of the server via a request containing a folder that does not exist, which leaks the pathname in an error message, as demonstrated using vtibin/fpcount.exe...
CVE-2002-2246
Cross-site scripting XSS vulnerability in VisNetic Website before 3.5.15 allows remote attackers to inject arbitrary web script or HTML via the HTTP referer header HTTPREFERER to a non-existent page, which is injected into the resulting 404 error page...
Denial of Service vulnerability in VisNetic Website
Name: VisNetic WebSite Denial of Service Date: 12th of December 2002 Software affected: VisNetic WebSite 3.5.13.1 prior versions are vulnerable Advisory: http://www.krusesecurity.dk/advisories/vis0102.txt Risk: Medium Legal Notice: This Advisory is copyright by Peter Kruse. You may distribute thi...
Deerfield VisNetic WebSite 3.5.13.1 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/6369/info A vulnerability has been discovered in VisNetic Website when generating a 404 page for a non-existent resources. The issue is due to insufficient sanitization of the HTTP 'referer' header. It is possible to cause arbitrary code to be executed...
Deerfield VisNetic WebSite 3.5.13.1 - Cross-Site Scripting
Deerfield VisNetic WebSite 3.5.13.1 - Cross-Site Scripting source: https://www.securityfocus.com/bid/6369/info A vulnerability has been discovered in VisNetic Website when generating a 404 page for a non-existent resources. The issue is due to insufficient sanitization of the HTTP 'referer' heade...