21 matches found
EUVD-2008-0159
Malware in sbrugna...
EUVD-2000-0012
Malware in sbrugna...
CVE-1999-0753
The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories...
Hughes Technologies Mini SQL (mSQL) 2.0.11 w3-msql Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/898/info w3-msql is a cgi-program shipped with Mini-SQL which acts as a web interface for msql. There are a number of buffer overflow vulnerabilities in it with one proven to be exploitable. The exploitable buffer is the...
W3-mSQL Error Page Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27116/info W3-mSQL is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
CVE-2008-0146
Cross-site scripting XSS vulnerability in the error page in W3-mSQL allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to the top-level URI...
Cross site scripting
Cross-site scripting XSS vulnerability in the error page in W3-mSQL allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to the top-level URI...
CVE-2008-0146
CVE-2008-0146 is an XSS in the error page of W3-mSQL. The vulnerability allows remote attackers to inject arbitrary web script or HTML via PATH_INFO to the top-level URI. Affected component is the error handling of W3-mSQL; root cause details and exact vulnerable versions are not explicitly provi...
CVE-2008-0146
Cross-site scripting XSS vulnerability in the error page in W3-mSQL allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to the top-level URI...
w3msql-xss.txt
A reflected xss flaw exists in the w3-msql error page. google dork : "W3-mSQL Error! - Can't stat script file /" Just insert a script from the start of / like if u get a URL like:- http://localhost/cgi-bin/w3-msql/journal/ijcd/index.html and the error page output as :- W3-mSQL Error! - Can't stat...
W3-mSQL - Error Page Cross-Site Scripting
W3-mSQL - Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/27116/info W3-mSQL is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of...
xss in w3-msql error page
A reflected xss flaw exists in the w3-msql error page. google dork : "W3-mSQL Error! - Can't stat script file /" Just insert a script from the start of / like if u get a URL like:- http://localhost/cgi-bin/w3-msql/journal/ijcd/index.html and the error page output as :- W3-mSQL Error! - Can't stat...
W3-mSQL - Error Page Cross-Site Scripting
source: https://www.securityfocus.com/bid/27116/info W3-mSQL is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of th...
CVE-2000-0012
Affected component: w3-msql CGI in the miniSQL package. Root cause: a buffer overflow in the w3-msql CGI program. Impact: remote attackers could exploit this to execute commands and potentially gain a shell on the affected system. Exploitation status: described as a remote overflow vulnerability;...
CVE-2000-0012
Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands...
CVE-1999-0753
The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories...
CVE-1999-0753
CVE-1999-0753 affects the Mini SQL package via the w3-msql CGI script. The issue allows remote attackers to view restricted directories through the CGI, exposing partial confidentiality (per CVSS: Network, Low attack complexity, No authentication, Partial confidentiality/Integrity/Availability). ...
CVE-2000-0012
Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands...
Hughes Technologies Mini SQL (mSQL) 2.0.11 - 'w3-msql' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/898/info w3-msql is a cgi-program shipped with Mini-SQL which acts as a web interface for msql. There are a number of buffer overflow vulnerabilities in it with one proven to be exploitable. The exploitable buffer is the content-length field and the...
Hughes Technologies Mini SQL (mSQL) 2.0.11 - w3-msql Remote Buffer Overflow
Hughes Technologies Mini SQL mSQL 2.0.11 - w3-msql Remote Buffer Overflow // source: https://www.securityfocus.com/bid/898/info w3-msql is a cgi-program shipped with Mini-SQL which acts as a web interface for msql. There are a number of buffer overflow vulnerabilities in it with one proven to be...