Lucene search
+L

978 matches found

nessus
nessus
added 2008/08/13 12:0 a.m.82 views

MS08-041: Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution (955617)

The remote host contains a version of the ActiveX control for the Snapshot Viewer for Microsoft Access which is vulnerable to a security flaw that could allow an attacker to execute arbitrary code on the remote host by constructing a malicious web page and entice a victim to visit it. C Tenable...

6.8CVSS6.2AI score0.59125EPSS
Exploits9References2
securityvulns
securityvulns
added 2008/06/06 12:0 a.m.44 views

SchoolCenter URL Handling Cross Site Scripting Vulnerability

SchoolCenter URL Handling Cross Site Scripting Vulnerability A vulnerability has been identified in SchoolCenter Software, which could be exploited to conduct cross site scripting attacks. Attackers can run arbitrary code that can be executed by the user's browser in the security context of an...

0.5AI score
Exploits0
packetstorm
packetstorm
added 2008/06/06 12:0 a.m.42 views

schoolcenter-xss.txt

SchoolCenter URL Handling Cross Site Scripting Vulnerability A vulnerability has been identified in SchoolCenter Software, which could be exploited to conduct cross site scripting attacks. Attackers can run arbitrary code that can be executed by the user's browser in the security context of an...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/02/12 12:0 a.m.31 views

Microsoft Windows Web Client service buffer overflow

Buffer overflow on WebDAV server response parsing...

10CVSS4.5AI score0.40569EPSS
Exploits1References1
symantec
symantec
added 2008/02/12 12:0 a.m.19 views

Microsoft Windows WebDAV Mini-Redirector Heap Overflow Vulnerability

Description Microsoft Windows is prone to a heap-overflow vulnerability in the WebDAV Mini-Redirector component also known as the Web Client service. This vulnerability may be triggered by a malicious WebDAV response. A successful exploit could let a remote attacker execute arbitrary code with...

0.6AI score
Exploits0References2Affected Software7
packetstorm
packetstorm
added 2008/01/22 12:0 a.m.29 views

megabbs-xss.txt

HSC MegaBBS ASP Forum Cross-Site Scripting MegaBBS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/01/21 12:0 a.m.206 views

MegaBBS ASP Forum Cross-Site Scripting

HSC MegaBBS ASP Forum Cross-Site Scripting MegaBBS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2008/01/10 12:0 a.m.39 views

Simple Machines Forum Cross-Site Scripting Vulnerabilities Vulnerabilities

HSC Simple Machines Forum Cross-Site Scripting Vulnerabilities Vulnerabilities Simple Machines Forum allows attackers to exploiting this vulnerability by cross-site scripting and they will be able to obtain detailed information. This may help the attacker steal cookie-based authentication...

1.2AI score
Exploits0
securityvulns
securityvulns
added 2008/01/02 12:0 a.m.93 views

LiveCart Multiple Cross-Site Scripting Vulnerabilities

HSC LiveCart Multiple Cross-Site Scripting Vulnerabilities LiveCart is a new PHP/MySQL powered shopping cart software developed by Integry Systems. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site...

1.6AI score
Exploits0
packetstorm
packetstorm
added 2007/12/31 12:0 a.m.23 views

livecart-xss.txt

HSC LiveCart Multiple Cross-Site Scripting Vulnerabilities LiveCart is a new PHP/MySQL powered shopping cart software developed by Integry Systems. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/12/27 12:0 a.m.63 views

IPortalX Forums Cross-Site Scripting Vulnerability

HSC IPortalX Forums Cross-Site Scripting Vulnerability IPortalX is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

1AI score
Exploits0
packetstorm
packetstorm
added 2007/12/24 12:0 a.m.37 views

dokeos-xss.txt

HSC Dokeos Multiple Cross-Site Scripting Vulnerabilities Dokeos is a learning management systemused to manage e-learning. It's prone to cross-site scripting vulnerability. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the conte...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2007/12/18 12:0 a.m.56 views

wconnect-xss.txt

HSC WCONNECT WC.DLL Cross-Site Scripting Vulnerability West Wind Web Connection is a tool for building Web applications using the Visual FoxPro environment but is also Vulnerable to Cross-Site scripting attacks. Admins need to password protect the application since its installed with out password...

7.4AI score
Exploits0
cvelist
cvelist
added 2007/12/03 10:0 p.m.43 views

CVE-2007-6203

Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting XSS style attacks using web client components that can send arbitrary...

7.6AI score0.80749EPSS
Exploits1References31
debiancve
debiancve
added 2007/12/03 10:0 p.m.49 views

CVE-2007-6203

Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting XSS style attacks using web client components that can send arbitrary...

4.3CVSS5.6AI score0.80749EPSS
Exploits1
packetstorm
packetstorm
added 2007/11/27 12:0 a.m.20 views

gwextranet-multi.txt

HSC GWExtranet Script Injections & Privilege Escalation Vulnerability Attackers may exploit this issue via a web client. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attacker...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2007/11/27 12:0 a.m.38 views

mps-insertion.txt

HSCMySpace Scripts - Poll Creator JavaScript Injection Vulnerability Our MySpace Poll Creator script is the ultimate addition to your MySpace resource site. The script enables your user to quickly and easily create a poll that they can post to profile or bulletin to all their friends. Everyone...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/11/26 12:0 a.m.54 views

GWExtranet Script Injections & Privilege Escalation Vulnerability

HSC GWExtranet Script Injections & Privilege Escalation Vulnerability Attackers may exploit this issue via a web client. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attacker...

1.1AI score
Exploits0
cvelist
cvelist
added 2007/11/05 5:0 p.m.24 views

CVE-2007-5808

Unspecified vulnerability in the Groupmax Collaboration - Schedule component in Hitachi Groupmax Collaboration Portal 07-30 through 07-30-/F and 07-32 through 07-32-/C, uCosminexus Collaboration Portal 06-30 through 06-30-/F and 06-32 through 06-32-/C, and Groupmax Collaboration Web Client -...

6.1AI score0.01442EPSS
Exploits0References6
packetstorm
packetstorm
added 2007/10/29 12:0 a.m.40 views

smartshop-xss.txt

HSC Smart-Shop Shopping Cart Cross-Site Scripting Vulrnability SMART-SHOP shopping cart software is a all-in-one hosted e-commerce solution that creates and helps you maintain your online store fast, easy, and cost-effective. Many people using this software must be warned that there are holes in...

7.4AI score
Exploits0
Rows per page
Query Builder