EUVD-2002-1706

Malware in sbrugna...

EUVD-2002-1707

Malware in sbrugna...

ESA-2014-073: EMC Documentum Multiple Cross-Site Request Forgery Vulnerabilities

ESA-2014-073.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-073: EMC Documentum Multiple Cross-Site Request Forgery Vulnerabilities EMC Identifier: ESA-2014-073 CVE Identifier: CVE-2014-2518 Severity Rating: CVSS v2 Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P Affected products: • EMC...

askSam 4.0 Web Publisher Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4670/info askSam is a database system. An optional component, askSam Web Publisher versions 1 and 4, is reportedly vulnerable to cross site scripting vulnerability in the asweb.exe or asweb4.exe component. This is due to ...

CVE-2013-3281

The CVE-2013-3281 entry describes a cross-site scripting (XSS) vulnerability in EMC Documentum products (Webtop, WDK, Taskspace, Records Manager, Web Publisher, Digital Asset Manager, Administrator, Capital Projects) prior to the stated SP versions. The flaw allows remote attackers to inject arbi...

Logical Web Publisher SQL Injection

+------------------------------------------------------------------------------------------+ |------------------- Logical Web Publisher SQL Injection Vulnerability ------------------| +------------------------------------------------------------------------------------------+ + Google Dork :...

Online Notebook Manager SQL Injection Vulnerability

Exploit for php platform in category web applications =================================================== Online Notebook Manager SQL Injection Vulnerability =================================================== Author: L0rd CrusAd3r aka VSN email protected Exploit Title: Online Notebook Manager SQ...

Online Notebook Manager - SQL Injection

Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title: Online Notebook Manager SQLi Vulnerability Version:1.0 Price:$149.97 Vendor url:http://dmxready.com/?product=online-notebook-manager Published: 2010-06-09 Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue™®, S1ayer,d3c0d3r and to al...

Online Notebook Manager - SQL Injection

Online Notebook Manager - SQL Injection Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title: Online Notebook Manager SQLi Vulnerability Version:1.0 Price:$149.97 Vendor url:http://dmxready.com/?product=online-notebook-manager Published: 2010-06-09 Greetz to:Sid3^effects, MaYur, M4n0...

aleris-sql.txt

http://www.alerisdata.com/articles/home.asp There exists an SQL injection vulnerability within the calendar section of a Aleris Software Systems web publisher. It seems thats Aleris uses this same calendar with every site they make that utilizes the publisher...

Aleris Software Systems Web Publisher Calendar SQL injection

http://www.alerisdata.com/articles/home.asp There exists an SQL injection vulnerability within the calendar section of a Aleris Software Systems web publisher. It seems thats Aleris uses this same calendar with every site they make that utilizes the publisher...

CVE-2002-1727

CVE-2002-1727 is a cross-site scripting (XSS) vulnerability in the askSam Web Publisher 1 and 4 products, specifically in the executables as_web.exe and as_web4.exe . The issue allows remote attackers to execute arbitrary script in the context of other users by supplying a crafted URL. The vulner...

CVE-2002-1727

Cross-site scripting vulnerability XSS in 1 asweb.exe and 2 asweb4.exe in askSam Web Publisher 1 and 4 allows remote attackers to execute arbitrary script as other users via a URL...

CVE-2002-1728

askSam Web Publisher 1.0 and 4.0 allows remote attackers to determine the full path to the web root directory via a request for a file that does not exist, which generates an error message that reveals the full path...

CVE-2002-1727

Cross-site scripting vulnerability XSS in 1 asweb.exe and 2 asweb4.exe in askSam Web Publisher 1 and 4 allows remote attackers to execute arbitrary script as other users via a URL...

CVE-2002-1728

askSam Web Publisher 1.0 and 4.0 allows remote attackers to determine the full path to the web root directory via a request for a file that does not exist, which generates an error message that reveals the full path...

askSam 4.0 Web Publisher - Cross-Site Scripting

source: https://www.securityfocus.com/bid/4670/info askSam is a database system. An optional component, askSam Web Publisher versions 1 and 4, is reportedly vulnerable to cross site scripting vulnerability in the asweb.exe or asweb4.exe component. This is due to a failure to strip script and HTML...

askSam 4.0 Web Publisher - Cross-Site Scripting

askSam 4.0 Web Publisher - Cross-Site Scripting source: https://www.securityfocus.com/bid/4670/info askSam is a database system. An optional component, askSam Web Publisher versions 1 and 4, is reportedly vulnerable to cross site scripting vulnerability in the asweb.exe or asweb4.exe component...

iPlanet Web Server Enterprise Edition and Netscape Enterprise Server Web Publisher command exposes server to brute force attack

Overview A vulnerability exists in iPlanet Web Server Enterprise Edition and Netscape Enterprise Server that allows an attacker to make repeated authentication attempts if a server is configured to use HTTP basic authentication. While the risk is not greater than any other brute force attack usin...

iPlanet Web Server Enterprise Edition and Netscape Enterprise Server malformed Web Publisher command causes denial-of-service

Overview A vulnerability exists in iPlanet Web Server, Enterprise Edition and Netscape Enterprise Server in which a malformed Web Publisher command can crash the web server process. This vulnerability only affects Windows NT based servers. Description ProCheckup has reported a vulnerability in...