JVN#92737498: Usermin vulnerable to cross-site scripting

Usermin is a web-based interface used to manage webmail. Usermin contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser who is logged into Usermin. Solution Update the software Update to the latest version according to the information...

AFCommerce Remote File Inclusion

o AFCommerce a.k.a Amazing Flash Commerce = Remote File Inclusion Vulnerability Software : AFCommerce Professional Edition Version : n/a Vendor : http://www.afcommerce.com/ Author : NoGe Contact : nogedotcodeatgmaildotcom Desc : AFCommerce is a full and complete online store with both a store fro...

[SECURITY] Fedora 19 Update: zabbix-2.0.9-2.fc19

Zabbix is software that monitors numerous parameters of a network and the health and integrity of servers. Zabbix uses a flexible notification mechan ism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. Zabbix offers...

[PT-2013-46] Local File Include in Nagios Looking Glass

----------------------------------------------------------- PT-2013-46 Positive Technologies Security Advisory Local File Include in Nagios Looking Glass ----------------------------------------------------------- --- Vulnerable software Nagios Looking Glass Version: 1.1.0 beta 2 and earlier Link...

Cross site scripting

Cross-site scripting XSS vulnerability in the web-based interface in Juniper Junos Space before 13.1R1.6, as used on the JA1500 appliance and in other contexts, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka PR 884469...

CVE-2013-5095

CVE-2013-5095 is a documented XSS vulnerability in the web-based interface of Juniper Junos Space prior to 13.1R1.6 (e.g., JA1500 and related deployments). The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The available sources confirm the affected ...

CVE-2013-5095

Cross-site scripting XSS vulnerability in the web-based interface in Juniper Junos Space before 13.1R1.6, as used on the JA1500 appliance and in other contexts, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka PR 884469...

PineApp Mail-SeCure Detection

PineApp Mail-SeCure, a perimeter-based email security application with a web-based interface, is running on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69176; scriptversion"1.4"; scriptsetattributeattribute:"pluginmodificationdate",...

[SpiderFoot v2.0] The Open Source Footprinting tool

SpiderFoot is a free, open-source footprinting tool, enabling you to perform various scans against a given domain name in order to obtain information such as sub-domains, e-mail addresses, owned netblocks, web server versions and so on. The main objective of SpiderFoot is to automate the...

HP System Management Homepage iprange parameter command execution

Added: 04/12/2013 BID: 58817 OSVDB: 91812 Background HP System Management Homepage SMH is a web-based interface that consolidates the management of ProLiant and Integrity servers. Problem A vulnerability in HP SMH allows command execution when an attacker requests /proxy/DataValidation with a...

HP System Management Homepage iprange parameter command execution

Added: 04/12/2013 BID: 58817 OSVDB: 91812 Background HP System Management Homepage SMH is a web-based interface that consolidates the management of ProLiant and Integrity servers. Problem A vulnerability in HP SMH allows command execution when an attacker requests /proxy/DataValidation with a...

[SECURITY] Fedora 18 Update: zabbix-2.0.4-3.fc18

Zabbix is software that monitors numerous parameters of a network and the health and integrity of servers. Zabbix uses a flexible notification mechan ism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. Zabbix offers...

[SECURITY] Fedora 18 Update: zabbix-2.0.3-7.fc18

Zabbix is software that monitors numerous parameters of a network and the health and integrity of servers. Zabbix uses a flexible notification mechan ism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. Zabbix offers...

Novell Groupwise 8.0.2 HP3 / 2012 Integer Overflow

Application: Novell Groupwise Platforms: Windows Version: 8.0.2 HP3 and 2012 Secunia: SA50622 PRL: 2012-28 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3 Technical details 4 The Code...

HP Managed Printing Administration Detection

HP Managed Printing Administration, a web-based printer administration interface, was detected on the remote web server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid57699; scriptversion"1.4"; scriptcvsdate"Date: 2019/11/25"; scriptnameenglish:"HP Managed Printing...

Tine v2.0 Maischa Multiple Cross Site Scripting Vulnerabilities

Exploit for php platform in category web applications Title: ====== Tine v2.0 Maischa - Cross Site Scripting Vulnerability Introduction: ============= Tine 2.0 is an open source project which combines groupware and CRM in one consistent interface. Tine 2.0 is web-based and optimises collaboration...

[SECURITY] Fedora 16 Update: zabbix-1.8.9-1.fc16

ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...

DSA-2333-1 phpldapadmin - several issues

Bulletin has no description...

Debian DSA-2333-1 : phpldapadmin - several vulnerabilities

Two vulnerabilities have been discovered in phpLDAPadmin, a web-based interface for administering LDAP servers. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-4074 Input appended to the URL in cmd.php when 'cmd' is set to 'debug' is not properly...

Ecava IntegraXor stack-based buffer overflow vulnerability

Overview Ecava IntegraXor contains a stack-based buffer overflow vulnerability in the Ecava IntegraXor Human-Machine Interface HMI product that could allow the execution of arbitrary code. Description According to Ecava's website: IntegraXor is a suite of tools used to create and run a web-based...