Lucene search
K

968 matches found

OpenVAS
OpenVAS
added 2009/11/03 12:0 a.m.18 views

Serv-U Web Client HTTP Request Remote Buffer Overflow Vulnerability

Serv-U Web Client is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user- supplied data. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in...

10CVSS0.1AI score0.20553EPSS
Exploits1References3
0day.today
0day.today
added 2009/11/02 12:0 a.m.20 views

Serv-u web client 9.0.0.5 buffer overflow

Exploit for unknown platform in category remote exploits ========================================= Serv-u web client 9.0.0.5 buffer overflow ========================================= Title: Serv-u web client 9.0.0.5 buffer overflow CVE-ID: OSVDB-ID: Author: Nikolas Rangos Published: 2009-11-02...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/11/02 12:0 a.m.18 views

Serv-U Web Client 9.0.0.5 - Remote Buffer Overflow (1)

Serv-U Web Client 9.0.0.5 - Remote Buffer Overflow 1 -- KC Security PUBLIC ADVISORY -- http://www.rangos.de -- 11-01-2009 RhinoSoft.com Serv-U 9.0.0.5 WebClient Remote Buffer Overflow Background ------------ Serv-U includes a simple, browser-based transfer client perfect for every business...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2009/11/02 12:0 a.m.45 views

Serv-U Web Client 9.0.0.5 - Remote Buffer Overflow (1)

-- KC Security PUBLIC ADVISORY -- http://www.rangos.de -- 11-01-2009 RhinoSoft.com Serv-U 9.0.0.5 WebClient Remote Buffer Overflow Background ------------ Serv-U includes a simple, browser-based transfer client perfect for every business environment. The Web Client is accessed through a standard...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2009/10/20 5:0 p.m.19 views

CVE-2009-3730

Multiple cross-site scripting XSS vulnerabilities in the ReqWeb Help feature aka the Web Client Help system in IBM Rational RequisitePro 7.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the operation parameter to ReqWebHelp/advanced/workingSet.jsp, or the 2 searchWord, 3...

5.6AI score0.03451EPSS
Exploits1References6
securityvulns
securityvulns
added 2009/01/30 12:0 a.m.177 views

Oracle Application Server Portal 10g Cross Site Scripting Vulnerability

OracleAS Portal is a Web-based application for building and deploying portals. It provides a secure, manageable environment for accessing and interacting with enterprise software services and information resources. A vulnerability has been identified in Oracle Application Server 10g, This could b...

1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/01/29 12:0 a.m.24 views

Oracle AS Portal Cross Site Scripting

Oracle AS Portal is a Web-based application for building and deploying portals. It provides a secure, manageable environment for accessing and interacting with enterprise software services and information resources. A vulnerability has been identified in Oracle Application Server 10g, This could ...

7.4AI score
Exploits0
myhack58
myhack58
added 2009/01/14 12:0 a.m.12 views

serv-u7 local exploit (php)-bug warning-the black bar safety net

Note: since the author is lazy, does not provide the log cleaning function that will leave the log: One, the su7 is the right there are several? There are two forms to get rid of su7 in. 1, login to the Administrator Console page ==get the OrganizationId for Add User ==get the global user of...

7.4AI score
Exploits0
myhack58
myhack58
added 2008/12/03 12:0 a.m.11 views

serv-u7 local exploit (php)-bug warning-the black bar safety net

by emptiness prodigal heart http://www.inbreak.net Note: since the author is lazy, does not provide log cleanup feature, it will leave a log: A, The su7 is the right there are several way? There are two forms to get rid of su7 in. 1, login to the Administrator Console page ==get the OrganizationI...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2008/08/22 12:0 a.m.23 views

timetrex-xss.txt

HSC TimeTrex Time and Attendance Cookie Theft TimeTrex allows companies to track and monitor employee attendance accurately in real-time from anywhere in the world. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/08/13 12:0 a.m.82 views

MS08-041: Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution (955617)

The remote host contains a version of the ActiveX control for the Snapshot Viewer for Microsoft Access which is vulnerable to a security flaw that could allow an attacker to execute arbitrary code on the remote host by constructing a malicious web page and entice a victim to visit it. C Tenable...

6.8CVSS6.2AI score0.59125EPSS
Exploits9References2
securityvulns
securityvulns
added 2008/06/06 12:0 a.m.43 views

SchoolCenter URL Handling Cross Site Scripting Vulnerability

SchoolCenter URL Handling Cross Site Scripting Vulnerability A vulnerability has been identified in SchoolCenter Software, which could be exploited to conduct cross site scripting attacks. Attackers can run arbitrary code that can be executed by the user's browser in the security context of an...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2008/06/06 12:0 a.m.42 views

schoolcenter-xss.txt

SchoolCenter URL Handling Cross Site Scripting Vulnerability A vulnerability has been identified in SchoolCenter Software, which could be exploited to conduct cross site scripting attacks. Attackers can run arbitrary code that can be executed by the user's browser in the security context of an...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/02/12 12:0 a.m.31 views

Microsoft Windows Web Client service buffer overflow

Buffer overflow on WebDAV server response parsing...

10CVSS4.5AI score0.40569EPSS
Exploits1References1
Symantec
Symantec
added 2008/02/12 12:0 a.m.19 views

Microsoft Windows WebDAV Mini-Redirector Heap Overflow Vulnerability

Description Microsoft Windows is prone to a heap-overflow vulnerability in the WebDAV Mini-Redirector component also known as the Web Client service. This vulnerability may be triggered by a malicious WebDAV response. A successful exploit could let a remote attacker execute arbitrary code with...

0.6AI score
Exploits0References2Affected Software7
Packet Storm
Packet Storm
added 2008/01/22 12:0 a.m.28 views

megabbs-xss.txt

HSC MegaBBS ASP Forum Cross-Site Scripting MegaBBS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/01/21 12:0 a.m.205 views

MegaBBS ASP Forum Cross-Site Scripting

HSC MegaBBS ASP Forum Cross-Site Scripting MegaBBS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2008/01/10 12:0 a.m.39 views

Simple Machines Forum Cross-Site Scripting Vulnerabilities Vulnerabilities

HSC Simple Machines Forum Cross-Site Scripting Vulnerabilities Vulnerabilities Simple Machines Forum allows attackers to exploiting this vulnerability by cross-site scripting and they will be able to obtain detailed information. This may help the attacker steal cookie-based authentication...

1.2AI score
Exploits0
securityvulns
securityvulns
added 2008/01/02 12:0 a.m.92 views

LiveCart Multiple Cross-Site Scripting Vulnerabilities

HSC LiveCart Multiple Cross-Site Scripting Vulnerabilities LiveCart is a new PHP/MySQL powered shopping cart software developed by Integry Systems. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site...

1.6AI score
Exploits0
Packet Storm
Packet Storm
added 2007/12/31 12:0 a.m.23 views

livecart-xss.txt

HSC LiveCart Multiple Cross-Site Scripting Vulnerabilities LiveCart is a new PHP/MySQL powered shopping cart software developed by Integry Systems. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site...

7.4AI score
Exploits0
Rows per page
Query Builder