59 matches found
CVE-2009-5113
Cross-site scripting XSS vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the DOC parameter...
CVE-2009-5114
Directory traversal vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the DOC parameter...
CVE-2009-5112
wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to obtain the installation path via a crafted request...
Directory traversal
Directory traversal vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the DOC parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the DOC parameter...
CVE-2009-5112
wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to obtain the installation path via a crafted request...
CVE-2009-5112
CVE-2009-5112 affects WebGlimpse (version 2.18.7 and earlier). The issue allows remote attackers to disclose the installation path via a crafted request to wgarcmin.cgi. The description provided does not include exploit specifics beyond this disclosure vector. No patched version or remediation de...
CVE-2009-5113
Cross-site scripting XSS vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the DOC parameter...
CVE-2009-5114
Directory traversal vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the DOC parameter...
CVE-2009-5113
The CVE-2009-5113 entry describes a cross-site scripting (XSS) vulnerability in WebGlimpse, specifically in the wgarcmin.cgi component of WebGlimpse 2.18.7 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML via the DOC parameter. The available sources (NVD/NVD m...
CVE-2012-1787
CVE-2012-1787 describes multiple cross-site scripting (XSS) vulnerabilities in Webglimpse’s wgarcmin.cgi script for version 2.20.0 and earlier. The flaw allows remote attackers to inject arbitrary web script or HTML by supplying crafted values in the (1) URL, (2) FILE, or (3) DOMAIN parameters, e...
CVE-2009-5114
WebGlimpse 2.18.7 and earlier is affected by a directory traversal vulnerability in wgarcmin.cgi that allows remote attackers to read arbitrary files via a .. in the DOC parameter. Affected component is WebGlimpse, version 2.18.7 and prior; root cause CWE-22 (path traversal). Impact per sources: ...
Brute Force и XSS уязвимости в Webglimpse
Здравствуйте 3APA3A! После предыдущих многочисленных Cross-Site Scripting, Full path disclosure, Directory Traversal и Authorization bypass уязвимостей в Webglimpse SecurityVulns ID: 9436, 9443, 9778, 9876, сообщаю вам о найденных мною новых уязвимостях в Webglimpse. Это Brute Force и Cross-Site...
WebGlimpse 2.x - 'wgarcmin.cgi' Full Path Disclosure
source: https://www.securityfocus.com/bid/52646/info WebGlimpse is prone to a path-disclosure vulnerability. Exploiting this issue can allow an attacker to access sensitive data that may be used to launch further attacks against a vulnerable computer. WebGlimpse 2.18.7 is vulnerable; other versio...
WebGlimpse 2.x - wgarcmin.cgi Full Path Disclosure
WebGlimpse 2.x - wgarcmin.cgi Full Path Disclosure source: https://www.securityfocus.com/bid/52646/info WebGlimpse is prone to a path-disclosure vulnerability. Exploiting this issue can allow an attacker to access sensitive data that may be used to launch further attacks against a vulnerable...
Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities
Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...
Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script on the affected server and steal...
Webglimpse Brute Force / Cross Site Scripting
Hello list! I want to warn you about new security vulnerabilities in Webglimpse in addition to previous ones. These are Brute Force and Cross-Site Scripting vulnerabilities. During 2008-2009 I've disclosed multiple vulnerabilities in Webglimpse http://securityvulns.com/source15611.html, such as...
Multiple vulnerabilities in Webglimpse
Здравствуйте 3APA3A! Сообщаю вам о найденных мною множественных уязвимостях в Webglimpse. Это Full path disclosure, Cross-Site Scripting, Directory Traversal и Authorization bypass уязвимости. Уязвимости в админке Webglimpse в которую можно попасть через гостевой аккаунт, или захватив кукис админ...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Webglimpse: information leak, crossite scripting, directory traversal, authentication bypass...