86 matches found
CVE-2010-4580
Opera before 11.00 does not clear WAP WML form fields after manual navigation to a new web site, which allows remote attackers to obtain sensitive information via an input field that has the same name as an input field on a previously visited web site...
CVE-2010-4580
Opera before 11.00 is affected by a vulnerability where WAP/WML form fields are not cleared when navigating to a new site, allowing a remote attacker to obtain sensitive information from an input field that shares a name with a previously visited site. The issue is confirmed in CVE-2010-4580 and ...
WAP form content can be leaked to other sites
When accepting user input in form fields on a WAP page, WML requires that the input contents are remembered, and used to populate every further input sharing the same name. This should continue as long as the user continues to click links known as a WAP session, even populating similarly named...
Nagios statuswml.cgi远程Shell命令注入漏洞
BUGTRAQ ID: 35464 Nagios是一款免费开放源代码的主机和服务监视软件,可使用在多种Linux和Unix操作系统下。 Nagios没有正确地过滤传送给statuswml.cgi的ping参数,远程攻击者可以通过tools - ping和tools- Traceroute WAP/WML页面注入并执行任意shell命令。例如,Ping主机名/地址173.45.235.65;echo $PATH会返回ping命令的输出并执行和返回echo $PATH命令的输出。 Nagios Nagios 3.1.0 Nagios Nagios 3.0.6 Nagios Nagios 2....
Mandriva Linux Security Advisory : wml (MDVSA-2008:076)
Two vulnerabilities were found in the Website META Language WML package that allowed local users to overwrite arbitrary files via symlink attacks. The updated packages have been patched to correct these issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
Mandriva Update for wml MDVSA-2008:076 (wml)
Check for the Version of wml OpenVAS Vulnerability Test Mandriva Update for wml MDVSA-2008:076 wml Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
CVE-2009-0366
The uncompressbuffer function in src/server/simplewml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document...
CVE-2009-0366
The uncompressbuffer function in src/server/simplewml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document...
Code injection
The uncompressbuffer function in src/server/simplewml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document...
Gentoo Security Advisory GLSA 200803-23 (wml)
The remote host is missing updates announced in advisory GLSA 200803-23. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
WAP Web Application Security-vulnerability warning-the black bar safety net
Author: lake2 80sec EMail: lake280sec.com Site: http://www.80sec.com Date: 2008-6-10 --------------------------------- Directory 0x00 is utter bullshit. 0x01 WML and WMLScript 0x02 WML injection attacks 0x03 WML injected into what can be done 0x04 WAP site session security 0x05 PostScript...
[SECURITY] [DSA 1492-2] New wml packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 1492-2 [email protected] http://www.debian.org/security/ Martin Schulze April 27th, 2008 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 1492-1 (wml)
The remote host is missing an update to wml announced via advisory DSA 1492-1. OpenVAS Vulnerability Test $Id: deb14921.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1492-1 wml Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian: Security Advisory (DSA-1492-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 1492-1] New wml packages fix denial of service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1492-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 10, 2008 http://www.debian.org/security/faq -...
WML symbolic links vulnerability
Symbolic links problem on temporary files creation...
Code injection
Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...
Design/Logic Flaw
wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...
CVE-2008-0666
Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...
CVE-2008-0666
Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...