10 matches found
CVE-2009-4586
Multiple cross-site scripting XSS vulnerabilities in index.html in Wowd client before 1.3.1 allow remote attackers to inject arbitrary web script or HTML via the 1 sortby, 2 tags, or 3 ctx parameter in a search action...
EUVD-2009-4552
Malware in sbrugna...
CVE-2009-4586
Multiple cross-site scripting XSS vulnerabilities in index.html in Wowd client before 1.3.1 allow remote attackers to inject arbitrary web script or HTML via the 1 sortby, 2 tags, or 3 ctx parameter in a search action...
CVE-2009-4586
The CVE-2009-4586 entry describes multiple XSS vulnerabilities in index.html of the Wowd client prior to version 1.3.1. The root cause is improper handling of user-supplied input in the search action, allowing injection of arbitrary script or HTML via (1) sortby, (2) tags, or (3) ctx parameters. ...
Fwd: {Lostmonґs Group} Re: Wowd search client multiple variable xss (solution)
hello I receive today this response from word search engine developer i test the new version of Wowd client 1.3.1 and this issue http://lostmon.blogspot.com/2009/10/wowd-search-client-multiple-variable.html is now solved. Thnx for your time !!! ---------- Forwarded message ---------- From: Bill...
Wowd search client multiple variable xss
No description provided by source. Wowd search client multiple variable xss Vendor URL: http://www.wowd.com/ Advisore:http://lostmon.blogspot.com/2009/10/ wowd-search-client-multiple-variable.html Vendor notify:yes exploit available:yes What is Wowd? Wowd is a real-time search engine for...
Fwd: Wowd search client multiple variable xss
Wowd search client multiple variable xss Vendor URL: http://www.wowd.com/ Advisore:http://lostmon.blogspot.com/2009/10/ wowd-search-client-multiple-variable.html Vendor notify:yes exploit available:yes What is Wowd? Wowd is a real-time search engine for discovering what's popular on the web right...
Wowd - index.html Multiple Cross-Site Scripting Vulnerabilities
Wowd - index.html Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42327/info Wowd search client is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...
Wowd Search Client 1.3.0 XSS
No description provided by source. Wowd search client multiple variable xss Vendor URL: http://www.wowd.com/ Advisore:http://lostmon.blogspot.com/2009/10/ wowd-search-client-multiple-variable.html Vendor notify:yes exploit available:yes What is Wowd? Wowd is a real-time search engine for...
Wowd Search Client 1.3.0 XSS
Exploit for unknown platform in category web applications ============================ Wowd Search Client 1.3.0 XSS ============================ Wowd search client multiple variable xss Vendor URL: http://www.wowd.com/ Vendor notify:yes exploit available:yes What is Wowd? Wowd is a real-time sear...