Django suffers from an admin list filter data extraction vulnerability.
0df42c652e8f3a5dd96c219a186deee3bc86b62a4050d27531933efc4d5db86eNagios XI suffers from a remote SQL injection vulnerability in users.php.
d8d2f7e65ebe2221b126cfd1ff208afff750e76c28afe69103b749f4529db049The login page for the Nagios XI management interface prior to version 2009R1.3 is vulnerable to cross-site scripting (XSS). This vulnerability does not require the victim to be authenticated. This vulnerability was originally thought to be addressed in version 2009R1.2C.
e70887b72d05c6675a468a37609a7d93b2d59e5dfb89be8044b6c7db330dace2Nagios XI 2009R1.2B suffers from a cross site request forgery vulnerability.
0573a740088330210284491b99c26aad8b303bbd4d855b1965b1754dcd9a977eMcAfee UTM Firewall firmware versions 3.0.0 through 4.0.6 suffer from a cross site scripting vulnerability.
d74a18c2c94d3ec9137055c30cb90322d16fe5992676d7772281967380bf88d1JForum version 2.1.8 suffers from cross site request forgery and cross site scripting vulnerabilities.
633d4cb4f2a43dbf8c9aded141e86050a135040680d1189e99dfeb202c9740c2Novatel Wireless Mifi suffers from cross site request forgery, output encoding, gps enabling, and authentication vulnerabilities.
b07c73a7c1c8cca6d14d3e4157f32c6256bcf8e00e3240328484ee58d974ad1eZenoss versions 2.3.3 suffers from a cross site request forgery vulnerability.
4c13cb2bfaf7588227b342d1323b86c33f615e689fb1db9c07815ef252fcdf19Zenoss version 2.3.3 suffers from a remote SQL injection vulnerability.
8ae88b4d12441e5901a34796eae64264167b57c8699772ac793843d616c0949eSpiceworks version 3.6.31847 suffers from cross site scripting and cross site request forgery vulnerabilities.
b2dd9ecd24e0e81ec7f60bfed240a2d836cb0aad58dd4b3fdce264ca62ca2a8aKayako SupportSuite version 3.50.05 suffers from a persistent cross site scripting vulnerability.
98e9712826329b16ca4abea555a3bf53c9f672d85c9f8ca3d624c6776df1f77cosTicket version 1.6 RC4 suffers from a blind SQL injection vulnerability.
160a91fe4690fbfe3cd0a48f71d8975b3ea5347af229b9d915e9185506152a61Zabbix version 1.6.2 suffers from multiple cross site request forgery vulnerabilities.
8ee865f64b5fc17f842d58dc0c0d58f823ba5646c8e910c5bf3f2f0715f41ee8ExpressionEngine versions 1.6.4 through 1.6.6 suffer form a persistent cross site scripting vulnerability. Earlier versions may also be susceptible.
a1288027aa737de31887b7c6d39c9f16bbab3e7da1af5f62f00119e0eda3480bOpenCart version 1.1.8 suffers from a blind SQL injection vulnerability.
4afbb0b776c1f7f3dcf3c064b4802ac815d06428bdfaa3c74451542cf3a8b160The Simpliciti Locked Browser interface jail can be broken out of using simple JavaScript.
31c51ec9f1335cb8936ef3d4bcd381e588378f1959fe7c6f88f870611fcf2a21Neslo Desktop Rover suffers from a remote denial of service vulnerability.
a60e6aaf17789932c5057f3a7942283c9a1bb3e4836d0c355a8b98aa268c362aAn active-x control used to set up e-mail, nntp, and ldap accounts in Outlook Express for the University of Phoenix allows for later account manipulation.
4bca6a33736e5903a701811c2b98fceeb18af1da5f873243b6df0556d9db116d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed