This security advisory discusses how attackers can exploit the downgrade dance and break the cryptographic security of SSL 3.0.
b2ffe2b23e29fc61a2e99711e7ff799ee26f04addd8cccd1516efb84b8489efe
Exceed onDemand (EoD) suffers from session hijacking, password obfuscation, man-in-the-middle, and authentication bypass vulnerabilities. Proof of concept code provided.
667344493d498ee4a511a4f3cb7bee65b956a21a9dc42e1d4bf5104530d4f3ad
easyXDM library versions 2.4.16 and below suffer from cross site scripting and parameter injection vulnerabilities.
19287ecdc95f0de8cf7a407c73fe7767c29a4796809ff7e42f9f42c9b254d703
easyXDM library versions prior to 2.4.19 suffer from a cross site scripting vulnerability using the location.hash value.
32a34c0b9a458b9716a047d0c5d149f245276bb10610212af8490aca25078e1c
CodeIgniter version 2.1.1 suffers from a cross site scripting filter bypass vulnerability.
3ef2a27952806217b13309e73061a93a5159c4ffa2318c44e42a0fe6cd29d93d