what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Mohammed Boumediane

Zoph Cross Site Scripting

Posted Jul 3, 2010

Authored by Mohammed Boumediane | Site vupen.com

Zoph versions prior to 0.8.0.3 and 0.8.1.1 suffer from cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss

SHA-256 | 990527c729b04c8edb656822e7259ef8d0c7f9140c6abfd9612079b9cda777e5

Download | Favorite | View

eFront Cross Site Scripting

Posted Jun 4, 2010

Authored by Mohammed Boumediane | Site vupen.com

VUPEN Web Vulnerability Research Team discovered multiple vulnerabilities in eFront. These issues are caused by input validation errors when processing the "remote_theme", "name", "system_email", "password_length", "math_server", "site_motto" and "site_name" parameters, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser in the security context of an affected Web site. Versions prior to 3.6.3 build 7400 are affected.

tags | advisory, web, arbitrary, vulnerability, xss

SHA-256 | 1104801d6660f352341d2255e224ec704f33018e832b6a8a32964aa0a77e692e

Download | Favorite | View

Cacti Cross Site Scripting

Posted May 22, 2010

Authored by Mohammed Boumediane | Site vupen.com

Cacti versions 0.8.7e and below suffer from multiple cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss

SHA-256 | ebd3f27e43509f5b9afa098f1d4518b1d3378e5d4aabf3511489015a7d125a5e

Download | Favorite | View