what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 51 - 75 of 100 RSS Feed

Files

PHP Universal Web Messenger Cross-Domain Redirect
Posted Dec 16, 2010
Authored by ProCheckUp, Jan Fry | Site procheckup.com

PHP Universal Web Messenger suffers from a cross-domain redirect vulnerability.

tags | exploit, web, php
SHA-256 | 3d11a6d4f9d5cdf42c90ac17922caf1bba35357aa4b5bbdfd7e1d98500977074

Related Files

ProCheckUp Security Advisory 2007.31
Posted Oct 9, 2008
Authored by Adrian Pastor, ProCheckUp | Site procheckup.com

Remote SQL injection, cross site scripting, and user enumeration vulnerabilities exist in DPSnet Case Progress.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 0a2e10b125f92c734c445d338f2ce29f6235b3cd82345ce56eea2fbf2cda1c5d
ProCheckUp Security Advisory 2008.20
Posted Aug 22, 2008
Authored by ProCheckUp | Site procheckup.com

Microsoft ASP.NET ValidateRequest filters can be bypassed allowing for cross site scripting and HTML injection attacks.

tags | advisory, xss, asp
SHA-256 | 991d123ab5c384f1961576752ae8de0178e17504175d1d5b7d6c72a0c878c48b
ProCheckUp Security Advisory 2008.16
Posted Jul 23, 2008
Authored by ProCheckUp | Site procheckup.com

Moodle versions 1.7.4 and below suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 9b672c9891f43e963372288c6214110301eb382e12f52a3d07f345af494e127d
ProCheckUp Security Advisory 2008.15
Posted Jul 23, 2008
Authored by ProCheckUp | Site procheckup.com

Moodle version 1.6.5 is vulnerable to web root disclosure issues.

tags | advisory, web, root
SHA-256 | b7152cf1de201fd0666c3798c71f085ae1c67f8fcd050b3cf71b0174519848b9
ProCheckUp Security Advisory 2008.13
Posted Jul 23, 2008
Authored by ProCheckUp | Site procheckup.com

A cross site scripting vulnerability exists in Moodle versions 1.7.4 and below.

tags | exploit, xss
SHA-256 | b0fe23900a332e7a187b189caa6b1a774cde02b5151c2953c4ae3181b49714a8
pragyan-rfi.txt
Posted Jul 15, 2008
Authored by N3TR00T3R

Pragyan CMS version 2.6.2 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 9722bddbad8b3212de95ca2510bdd822e709bc3e834a41b31b30944328ff7b88
ProCheckUp Security Advisory 2007.44
Posted Apr 24, 2008
Authored by ProCheckUp | Site procheckup.com

RSA Authentication Agent is vulnerable to a vanilla cross site scripting flaw on the login page. Tested on RSA Authentication Agent 5.3.0.258 for Web for Internet Information Services.

tags | exploit, web, xss
SHA-256 | 5a5d9dea5b1f25761e00eb31cbd27c0bbc1985757d23d7db73ef2b3ac1f40262
ProCheckUp Security Advisory 2007.43
Posted Apr 24, 2008
Authored by ProCheckUp, Richard Brain | Site procheckup.com

A HTML injection vulnerability exists in the WebLogic administration console. Version 10.0 is susceptible. remote URI redirection vulnerability affects the RSA Authentication Agent. This issue is due to a failure of the application to properly sanitize URI-supplied data assigned to the 'url' parameter. Tested on RSA Authentication Agent 5.3.0.258 for Web for Internet Information Services in conjunction with Mozilla Firefox 2.0.0.11.

tags | exploit, remote, web
SHA-256 | 68fa1ad35fc6aa8f665119119b0250479e6e7a337c5f298e8a27980b5aa6d42a
ProCheckUp Security Advisory 2007.42
Posted Feb 28, 2008
Authored by ProCheckUp, Richard Brain | Site procheckup.com

Juniper Networks Secure Access 2000 versions prior to 5.5R3 suffer from a webroot disclosure flaw when parameters are stripped from the remediate.cgi script.

tags | advisory, cgi
systems | juniper
SHA-256 | 44ce64002c3bc4904109cda47e8e49a779cd38ee73e1bdddb0887df85cce8d9b
ProCheckUp Security Advisory 2007.41
Posted Feb 28, 2008
Authored by ProCheckUp, Richard Brain | Site procheckup.com

Juniper Networks Secure Access 2000 versions prior to 5.5R3 are vulnerable to a cross site scripting vulnerability. Full details provided.

tags | exploit, xss
systems | juniper
SHA-256 | f42c809cfe2e32f3528767ab5078337b58ae581f485a1cab7ce48646dba417c3
ProCheckUp Security Advisory 2006.12
Posted Feb 20, 2008
Authored by Adrian Pastor, ProCheckUp, Jan Fry | Site procheckup.com

BEA Plumtree Foundation portal version 6.0 and BEA AquaLogic Interaction version 6.1 are both vulnerable to a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 7a08c7f2e308d21418659bf94d530748edc0e377060fe39dc2ceed70fa329e2a
ProCheckUp Security Advisory 2008.1
Posted Feb 20, 2008
Authored by ProCheckUp, Richard Brain, Jan Fry, Bruno Kovacs | Site procheckup.com

Several cross site scripting flaws, a cross domain redirect, and a webroot disclosure exist in Spyce - Python Server Pages (PSP).

tags | exploit, xss, python
SHA-256 | 077c9b43accad72d480303905614e7aa18daede74be5a5154085b44e93788a0a
ProCheckUp Security Advisory 2007.38
Posted Jan 22, 2008
Authored by ProCheckUp, Jan Fry | Site procheckup.com

sIFR version 2.0.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 2d82c6c1796407730517480445f8bd86e0c4e14f0657b9b35cf1ca6c4d13e9a7
ProCheckUp Security Advisory 2007.60708091012
Posted Jan 10, 2008
Authored by Adrian Pastor, ProCheckUp, Jan Fry | Site procheckup.com

Sun Java System Identity Manager version 6.0, Sun Java System Identity Manager version 7.0, and Sun Java System Identity Manager version 7.1 are susceptible to cross domain redirection, cross site scripting, and frame injection vulnerabilities.

tags | advisory, java, vulnerability, xss
SHA-256 | d6006a16a69c00bd066f6cb36ecb14b95ece02d9fc7932ef0a831f29ef9988fd
pragmatel-adv.txt
Posted Jan 5, 2008
Authored by Luigi Auriemma | Site aluigi.org

Pragma TelnetServer versions 7.0 Build 4 Revision 589 and below suffer from a denial of service vulnerability.

tags | advisory, denial of service
SHA-256 | 1a28a06944b9836b8fcdff467838a1fb4156430bf2ed80fa17bcf2726c114ff9
pragmassh-adv.txt
Posted Jan 5, 2008
Authored by Luigi Auriemma | Site aluigi.org

Pragma FortressSSH versions 5.0 Build 4 Revision 293 and below suffer from a denial of service vulnerability.

tags | advisory, denial of service
SHA-256 | 47404a6f184514f51ba1990f501289d9357be57d1719c236cf552bd634c6620a
ProCheckUp Security Advisory 2007.39
Posted Dec 6, 2007
Authored by Adrian Pastor, ProCheckUp, Richard Brain, Jan Fry | Site procheckup.com

Directory traversal, cross site scripting, and SQL injection vulnerabilities exist in the Absolute News Manager .NET version 5.1.

tags | exploit, vulnerability, xss, sql injection
SHA-256 | c20201b4d8c8d24e7310c36b1d34160f498e4b267278ba9e50ad2889cd7016c1
ProCheckUp Security Advisory 2006.9
Posted Dec 4, 2007
Authored by Adrian Pastor, ProCheckUp, Richard Brain, Jan Fry | Site procheckup.com

By performing an advanced search, unauthenticated users can enumerate valid usernames with a single HTTP request on the BEA Plumtree Portal.

tags | advisory, web
SHA-256 | 776de6dc499e6ebfc575f8b19a3ac66c6953bcc956cb6a8b5c59f0a43584290a
ProCheckUp Security Advisory 2006.8
Posted Dec 4, 2007
Authored by Adrian Pastor, ProCheckUp, Jan Fry | Site procheckup.com

BEA Plumtree Portal is vulnerable to a internal hostname disclosure vulnerability.

tags | advisory
SHA-256 | 866b56dd83ba8330356f8847ee9d66d1be2f67a4336cc14f44ee0a485a6a593a
ProCheckUp Security Advisory 2007.37
Posted Dec 2, 2007
Authored by Adrian Pastor, ProCheckUp, Amir Azam | Site procheckup.com

A cross site scripting vulnerability has been discovered in Apache versions 2.2.x and 2.0.x using a malformed HTTP request with 413 error pages.

tags | exploit, web, xss
SHA-256 | 5e5ecae2dd8650f2334b76ce5c8c11c07a739563e20ab71119ce66af66f4b72c
ProCheckUp Security Advisory 2007.15
Posted Dec 2, 2007
Authored by ProCheckUp, Richard Brain | Site procheckup.com

The F5 FirePass 4100 SSL VPN is susceptible to cross site scripting vulnerabilities in my.logon.php3.

tags | exploit, vulnerability, xss
SHA-256 | e6afb0f9bfff9f0c6c26b41688b8501ab2e432569ffb54063058d40d923885b9
ProCheckUp Security Advisory 2007.14
Posted Dec 2, 2007
Authored by Adrian Pastor, ProCheckUp, Jan Fry | Site procheckup.com

The F5 FirePass 4100 SSL VPN is susceptible to cross site scripting vulnerabilities in my.activation.php3.

tags | exploit, vulnerability, xss
SHA-256 | f93567dd019619dc99df7b77129c40ab79f517ee69a40dd6ed1e64a113c580e3
ProCheckUp Security Advisory 2007.26
Posted Nov 16, 2007
Authored by ProCheckUp, Jan Fry | Site procheckup.com

The Aruba 800 is vulnerable to a persistent cross site scripting vulnerability on the administrator login screen.

tags | exploit, xss
SHA-256 | 3e73dcdf74055dee74b222dec88feb100ce0260e700825e3d8fd7ec82381a1cf
ProCheckUp Security Advisory 2007.2
Posted Nov 16, 2007
Authored by Adrian Pastor, ProCheckUp | Site procheckup.com

The Liferay Portal login page is vulnerable to a cross site scripting vulnerability within the "login" field processed by the "/c/portal/login" server-side script.

tags | exploit, xss
SHA-256 | c5b4c300ba8f9b20584c800933c0325a4d4d46f7e96b287d9a80d0e033cff5fd
ProCheckUp Security Advisory 2007.13
Posted Nov 13, 2007
Authored by Adrian Pastor, ProCheckUp, Jan Fry | Site procheckup.com

A cross site scripting vulnerability exists in F5 Networks FirePass versions 5.4 through 5.5.2 and versions 6.0 through 6.0.1.

tags | advisory, xss
SHA-256 | 51540fba61ee07c114e319066190f0cda6e0b78c22a023ed48a9ce08149e0dd6
Page 3 of 4
Back1234Next

File Archive:

February 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    11 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    0 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    0 Files
  • 6
    Feb 6th
    0 Files
  • 7
    Feb 7th
    0 Files
  • 8
    Feb 8th
    0 Files
  • 9
    Feb 9th
    0 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    0 Files
  • 13
    Feb 13th
    0 Files
  • 14
    Feb 14th
    0 Files
  • 15
    Feb 15th
    0 Files
  • 16
    Feb 16th
    0 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close