Home Vendor Advisories

Saturday, 06 September 2008

Main Menu Home About us Contact us Services Partners Downloads Online Services Helpdesk Backup Reminders Partners We ensure the highest level of vendor support for our clients & have established alliances with the following vendors: Services Spotlight Maintenance and Support We provide a full range of hardware and software support based services, onsite and off-site including Monitoring services, Remote management and Service level support. Read more...   Login Username Password Remember me Lost Password? Tech Zone Vendor Advisories Cisco Microsoft Open Source Vul DB Products Industry News

Vendor Advisories Rapid Classified search.asp SH1 Variable XSS Open Source Vulnerability Database Sunday, 19 November 2006 Rapid Classified contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'SH1' variable upon submission to the search.asp script. This could allow a user to create a specially crafted URL that... Read more...   Rapid Classified advsearch.asp dosearch Variable XSS Open Source Vulnerability Database Sunday, 19 November 2006 Rapid Classified contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'dosearch' variable upon submission to the advsearch.asp script. This could allow a user to create a specially crafted... Read more...   phpMyAdmin tbl_create.php Table Comments Field XSS Open Source Vulnerability Database Thursday, 16 November 2006 phpMyAdmin contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the Table Comments Field upon submission to the 'tbl_create.php' script. This could allow a user to create a specially crafted URL... Read more...   phpMyAdmin tbl_properties_operations.php Table Comments Field XSS Open Source Vulnerability Database Thursday, 16 November 2006 phpMyAdmin contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the Table Comments Field upon submission to the 'tbl_properties_operations.php' script. This could allow a user to create a... Read more...   Selenium Server Web Server XSS Open Source Vulnerability Database Thursday, 16 November 2006 Selenium Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate URL input upon submission to the web server. This could allow a user to create a specially crafted URL that would execute arbitrary code... Read more...   Dragon Internet Events Listing venue_detail.asp VenueID Variable SQL Injection Open Source Vulnerability Database Thursday, 16 November 2006 Events Listing contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'venue_detail.asp' script not properly sanitizing user-supplied input to the 'VenueID' variable. This may allow an attacker to inject or... Read more...   Dragon Internet Events Listing admin_login.asp Multiple Field SQL Injection Open Source Vulnerability Database Thursday, 16 November 2006 Events Listing contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin_login.asp' script not properly sanitizing user-supplied input to the 'username' and 'password' variables. This may allow... Read more...   Dragon Internet Events Listing event_searchdetail.asp ID Variable SQL Injection Open Source Vulnerability Database Thursday, 16 November 2006 Events Listing contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'event_searchdetail.asp' script not properly sanitizing user-supplied input to the 'ID' variable. This may allow an attacker to inject or... Read more...   SeleniumServer FTP Server Multiple Command Traversal Arbitrary File Access Open Source Vulnerability Database Wednesday, 15 November 2006 SeleniumServer contains a flaw that allows a remote attacker to list and download files outside of the web path. The issue is due to the FTP Server properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'DIR'(LIST or... Read more...   SeleniumServer FTP Server Cleartext Password Disclosure Open Source Vulnerability Database Wednesday, 15 November 2006 SeleniumServer contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to passwords when reading an unspecified file in the 'server' directory, which may lead to a loss of confidentiality. Read more...   << Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >> Results 41 - 50 of 4451

This page was loaded in 0.047 seconds.