[CLOSE] OSVDB ID : 84342 - Disclosed: 2012-07-01

Description:

Ushahidi contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'page title' tag upon submission to the /application/views/admin/layout.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 84341 - Disclosed: 2012-07-01

Description:

Ushahidi contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'page title' tag upon submission to the /themes/default/views/header.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81149 - Disclosed: 2012-04-13

Description:

Ushahidi contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the addition of administrative users. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 72675 - Disclosed: 2011-06-02

Description:

Ushahidi contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'application/controllers/admin/dashboard.php' script not properly sanitizing user-supplied input to the 'range' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 84742 - Disclosed: 2012-07-01

Description:

Ushahidi contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the location API in application/libraries/api/MY_Locations_Api_Object.php script not properly sanitizing user-supplied input before using it in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81150 - Disclosed: 2012-04-13

Description:

Ushahidi contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'name' parameter upon submission to the index.php/login script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 84743 - Disclosed: 2012-07-03

Description:

Ushahidi contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when certain calls to the exit function are omitted by the installer. This may allow a remote attacker to gain escalated privileges.

[CLOSE] OSVDB ID : 88050 - Disclosed: 2012-11-20

Description:

Ushahidi contains a flaw that is due to predictable password challenges being generated when a password reset is prompted by a user. This may allow a remote attacker to more easily gain access to a user's account.

[CLOSE] OSVDB ID : 92679 - Disclosed: 2013-02-07

Description:

Ushahidi contains a flaw that allows a persistent cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input related to the 'Report Description' field before returning it to the user. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 35324 - Disclosed: 2007-04-24

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Rajneel Lal TotaRam USP FOSS Distribution 1.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the dnld parameter.

[CLOSE] OSVDB ID : 64868 - Disclosed: 2010-05-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 6847 - Disclosed: 2004-06-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 86951 - Disclosed: 2010-12-19

Description:

USRobotics USR5453 routers use a single hardcoded SSL private key across all commercial devices. By purchasing a router and extracting the SSL key from the firmware, a remote attacker can use the key to decrypt traffic from any other device of the same model via a Man-in-The-Middle (MiTM) attack. This may give the attacker access to a wide variety of sensitive information including the credentials required to access the administrative interface of the device.

[CLOSE] OSVDB ID : 89352 - Disclosed: 2002-03-25

Description:

By default, USRobotics USR8550 Ethernet ADSL Modem installs with default user credentials (username/password combination). There is no account name, only a password of '12345' is required for administrator access. This is publicly known and documented, which allows remote attackers to trivially access the program or system and gain privileged access.

[CLOSE] OSVDB ID : 8289 - Disclosed: 2004-08-02

Description:

A remote overflow exists in USRobotics Wireless AP. The USRobotics Wireless AP embedded HTTP server fails to properly check GET requests resulting in a buffer overflow. With a specially crafted GET request containing 250 or more characters, an attacker can cause a buffer overflow and crash the Wireless AP, resulting in a loss of availability.

[CLOSE] OSVDB ID : 21980 - Disclosed: 2005-12-19

Description:

UStore contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'accessdenied' variables upon submission to the /admin/default.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 21981 - Disclosed: 2005-12-19

Description:

UStore contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin login script not properly sanitizing user-supplied input to the 'username' and 'password' fields. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 21979 - Disclosed: 2005-12-19

Description:

UStore contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'Cat' variables upon submission to the /default.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 30320 - Disclosed: 2006-11-12

Description:

(Description Provided by CVE) : SQL injection vulnerability in detail.asp in Superfreaker Studios UStore 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter.

[CLOSE] OSVDB ID : 534 - Disclosed: 2001-04-03

Description:

(Description Provided by CVE) : Directory traversal vulnerability in ustorekeeper 1.61 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.

[CLOSE] OSVDB ID : 30330 - Disclosed: 2006-11-13

Description:

(Description Provided by CVE) : SQL injection vulnerability in detail.asp in Superfreaker Studios USupport 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

[CLOSE] OSVDB ID : 39862 - Disclosed: 2007-11-06

Description:

(Description Provided by CVE) : USVN before 0.6.5 allows remote attackers to obtain a list of repository contents via unspecified vectors.

[CLOSE] OSVDB ID : 79467 - Disclosed: 2012-02-20

Description:

By default, the UTC Fire & Security GE-MC100-NTP/GPS-ZB Master Clock comes with a default password. The admin account has a hardcoded password which is publicly known and documented. This allows attackers to trivially access the program or system and gain privileged access.

[CLOSE] OSVDB ID : 5550 - Disclosed: 2004-04-19

Description:

utempter contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when a path to a device contains "/../", "/./", or "//" characters. It is possible that the flaw may allow a malicious user to create symlink attacks and overwrite arbitrary files resulting in a loss of integrity.

[CLOSE] OSVDB ID : 1970 - Disclosed: 2001-10-08

Description:

(Description Provided by CVE) : The PAM implementation in /bin/login of the util-linux package before 2.11 causes a password entry to be rewritten across multiple PAM calls, which could provide the credentials of one user to a different user, when used in certain PAM modules such as pam_limits.

[CLOSE] OSVDB ID : 35692 - Disclosed: 2006-01-09

Description:

(Description Provided by CVE) : login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.

[CLOSE] OSVDB ID : 75268 - Disclosed: 2011-03-03

Description:

(Description Provided by CVE) : mount in util-linux 2.19 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors.

[CLOSE] OSVDB ID : 75267 - Disclosed: 2011-03-03

Description:

(Description Provided by CVE) : mount in util-linux 2.19 and earlier does not remove the /etc/mtab.tmp file after a failed attempt to add a mount entry, which allows local users to trigger corruption of the /etc/mtab file via multiple invocations.

[CLOSE] OSVDB ID : 74917 - Disclosed: 2011-03-03

Description:

(Description Provided by CVE) : mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

[CLOSE] OSVDB ID : 40912 - Disclosed: 2007-10-09

Description:

(Description Provided by CVE) : mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values, which might allow attackers to gain privileges via helpers such as mount.nfs.