[CLOSE] OSVDB ID : 76315 - Disclosed: 2011-10-12

Description:

[Certificate Login Module for Drupal contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the program not properly sanitizing user-supplied input to the client certificate data fields. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 76302 - Disclosed: 2011-10-12

Description:

Pretty Link Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'message' parameter upon submission to the wp-content/plugins/pretty-link/classes/views/prli-dashboard-widget/widget.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76303 - Disclosed: 2011-10-12

Description:

Pretty Link Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'errors[]' parameter upon submission to the wp-content/plugins/pretty-link/classes/views/shared/errors.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76304 - Disclosed: 2011-10-12

Description:

Pretty Link Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'page_first_record', 'page_last_record', 'record_count', 'controller_file' and 'page_params' parameters upon submission to the wp-content/plugins/pretty-link/classes/views/shared/table-nav.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76305 - Disclosed: 2011-10-12

Description:

Pretty Link Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate various values parameter upon submission to the wp-content/plugins/pretty-link/classes/views/prli-links/form.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76310 - Disclosed: 2011-10-12

Description:

BugFree contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'ReportMode' parameter upon submission to the Report.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76311 - Disclosed: 2011-10-12

Description:

BugFree contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'ReportMode' parameter upon submission to the ReportLeft.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76312 - Disclosed: 2011-10-12

Description:

BugFree contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the Admin/AdminProjectList.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76313 - Disclosed: 2011-10-12

Description:

BugFree contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the Admin/AdminGroupList.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76314 - Disclosed: 2011-10-12

Description:

BugFree contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the Admin/AdminUserLogList.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76320 - Disclosed: 2011-10-12

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Calendar in Apple iOS before 5 allows remote attackers to inject arbitrary web script or HTML via an invitation note.

[CLOSE] OSVDB ID : 76358 - Disclosed: 2011-10-12

Description:

(Description Provided by CVE) : Buffer overflow in the ATSFontDeactivate API in Apple Type Services (ATS) in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

[CLOSE] OSVDB ID : 76359 - Disclosed: 2011-10-12

Description:

(Description Provided by CVE) : CFNetwork in Apple Mac OS X before 10.7.2 does not properly follow an intended cookie-storage policy, which makes it easier for remote web servers to track users via a cookie, related to a "synchronization issue."

[CLOSE] OSVDB ID : 76367 - Disclosed: 2011-10-12

Description:

(Description Provided by CVE) : libsecurity in Apple Mac OS X before 10.7.2 does not properly handle errors during processing of a nonstandard extension in a Certificate Revocation list (CRL), which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) a crafted (1) web site or (2) e-mail message.

[CLOSE] OSVDB ID : 76374 - Disclosed: 2011-10-12

Description:

(Description Provided by CVE) : Buffer overflow in CoreMedia, as used in Apple iTunes before 10.5, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.

[CLOSE] OSVDB ID : 76399 - Disclosed: 2011-10-12

Description:

(Description Provided by CVE) : SQL injection vulnerability in data/class/SC_Query.php in EC-CUBE 2.11.0 through 2.11.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

[CLOSE] OSVDB ID : 76391 - Disclosed: 2011-10-12

Description:

(Description Provided by CVE) : The Private Browsing feature in Apple Safari before 5.1.1 on Mac OS X does not properly recognize the Always value of the Block Cookies setting, which makes it easier for remote web servers to track users via a cookie.

[CLOSE] OSVDB ID : 76812 - Disclosed: 2011-10-12

Description:

Cisco TelePresence Video Communication Servers contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'User-Agent' HTTP header upon submission to the login page of the admin itnerface. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77153 - Disclosed: 2011-10-12

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77154 - Disclosed: 2011-10-12

Description:

Juniper Junos J-Web Interface contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed by a user during authentication via the administrator log before it is sent to the administrator. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83466 - Disclosed: 2011-10-12

Description:

GD Star Rating Plugin for WordPress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the wp-content/plugins/gd-star-rating/export.php script not properly sanitizing user-supplied input to the 'de' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 76236 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 provides the MicrosoftClient.jar file containing a signed Java applet, which allows remote attackers to execute arbitrary code on client machines via unspecified vectors, aka "Poisoned Cup of Code Execution Vulnerability."

[CLOSE] OSVDB ID : 76237 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 does not properly validate session cookies, which allows remote attackers to cause a denial of service (IIS outage) via unspecified network traffic, aka "Null Session Cookie Crash."

[CLOSE] OSVDB ID : 76223 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Host Integration Server (HIS) 2004 SP1, 2006 SP1, 2009, and 2010 allows remote attackers to cause a denial of service (SNA Server service outage) via crafted TCP or UDP traffic, aka "Endless Loop DoS in snabase.exe Vulnerability."

[CLOSE] OSVDB ID : 76224 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Host Integration Server (HIS) 2004 SP1, 2006 SP1, 2009, and 2010 allows remote attackers to cause a denial of service (SNA Server service outage) via crafted TCP or UDP traffic, aka "Access of Unallocated Memory DoS Vulnerability."

[CLOSE] OSVDB ID : 76219 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : win32k.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle TrueType fonts, which allows local users to cause a denial of service (system hang) via a crafted font file, aka "Win32k TrueType Font Type Translation Vulnerability."

[CLOSE] OSVDB ID : 76221 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that leverages incorrect driver object management, aka "Win32k Use After Free Vulnerability."

[CLOSE] OSVDB ID : 76214 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5.1, and 4, and Silverlight 4 before 4.0.60831, does not properly restrict inheritance, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP), (2) a crafted ASP.NET application, (3) a crafted .NET Framework application, or (4) a crafted Silverlight application, aka ".NET Framework Class Inheritance Vulnerability."

[CLOSE] OSVDB ID : 76206 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "Scroll Event Remote Code Execution Vulnerability."

[CLOSE] OSVDB ID : 76209 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "OnLoad Event Remote Code Execution Vulnerability."

[CLOSE] OSVDB ID : 76212 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "Body Element Remote Code Execution Vulnerability."

[CLOSE] OSVDB ID : 76213 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code via an attempted access to a virtual function table after corruption of this table has occurred, aka "Virtual Function Table Corruption Remote Code Execution Vulnerability."

[CLOSE] OSVDB ID : 76284 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in _ah/admin/interactive/execute (aka the Interactive Console) in the SDK Console (aka Admin Console) in the Google App Engine Python SDK before 1.5.4 allows remote attackers to hijack the authentication of administrators for requests that execute arbitrary Python code via the code parameter.

[CLOSE] OSVDB ID : 76289 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : The FakeFile implementation in the sandbox environment in the Google App Engine Python SDK before 1.5.4 does not properly control the opening of files, which allows local users to bypass intended access restrictions and create arbitrary files via ALLOWED_MODES and ALLOWED_DIRS changes within the code parameter to _ah/admin/interactive/execute, a different vulnerability than CVE-2011-1364.

[CLOSE] OSVDB ID : 76291 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : The sandbox environment in the Google App Engine Python SDK before 1.5.4 does not properly prevent os.popen calls, which allows local users to bypass intended access restrictions and execute arbitrary commands via a dev_appserver.RestrictedPathFunction._original_os reference within the code parameter to _ah/admin/interactive/execute, a different vulnerability than CVE-2011-1364.

[CLOSE] OSVDB ID : 76290 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : The sandbox environment in the Google App Engine Python SDK before 1.5.4 does not properly prevent use of the os module, which allows local users to bypass intended access restrictions and execute arbitrary commands via a file_blob_storage.os reference within the code parameter to _ah/admin/interactive/execute, a different vulnerability than CVE-2011-1364.

[CLOSE] OSVDB ID : 87711 - Disclosed: 2011-10-11

Description:

ExpressionEngine contains a flaw that may allow an unprivileged remote attacker to change a Super Admin's profile or member group. No further details have been provided.

[CLOSE] OSVDB ID : 75560 - Disclosed: 2011-10-11

Description:

Libxml2 contains a double-free flaw in the 'xmlXPathCompOpEval' function [xpath.c] that is triggered when processing invalid XPath expressions. With a specially crafted XSL stylesheet, an attacker can crash an application linked against the library or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 76208 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "Option Element Remote Code Execution Vulnerability."

[CLOSE] OSVDB ID : 76282 - Disclosed: 2011-10-11

Description:

(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.