[CLOSE] OSVDB ID : 87508 - Disclosed: 2011-10-25

Description:

Bugzilla contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an error occurs in the User.get method in /WebService/User.pm. With a specially crafted XMLRPC or JSONRPC request, a remote attacker can gain access to information related to saved searches.

[CLOSE] OSVDB ID : 76539 - Disclosed: 2011-10-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77377 - Disclosed: 2011-10-24

Description:

(Description Provided by CVE) : Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier, allows remote attackers to cause a denial of service via unspecified vectors.

[CLOSE] OSVDB ID : 77379 - Disclosed: 2011-10-24

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier allows remote attackers to read arbitrary files via unspecified vectors.

[CLOSE] OSVDB ID : 76623 - Disclosed: 2011-10-24

Description:

(Description Provided by CVE) : Puppet 2.6.x before 2.6.12 and 2.7.x before 2.7.6, and Puppet Enterprise (PE) Users 1.0, 1.1, and 1.2 before 1.2.4, when signing an agent certificate, adds the Puppet master's certdnsnames values to the X.509 Subject Alternative Name field of the certificate, which allows remote attackers to spoof a Puppet master via a man-in-the-middle (MITM) attack against an agent that uses an alternate DNS name for the master, aka "AltNames Vulnerability."

[CLOSE] OSVDB ID : 83420 - Disclosed: 2011-10-24

Description:

phpLDAPadmin contains a flaw that may allow a remote attacker to cause a denial of service. The issue is due to the common.php script not properly sanitizing user-supplied input to the accept-language header. This may allow an attacker to include a file from the targeted host that goes into a recursion loop causing a loss of availability for the program. Such attacks are limited due to the script only calling files already on the target host.

[CLOSE] OSVDB ID : 76482 - Disclosed: 2011-10-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 76631 - Disclosed: 2011-10-24

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the GetDriverSettings function in nipplib.dll in the iPrint client in Novell Open Enterprise Server 2 (aka OES2) SP3 allows remote attackers to execute arbitrary code via a long (1) hostname or (2) port field.

[CLOSE] OSVDB ID : 76484 - Disclosed: 2011-10-24

Description:

Jara contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'view.php' not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 76649 - Disclosed: 2011-10-24

Description:

Alcatel-Lucent OmniTouch 8400 Instant Communication Suite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'list' parameter upon submission to the websoftphone/jsp/CBCallBackCont.jsp script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76645 - Disclosed: 2011-10-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 76644 - Disclosed: 2011-10-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 76578 - Disclosed: 2011-10-24

Description:

PacketFence contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'p' parameter upon submission to the html/admin/login.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76575 - Disclosed: 2011-10-24

Description:

IBM WebSphere ILOG Rule Team Server contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input upon submission to the content/error.jsp script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76579 - Disclosed: 2011-10-24

Description:

PacketFence contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'destination_url' parameter upon submission to the html/admin/guest-management.cgi script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76580 - Disclosed: 2011-10-24

Description:

PacketFence contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'destination_url' parameter upon submission to the html/captive-portal/email_activation.cgi script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76581 - Disclosed: 2011-10-24

Description:

PacketFence contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'destination_url' parameter upon submission to the html/captive-portal/register.cgi script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76582 - Disclosed: 2011-10-24

Description:

PacketFence contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'destination_url' parameter upon submission to the html/captive-portal/redir.cgi script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76583 - Disclosed: 2011-10-24

Description:

PacketFence contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'destination_url' parameter upon submission to the html/captive-portal/mobile-confirmation.cgi script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76584 - Disclosed: 2011-10-24

Description:

PacketFence contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'destination_url' parameter upon submission to the html/captive-portal/guest-selfregistration.cgi script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76650 - Disclosed: 2011-10-24

Description:

Alcatel-Lucent OmniTouch 8400 Instant Communication Suite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'udatab' parameter upon submission to the /websoftphone/jsp/PhoneBookCont.jsp script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76651 - Disclosed: 2011-10-24

Description:

Alcatel-Lucent OmniTouch 8400 Instant Communication Suite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'openwin' parameter upon submission to the websoftphone/jsp/CustoData.jsp script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76652 - Disclosed: 2011-10-24

Description:

Alcatel-Lucent OmniTouch 8400 Instant Communication Suite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'sessionid' parameter upon submission to the websoftphone/jsp/RTCNavigator.jsp script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76653 - Disclosed: 2011-10-24

Description:

Alcatel-Lucent OmniTouch 8400 Instant Communication Suite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'next' and 'main' parameters upon submission to the /websoftphone/servlet/DispLogon script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76654 - Disclosed: 2011-10-24

Description:

Alcatel-Lucent OmniTouch 8400 Instant Communication Suite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'action' parameter upon submission to the ClientMgmt/ClientMgmt script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76655 - Disclosed: 2011-10-24

Description:

Alcatel-Lucent OmniTouch 8400 Instant Communication Suite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate unspecified input relating to phonebook input fields before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76656 - Disclosed: 2011-10-24

Description:

Alcatel-Lucent OmniTouch 8400 Instant Communication Suite contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for multiple functionalities, such as dialing, locking, call forwarding or the setting of the DND flag. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 76824 - Disclosed: 2011-10-24

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in KENT-WEB WEB FORUM before 5.1 allow remote attackers to inject arbitrary web script or HTML via (1) an e-mail address field or (2) a cookie, a related issue to CVE-2011-3383, CVE-2011-3983, and CVE-2011-3984.

[CLOSE] OSVDB ID : 77042 - Disclosed: 2011-10-24

Description:

(Description Provided by CVE) : Static code injection vulnerability in install_.php in e107 CMS 0.7.24 and probably earlier versions, when the installation script is not removed, allows remote attackers to inject arbitrary PHP code into e107_config.php via a crafted MySQL server name.

[CLOSE] OSVDB ID : 82629 - Disclosed: 2011-10-24

Description:

Theme My Login Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the wp-content/plugins/theme-my-login/includes/class-theme-my-login.php script does not validate the 'instance' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83421 - Disclosed: 2011-10-24

Description:

BlueZone Desktop contains a flaw that may allow for a denial of service. The issue is triggered when a user opens a malformed ZFT file, resulting in a loss of availability for the program. This can be exploited remotely by tricking a user into opening the crafted file (e.g., via email), or locally by placing it in a location that may seem safe (e.g., a network share).

[CLOSE] OSVDB ID : 76594 - Disclosed: 2011-10-23

Description:

phpLDAPadmin contains a flaw related to the lib/functions.php script failing to properly sanitize input passed to the cmd.php script via the 'orderby' parameter before use in a 'create_function()' function call. This may allow a remote attacker to execute arbitrary PHP code.

[CLOSE] OSVDB ID : 76593 - Disclosed: 2011-10-23

Description:

phpLDAPadmin contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the cmd.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83422 - Disclosed: 2011-10-23

Description:

InverseFlow contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions in the /support/user.php script. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into adding an administrator in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 76776 - Disclosed: 2011-10-23

Description:

VP-ASP contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to certain unspecified input not being properly sanitized before use in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 83423 - Disclosed: 2011-10-23

Description:

Google Chrome contains a flaw that may allow for a denial of service. The issue is triggered when a user opens a malformed file containing long unicode strings, resulting in a loss of availability for the program. No further details are available.

[CLOSE] OSVDB ID : 76620 - Disclosed: 2011-10-22

Description:

(Description Provided by CVE) : Cisco Nexus OS (aka NX-OS) 4.2 and 5.0 and Cisco Unified Computing System with software 1.4 and 2.0 do not properly restrict command-line options, which allows local users to gain privileges via unspecified vectors, aka Bug IDs CSCtf40008, CSCtg18363, CSCtr44645, CSCts10195, and CSCts10188.

[CLOSE] OSVDB ID : 87039 - Disclosed: 2011-10-22

Description:

Google Chrome contains a flaw that may allow a remote denial of service. The issue is triggered when a stack exhaustion occurs in the renderer, which will result in a loss of availability for the program.

[CLOSE] OSVDB ID : 76483 - Disclosed: 2011-10-21

Description:

Chennai Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 's' parameter upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82480 - Disclosed: 2011-10-21

Description:

Perl-Compatible Regular Expression contains a flaw that may allow a denial of service. The issue is triggered when handling a subpattern that was called recursively, and will result in an infinite loop. This will cause a loss of availability for the program.