[CLOSE] OSVDB ID : 82587 - Disclosed: 2012-05-31

Description:

strongSwan contains a flaw that is triggered by an error in the GMP Plugin when handling empty RSA signatures. This may allow a remote attacker to authenticate arbitrary users.

[CLOSE] OSVDB ID : 83041 - Disclosed: 2012-05-31

Description:

ScrumWorks Pro Server contains a flaw that is triggered when a remote attacker creates a specially crafted desktop client to access the server. This may allow the attacker to gain access to escalated privileges. No further details have been provided.

[CLOSE] OSVDB ID : 82578 - Disclosed: 2012-05-31

Description:

PostgreSQL contains a flaw that is triggered by an error in the DES implementation in the px_crypt_des() function within the pg_crypto module when handling passwords that contain the most significant bit set(0x80). It does not properly encrypt that character or subsequent characters in the password, which may allow a user to more easily perform a brute force attack.

[CLOSE] OSVDB ID : 82511 - Disclosed: 2012-05-31

Description:

WebKit contains a flaw in the XSS filter [html/parser/XSSAuditor.cpp] that is triggered when reading JavaScript as commented out when using both inline and multi-line comment tags. This may allow a context-dependent attacker to bypass the intended reflective XSS protection and conduct a cross-site scripting attack.

[CLOSE] OSVDB ID : 82658 - Disclosed: 2012-05-31

Description:

FCChat Widget Plugin for WordPress contains a flaw that allows a remote user to execute arbitrary PHP code. This flaw exists because the wp-content/plugins/fcchat/html/Upload.php script does not properly verify or sanitize user-uploaded files. By uploading a .php file, the remote system will place the file in a user-accessible path. Making a direct request to the uploaded file will allow the user to execute the script.

[CLOSE] OSVDB ID : 82703 - Disclosed: 2012-05-31

Description:

Plugin: Newsletter Plugin for WordPress contains a flaw that allows an attacker to traverse outside of a restricted path. The issue is due to the preview.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'data' parameter. This directory traversal attack would allow the attacker to gain access to arbitrary files.

[CLOSE] OSVDB ID : 82913 - Disclosed: 2012-05-31

Description:

Astaro Security Gateway contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input when displaying available backups. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82576 - Disclosed: 2012-05-31

Description:

IrfanView Formats PlugIn is prone to an overflow condition. The ECW Plugin (NCSEcw.dll) library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted image decompression file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 82428 - Disclosed: 2012-05-31

Description:

Power Media contains a flaw that may allow a denial of service. The issue is triggered when handling a malformed ASZ file, and will result in loss of availability for the program.

[CLOSE] OSVDB ID : 82611 - Disclosed: 2012-05-31

Description:

cPanel contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to create arbitrary files via an error when handling log messages in the split logs binary.

[CLOSE] OSVDB ID : 82646 - Disclosed: 2012-05-31

Description:

cPanel contains a flaw that is triggered by cPDAVd not properly sanitizing input when parsing filenames, which may allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 82711 - Disclosed: 2012-05-31

Description:

IBM Eclipse Help System contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82754 - Disclosed: 2012-05-31

Description:

IBM Eclipse Help System contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.

[CLOSE] OSVDB ID : 82354 - Disclosed: 2012-05-31

Description:

NewsAdd contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /admin/removerNoticia.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82355 - Disclosed: 2012-05-31

Description:

NewsAdd contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /admin/listarUsuarios.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82357 - Disclosed: 2012-05-31

Description:

NewsAdd contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /admin/removerUsuario.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82379 - Disclosed: 2012-05-31

Description:

Ganesha Digital Library contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'langid' parameter upon submission to the office.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82412 - Disclosed: 2012-05-31

Description:

Simple Web Content Management System contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /admin/item_status.php script not properly sanitizing user-supplied input to the 'id' and 'status' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82415 - Disclosed: 2012-05-31

Description:

NewsAdd contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the lerNoticia.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82416 - Disclosed: 2012-05-31

Description:

Supernews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the noticias.php script not properly sanitizing user-supplied input to the 'cat' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82830 - Disclosed: 2012-05-31

Description:

Hungred Post Thumbnail Plugin for WordPress contains a flaw that allows a remote user to execute arbitrary PHP code. This flaw exists because the hpt_file_upload.php script does not properly verify or sanitize user-uploaded files. By uploading a .php file, the remote system will place the file in a user-accessible path. Making a direct request to the uploaded file will allow the user to execute the script.

[CLOSE] OSVDB ID : 84647 - Disclosed: 2012-05-31

Description:

ownCloud contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the Calendar's 'Displayname' field upon submission to the apps/calendar/templates/part.choosecalendar.rowfields.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85515 - Disclosed: 2012-05-31

Description:

ownCloud contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the Calendar's 'displayname' field upon submission to the apps/calendar/templates/part.choosecalendar.rowfields.shared.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85780 - Disclosed: 2012-05-31

Description:

OpenStack Keystone contains a flaw that is triggered when the OS-KSADM service and user tenants API fail to properly verify the X-Auth-Token token. This may allow a remote attacker to bypass certain restrictions and gain access to restricted actions.

[CLOSE] OSVDB ID : 91969 - Disclosed: 2012-05-31

Description:

GNOME Seahorse contains a flaw that is due to the GPG agent caching passphrases without any possible means to release it. This may allow a local attacker to gain access to passphrase information by viewing the cache.

[CLOSE] OSVDB ID : 82839 - Disclosed: 2012-05-31

Description:

HP Web Jetadmin contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82378 - Disclosed: 2012-05-30

Description:

Ganesha Digital Library contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'id' parameter upon submission to the publisher.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82376 - Disclosed: 2012-05-30

Description:

Ganesha Digital Library contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the go.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82375 - Disclosed: 2012-05-30

Description:

Ganesha Digital Library contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the publisher.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82374 - Disclosed: 2012-05-30

Description:

Ganesha Digital Library contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the office.php script not properly sanitizing user-supplied input to the 'FULL_NAME', 'EMAIL', 'GID', and 'CONFIRM' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82577 - Disclosed: 2012-05-30

Description:

FreeBSD contains a flaw that is triggered by an error in the DES implementation of the crypt() function in libcrypt, when handling passwords that contain a character with the most significant bit set(0x80). libcrypt does not properly encrypt that character or subsequent characters in the password, which may allow an attacker to more easily perform a brute force attack.

[CLOSE] OSVDB ID : 82434 - Disclosed: 2012-05-30

Description:

Comment Moderation Module for Drupal contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for publishing comments. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into publishing an arbitrary comment in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 82352 - Disclosed: 2012-05-30

Description:

NewsAdd contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search form not properly sanitizing user-supplied input before using it in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82353 - Disclosed: 2012-05-30

Description:

NewsAdd contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the comentar.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82372 - Disclosed: 2012-05-30

Description:

Ganesha Digital Library contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 's' parameter upon submission to the search.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82377 - Disclosed: 2012-05-30

Description:

Ganesha Digital Library contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input to the 'Account' field. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing to bypass authentication.

[CLOSE] OSVDB ID : 82401 - Disclosed: 2012-05-30

Description:

Wireless Manager Sony VAIO is prone to an overflow condition. The WifiMan.dll library fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted string parameter of a certain length in an HTML page, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 82414 - Disclosed: 2012-05-30

Description:

Simple Web Content Management System contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /admin/item_modify.php not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82509 - Disclosed: 2012-05-30

Description:

OpenBSD contains a flaw that is triggered by an error in the DES Implementation in the crypt() function (libcrypt) when handling passwords that contain a character with the most significant bit set(0x80). This may cause libcrypt to fail to properly encrypt that character or subsequent characters in the password, which may allow an attacker to more easily perform a brute force attack.

[CLOSE] OSVDB ID : 82630 - Disclosed: 2012-05-30

Description:

PostgreSQL contains a flaw that may allow a local denial of service. The issue is due to the improper handling of SECURITY DEFINERS and SET attributes on procedural call handlers. This may result in loss of availability for the program.