[CLOSE] OSVDB ID : 85877 - Disclosed: 2012-09-30

Description:

Logz CMS contains a flaw that is triggered when CAPTCHA replies are stored in the HTML source. With a specially crafted script or program, a remote attacker can automate the solving of CAPTCHA tests on this CMS.

[CLOSE] OSVDB ID : 85876 - Disclosed: 2012-09-30

Description:

GuppY Contact Plugin contains a flaw that is triggered when CAPTCHA replies are stored in the HTML source in a trivially encoded format. With a specially crafted script or program, a remote attacker can automate the solving of CAPTCHA tests on this plugin.

[CLOSE] OSVDB ID : 85900 - Disclosed: 2012-09-30

Description:

MijoFTP Component for Joomla! contains an unspecified flaw that may allow a remote attacker to gain access to a system via a back door. No further details have been provided.

[CLOSE] OSVDB ID : 85910 - Disclosed: 2012-09-29

Description:

TheAgency Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85911 - Disclosed: 2012-09-29

Description:

Sparky Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85912 - Disclosed: 2012-09-29

Description:

PictureFactory Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85913 - Disclosed: 2012-09-29

Description:

Paramount Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85914 - Disclosed: 2012-09-29

Description:

Essence Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85915 - Disclosed: 2012-09-29

Description:

Explicit Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85916 - Disclosed: 2012-09-29

Description:

Eunice Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85917 - Disclosed: 2012-09-29

Description:

Blaze Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85918 - Disclosed: 2012-09-29

Description:

Brisk Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85919 - Disclosed: 2012-09-29

Description:

Shapeless Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85921 - Disclosed: 2012-09-29

Description:

Daisho Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85920 - Disclosed: 2012-09-29

Description:

Konzept Theme for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85875 - Disclosed: 2012-09-29

Description:

CSS Plus Plugin for WordPress contains multiple unspecified flaws. No further details have been provided.

[CLOSE] OSVDB ID : 85874 - Disclosed: 2012-09-29

Description:

Frei-Chat contains a flaw that allows a remote user to execute arbitrary PHP code. This flaw exists because the client/plugins/upload/upload.php script does not properly verify or sanitize user-uploaded files. By uploading a .php file, the remote system will place the file in a user-accessible path. Making a direct request to the uploaded file will allow the user to execute the script.

[CLOSE] OSVDB ID : 85869 - Disclosed: 2012-09-28

Description:

IBM AIX contains a flaw that may allow a local denial of service. The issue is triggered by the 'fuser' command not properly restricting the -k option. With a specially crafted -k argument in a command line, a local attacker can cause a loss of availability of arbitrary processes.

[CLOSE] OSVDB ID : 85866 - Disclosed: 2012-09-28

Description:

IBM Tivoli Federated Identity Manager contains an unspecified flaw related to the validation of XML signatures. This may allow a remote attacker to use an untrusted or invalid XML signature and bypass the signature validation mechanism.

[CLOSE] OSVDB ID : 85822 - Disclosed: 2012-09-28

Description:

DeltaV is prone to an overflow condition. The program fails to properly check for bounds when parsing a malformed string, which will result in a buffer overflow. With a specially crafted large string, a remote attacker can potentially cause a denial of service.

[CLOSE] OSVDB ID : 85819 - Disclosed: 2012-09-28

Description:

jigbrowser+ Application for Android contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the applications fail to properly implement the WebView class. This may allow a context-dependent attacker to use a specially crafted application to gain access to potentially sensitive information.

[CLOSE] OSVDB ID : 85922 - Disclosed: 2012-09-28

Description:

Dart Comunications DartWebserver.Dll contains a flaw that may allow a remote denial of service. This issue is triggered when all usable stack space is exhausted during the parsing of an overly long web request. This will result in a loss of availability for the program.

[CLOSE] OSVDB ID : 85923 - Disclosed: 2012-09-28

Description:

VB Pro Garage Timeslips Plugin for vBulletin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the garage.php script not properly sanitizing user-supplied input to the 'model_year' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 85954 - Disclosed: 2012-09-28

Description:

IBM Lotus Notes Traveler contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'userId' and 'address' parameters upon submission to the traveler/ILNT.mobileconfig script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85868 - Disclosed: 2012-09-28

Description:

IBM WebSphere Commerce contains an unspecified flaw that may lead to an unauthorized disclosure of profile data. No further details have been provided.

[CLOSE] OSVDB ID : 85867 - Disclosed: 2012-09-28

Description:

IBM Rational Business Developer contains an unspecified flaw that may lead to an unauthorized disclosure of potentially sensitive information to a remote attacker. No further details have been provided.

[CLOSE] OSVDB ID : 85865 - Disclosed: 2012-09-28

Description:

IBM Rational Team Concert contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into manipulating work items in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 85953 - Disclosed: 2012-09-28

Description:

IBM Lotus Notes Traveler contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate the 'redirectURL' parameter upon submission to the servlet/traveler script. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.

[CLOSE] OSVDB ID : 86192 - Disclosed: 2012-09-28

Description:

Midnight Commander contains a flaw that is triggered when the F3 or enter key are pressed on certain files and the MC_EXT_SELECTED or MC_EXT_ONLYTAGGED fails to properly sanitize certain variables. With a specially crafted file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 88358 - Disclosed: 2012-09-28

Description:

FreeFloat FTP Server contains an overflow condition that is triggered as user-supplied input is not properly sanitized. With a specially crafted PUT command, a remote attacker can cause a buffer overflow to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 91111 - Disclosed: 2012-09-28

Description:

HTCondor contains a flaw in src/condor_contrib/aviary/src/SchedulerObject.cpp that may allow a remote denial of service. The issue is triggered when removing jobs. With a specially crafted request to the aviary_query_server, a remote attacker can cause the condor_schedd process to crash, which will require a restart.

[CLOSE] OSVDB ID : 91110 - Disclosed: 2012-09-28

Description:

HTCondor contains a flaw in src/condor_contrib/aviary/src/AviaryScheddPlugin.cpp that may allow a remote denial of service. The issue is triggered when removing jobs. With a specially crafted request to the aviary_query_server, a remote attacker can cause the condor_schedd process to crash, which will require a restart.

[CLOSE] OSVDB ID : 85817 - Disclosed: 2012-09-27

Description:

Piwigo contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'username_or_email' parameter upon submission to the password.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85873 - Disclosed: 2012-09-27

Description:

The Smartphone Pentest Framework (SPF) contains a flaw that may allow a remote attacker to gain escalated privileges. The issue is due to the remoteAttack.pl script, part of the SPF GUI, not properly sanitizing user input supplied to the 'ipAddressTB' parameter. With a crafted request, an attacker could execute arbitrary commands on the system. Note: The GUI is presumably installed on the pentester's machine, not the vulnerable mobile device, where a level of security in the application is expected.

[CLOSE] OSVDB ID : 85816 - Disclosed: 2012-09-27

Description:

Cisco IOS and Unified Communications Manager (CUCM) contains a flaw that may allow a remote denial of service. The issue is triggered during the processing of a malformed Session Initiation Protocol (SIP) message that contains a valid Session Description Protocol (SDP) message. With a specially crafted SIP packet in this message, a remote attacker can cause a loss of availability for the program.

[CLOSE] OSVDB ID : 85818 - Disclosed: 2012-09-27

Description:

Multisite Plugin Manager Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'mass_activate' and 'mass_deactivate' parameters upon submission to the wp-admin/network/plugins.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 86483 - Disclosed: 2012-09-27

Description:

A memory corruption flaw exists in FFmpeg. The ff_compute_band_indexes() function of libavcodec/mpegaudiodec.c fails to sanitize user-supplied input resulting in memory corruption. This may allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 85774 - Disclosed: 2012-09-26

Description:

Foxit Reader is prone to a flaw in the way it loads dynamic-link libraries (DLL) such as fxdecod1.dll. The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows a local attacker to inject custom code that will be run with the privilege of the program or user executing the program. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source. This can be done by tricking a user into opening a PDF file from the local file system or a USB drive in some cases. This attack scenario is certainly possible, but rare.

[CLOSE] OSVDB ID : 85773 - Disclosed: 2012-09-26

Description:

ABC Test Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'id' parameter upon submission to the wp-admin/admin.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85820 - Disclosed: 2012-09-26

Description:

Smartfren Connex EC1261 contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered by the application setting insecure file permissions on the installation directory. This may allow a local attacker to overwrite arbitrary files or libraries, which will allow them to escalate their privileges.