[CLOSE] OSVDB ID : 66441 - Disclosed: 2008-04-12

Description:

By default, Siemens SIMATIC installs with a default password for accessing the SQL database. The 'WinCCConnect' and 'WinCCAdmin' accounts have a password of '2WSXcder' which is publicly known and documented. This allows attackers to trivially access the program or system.

[CLOSE] OSVDB ID : 60797 - Disclosed: 2009-11-05

Description:

Expat contains a flaw in the handling of XML documents that may allow a remote denial of service. The issue is due to the 'big2_toUtf8()' function in lib/xmltok.c not validating user-supplied input. With a specially crafted XML file containing malformed UTF-8 sequences, a context-dependent attacker can cause the service to crash.

[CLOSE] OSVDB ID : 59737 - Disclosed: 2009-01-17

Description:

Expat contains a flaw in the handling XML files that may allow a remote denial of service. The issue is due to the 'updatePosition()' function in lib/xmltok_impl.c. With a specially crafted XML file containing malformed UTF-8 sequences, a context-dependent attacker can cause the service to crash.

[CLOSE] OSVDB ID : 55058 - Disclosed: 2009-04-24

Description:

(Description Provided by CVE) : Off-by-one error in the apr_brigade_vprintf function in Apache APR-util before 1.3.5 on big-endian platforms allows remote attackers to obtain sensitive information or cause a denial of service (application crash) via crafted input.

[CLOSE] OSVDB ID : 55057 - Disclosed: 2009-06-01

Description:

(Description Provided by CVE) : The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Apache APR-util before 1.3.7, as used in the mod_dav and mod_dav_svn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document containing a large number of nested entity references, as demonstrated by a PROPFIND request, a similar issue to CVE-2003-1564.

[CLOSE] OSVDB ID : 41019 - Disclosed: 2008-01-22

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web script or HTML by uploading a file with a name containing XSS sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.

[CLOSE] OSVDB ID : 14982 - Disclosed: 2004-03-26

Description:

XMB Forum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate user supplied arguments upon submission to the phpinfo.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 28068 - Disclosed: 2006-08-21

Description:

Guestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'page' form field parameter upon submission to the gbook.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 93334 - Disclosed: 2013-05-14

Description:

Adobe Flash Player and AIR contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93328 - Disclosed: 2013-05-14

Description:

Adobe Flash Player and AIR contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93306 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains a flaw that is triggered during the handling of a corrupt interface pointer in a specially crafted PUB file. This may allow a context-dependent attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93303 - Disclosed: 2013-05-14

Description:

Microsoft Lync contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93253 - Disclosed: 2013-05-10

Description:

Apache Tomcat contains a flaw that may allow a remote denial of service. The issue is triggered when during the handling of a request sent via chunked transfer encoding the program fails to limit extensions that are included in the request. This may allow a remote attacker to 'perform a limited DOS' by supplying a saturation of data in a request.

[CLOSE] OSVDB ID : 93139 - Disclosed: 2013-05-09

Description:

EMC AlphaStor contains an overflow condition in the Library Control Program (LCP). The issue is triggered as user-supplied input is not properly validated when processing unspecified commands. This may allow a remote attacker to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code.

[CLOSE] OSVDB ID : 92755 - Disclosed: 2013-04-26

Description:

Joomla! contains a flaw related to the plgSystemRemember::onAfterInitialise() method defined in the /plugins/system/remember/remember.php script. The issue is triggered when input passed via a cookie parameter is not properly sanitized before being used in an unserialize() call. This allows remote attackers to unserialize arbitrary PHP objects, making the application vulnerable to some malicious attacks.

[CLOSE] OSVDB ID : 91632 - Disclosed: 2013-03-24

Description:

MongoDB contains a flaw in the nativeHelper.apply function of engine_spidermonkey.cpp. This may allow a remote attacker to potentially execute arbitrary code via the run() method.

[CLOSE] OSVDB ID : 78600 - Disclosed: 2011-09-26

Description:

(Description Provided by CVE) : The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184.

[CLOSE] OSVDB ID : 78598 - Disclosed: 2011-09-26

Description:

(Description Provided by CVE) : The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184.

[CLOSE] OSVDB ID : 77770 - Disclosed: 2011-12-14

Description:

Nagios XI contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'hostgroup' and 'style' parameters upon submission to the includes/components/xicore/status.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77769 - Disclosed: 2011-12-07

Description:

Nagios XI contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the program creating temporary files insecurely. It is possible for a local attacker to use a symlink attack to cause the program to unexpectedly write to, or overwrite an attacker specified file.

[CLOSE] OSVDB ID : 77768 - Disclosed: 2011-12-07

Description:

Nagios XI contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the get_service_status_detail_link() function in includes/utils-links.inc.php does not validate the 'service' parameter upon submission to the reports/histogram.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77767 - Disclosed: 2011-12-07

Description:

Nagios XI contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the get_service_status_detail_link() function in includes/utils-links.inc.php does not validate the 'host' and 'service' parameters upon submission to the reports/statehistory.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77765 - Disclosed: 2011-12-07

Description:

Nagios XI contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'height', 'host', 'service' and 'width' parameters upon submission to the reports/alertheatmap.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77764 - Disclosed: 2011-12-07

Description:

Nagios XI contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed from the 'xiwindow' parameter to account/ upon submission to the get_window_frame_url() function in the html/includes/pageparts.inc.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77737 - Disclosed: 2011-12-14

Description:

JBoss Enterprise Portal Platform contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate the 'initialURI' parameter upon submission to the login page. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.

[CLOSE] OSVDB ID : 77720 - Disclosed: 2011-12-13

Description:

WebKit contains a use-after-free error in the 'InlineBidiResolver::appendRun' function in WebCore/rendering/InlineIterator.h when handling mixed direction text runs. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 77703 - Disclosed: 2011-12-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77684 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

[CLOSE] OSVDB ID : 77678 - Disclosed: 2011-09-21

Description:

Cacti contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the logging out of users. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 77676 - Disclosed: 2011-09-25

Description:

Cacti contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'referer' parameter upon submission to the graph_settings.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77673 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : The XSS Filter in Microsoft Internet Explorer 8 allows remote attackers to read content from a different (1) domain or (2) zone via a "trial and error" attack, aka "XSS Filter Information Disclosure Vulnerability."

[CLOSE] OSVDB ID : 77653 - Disclosed: 2011-12-02

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in incident_attachments.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in unspecified directory, a different program than CVE-2011-3833.

[CLOSE] OSVDB ID : 77652 - Disclosed: 2011-12-02

Description:

Jobprofile Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 77640 - Disclosed: 2011-12-04

Description:

zFTPServer contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via RMD commands. This directory traversal attack would allow the attacker to delete arbitrary ifles.

[CLOSE] OSVDB ID : 77631 - Disclosed: 2011-11-27

Description:

Skysa App Bar Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'submit' parameter upon submission to the skysa.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77624 - Disclosed: 2011-11-21

Description:

Balitbang CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the alumni.php script not properly sanitizing user-supplied input to the 'hal' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 77616 - Disclosed: 2011-12-06

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Web Workers implementation in Opera before 11.60 allows remote attackers to cause a denial of service (application crash) via unknown vectors.

[CLOSE] OSVDB ID : 58976 - Disclosed: 2009-07-21

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 637 - Disclosed: 2000-07-07

Description:

Apache web servers contain a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the UserDir module is enabled and a remote attacker requests access to a user's home directory. By monitoring the web server response, an attacker is able to enumerate valid user names, resulting in a loss of confidentiality.