Creditee: Roberto Suggi Liverani

Known Contact Information:

  • (as of 2010-10-13)

Known Affiliations:

Disclosed Vulnerabilities (29):

Disc. DateOSVDB IDCVEIDTitle
2012-12-05 88193 Maxthon Bookmark Toolbar / Sidebar Cross Context Scripting Remote Code Execution
2012-12-05 88191 Maxthon about: history Cross Context Scripting Remote Code Execution
2012-12-05 88194 Maxthon Privileged API MiTM Spoofing Weakness
2012-12-05 88192 Maxthon Multiple Method Same of Origin Policy Bypass
2012-12-05 88189 Avant Browser browser:home Same of Origin Policy Bypass
2012-12-05 88188 Avant Browser Feed Reader XSS
2012-12-05 88187 Avant Browser browser:home Cross Context Scripting
2012-12-05 88190 Maxthon RSS Feed Element Cross Context Scripting Remote Code Execution
2012-04-17 81225 2012-0550 Oracle GlassFish Enterprise Server WAR Archive Uploading CSRF
2012-04-17 81227 2012-0551 Oracle GlassFish Enterprise Server /management/domain/create-password-alias id Parameter XSS
2012-04-17 81226 2012-0551 Oracle GlassFish Enterprise Server /common/applications/lifecycleEdit.jsf appName Parameter XSS
2012-04-17 81228 2012-0551 Oracle GlassFish Enterprise Server /common/security/realms/realms.jsf configName Parameter XSS
2012-04-17 81229 2012-0551 Oracle GlassFish Enterprise Server /web/grizzly/networkListeners.jsf configName Parameter XSS
2012-04-17 81230 2012-0551 Oracle GlassFish Enterprise Server /common/security/auditModules/auditModules.jsf configName Parameter XSS
2012-04-17 81231 2012-0551 Oracle GlassFish Enterprise Server /common/security/jacc/jaccProviders.jsf configName Parameter XSS
2012-04-17 81232 2012-0551 Oracle GlassFish Enterprise Server /common/security/msgSecurity/msgSecurity.jsf configName Parameter XSS
2012-04-17 81233 2012-0551 Oracle GlassFish Enterprise Server /jms/jmsHosts.jsf configName Parameter XSS
2012-04-17 81234 2012-0551 Oracle GlassFish Enterprise Server /web/grizzly/networkListeners.jsf configName Parameter XSS
2012-04-17 81235 2012-0551 Oracle GlassFish Enterprise Server /web/grizzly/protocols.jsf configName Parameter XSS
2012-04-17 81236 2012-0551 Oracle GlassFish Enterprise Server /web/grizzly/transports.jsf configName Parameter XSS
2012-04-17 81237 2012-0551 Oracle GlassFish Enterprise Server /xhp key Parameter XSS
2012-04-17 81250 2012-0551 Oracle GlassFish Enterprise Server common/appServer/pswdAliasNew.jsf aliasNameNew Parameter XSS
2011-08-09 74430 2011-2133 Adobe RoboHelp index.html location.hash DOM Property XSS
2011-03-01 72465 2010-1585 Mozilla Multiple Products ParanoidFragmentSink nsIScriptableUnescapeHTML.parseFragment Method javascript: URI Remote Code Execution
2011-01-18 70571 2010-4437 Oracle Fusion Middleware WebLogic Server Servlet Container AFSSESSIONID Cookie Session Fixation
2010-10-13 69034 2010-3573 Oracle Java SE / Java for Business java.net.URLConnection Same-of-origin Policy Bypass
2010-10-13 70051 2010-2406 Oracle Siebel Core - Highly Interactive Client start.swe Id Parameter XSS
2010-10-13 70024 2010-3514 Oracle iPlanet Web Server Web Container Remote HTTP Header Insertion
2010-02-11 62292 2009-3960 Adobe Multiple Products BlazeDS XML Request Handling Information Disclosure

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2013 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use