vul.hackerjournals.com

Can't find what you are looking for? Maybe you will find it using the search provided below:

SnortReport nmap.php target Parameter Arbitrary Command Execution

Synopsis : The remote web server contains a PHP script that allows execution of arbitrary commands. Description : The remote web server hosts SnortReport, an add-on module for Snort. The version of this application installed on the remote host fails to sanitize input to the ‘target’ parameter of the ‘nmap.php’ script before using it in a call to the PHP ‘exec()’ function - Read More

Privacy in iTunes Ping

Music goes social in iTunes 10 with Apple’s Ping social network. We take a quick look at its privacy and security settings - Read More

Mandriva: 2010:170: wget

LinuxSecurity.com : A vulnerability has been found and corrected in wget: GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files [More...] - Read More

New Bento 3 Project Manager

FileMaker, Inc. announced the Bento 3 Project Manager, a brand new set of templates designed to make it easy for Mac users to track their personal projects and manage their time within one integrated, intuitive place - Read More

Gentoo: 201009-01: wxGTK: User-assisted execution of arbitrary code

LinuxSecurity.com : An integer overflow vulnerability in wxGTK might enable remoteattackers to cause the execution of arbitrary code. - Read More

Next >>

+ Larger Font | + Smaller Font

ClarkConnect proxy.php url Parameter XSS

Last Updated: December 23, 2009

Synopsis : The remote web server hosts a PHP script that is prone to a cross- site scripting attack. Description : The remote web server is used by ClarkConnect, an Internet server and gateway product, to process PHP scripts used for configuration. The installed version includes a script, ‘/public/proxy.php’, that fails to sanitize user- supplied input to the ‘url’ parameter before using it to generate dynamic HTML output

Read the original:
ClarkConnect proxy.php url Parameter XSS

CodeRed Center

Visit EC-Council's CodeRed Center

iClass

Attend online, live security training anywhere, anytime.

Hacker Halted 2009

Attend Hacker Halted 2009 USA Conference in Miami, Florida.

M	T	W	T	F	S	S
« Aug
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30

vul.hackerjournals.com

SnortReport nmap.php target Parameter Arbitrary Command Execution

Privacy in iTunes Ping

Mandriva: 2010:170: wget

New Bento 3 Project Manager

Gentoo: 201009-01: wxGTK: User-assisted execution of arbitrary code

Recent Posts

Categories

ClarkConnect proxy.php url Parameter XSS

CodeRed Center

Blogroll

Leave a Comment

iClass

Hacker Halted 2009

Calendar

Recent Comments

Blogroll

Tag Cloud