[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250038

 
 

909

 
 

195843

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 248845 Download | Alert*

Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE before 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) help/index.jsp or (2) help/advanced/content.jsp.

Heap-based buffer overflow in the sql_prepare_where function (contrib/mod_sql.c) in ProFTPD before 1.3.3d, when mod_sql is enabled, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted username containing substitution tags, which are not properly handled during construction of an SQL query.

An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts.

poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack.

PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which are then misparsed by libxml2. This results in memory leak into the resulting output.

statusnet through 2010 allows attackers to spoof syslog messages via newline injection attacks.

Cross-site scripting (XSS) vulnerability in statusnet through 2010 in error message contents.

Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string escapes..

udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules.

PmWiki before 2.2.21 has XSS.


Pages:      Start    11610    11611    11612    11613    11614    11615    11616    11617    11618    11619    11620    11621    11622    11623    ..   24884

© SecPod Technologies