Search:Author
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
E-mail:
research_(at)_procheckup.com
PR07-11: Cross-site Request Forgery (CSRF) on Sun Java System Identity Manager
PR08-09: Unauthenticated File Retrieval on Sun Java System Identity Manager "ext" parameter
PR07-40: Authentication Bypass, Passwords Leakage and SNMP Injection on 3Com AP 8760
PR07-31: Unauthenticated SQL Injection, XSS on Login Page and Username Enumeration on DPSnet Case Progress
PR08-20: Bypassing ASP .NET "ValidateRequest" for Script Injection Attacks
PR08-15: Several Webroot Disclosures on Moodle
PR08-13: Persistent Cross-site Scripting (XSS) on Moodle via blog entry title
PR08-16: CSRF (Cross-site Request Forgery) on Moodle edit profile page
PR07-44: XSS on RSA Authentication Agent login page
PR07-43: Cross-domain redirect on RSA Authentication Agent
PR08-02: Plone CMS Security Research - the Art of Plowning
PR07-41: XSS on Juniper Networks Secure Access 2000
PR07-42: Webroot disclosure on Juniper Networks Secure Access 2000
ZyXEL Gateways Vulnerability Research: http://www.procheckup.com/Hacking_ZyXEL_Gateways.pdf
PR06-12: XSS on BEA Plumtree Foundation and AquaLogic Interaction portals
PR08-01: Several XSS, a cross-domain redirect and a webroot disclosure on Spyce - Python Server Pages (PSP)
PR07-06, PR07-07, PR07-08, PR07-09, PR07-10, PR07-12: Several XSS, Cross-domain Redirection and Frame Injection on Sun Java System Identity Manager
PR07-39: Multiple vulnerabilities on Absolute News Manager.NET 5.1 including file retrieval and SQL injection
PR06-09: BEA Plumtree portal full version disclosure vulnerability
PR06-08: BEA Plumtree portal internal hostname disclosure vulnerability
PR06-11: BEA Plumtree portal search facility leaks usernames to unauthenticated users
PR07-15: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.logon.php3' server-side script
PR07-14: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.activation.php3' server-side script
PR07-26: Persistent XSS on Aruba 800 Mobility Controller's login page
PR07-02: XSS on Liferay Portal Enterprise 4.1.1 login page ('login' parameter)
PR07-13: Cross-site Scripting / HTML injection on F5 FirePass 4100 SSL VPN 'download_plugin.php3' server-side script
Two XSS on Blue Coat ProxySG Management Console
Owning Big Brother: How to Crack into Axis IP cameras
PR07-23: Non-persistent Cross-site Scripting (XSS) on Absolute Poll Manager XE admin page
PR07-18: Cross-site Scripting (XSS) / HTML injection on Webbler CMS admin login page (1)
PR07-19: Cross-site Scripting (XSS) / HTML injection on Webbler CMS admin login page (2)
PR07-21: Webbler CMS forms are susceptible to spamming and phishing abuses
PR07-20: Webroot disclosure on Webbler CMS
Microsoft .NET request filtering bypass vulnerability (BID 20753)
PR06-14: IP Phones based on Centrality Communications/Aredfox PA168 chipset weak session management vulnerability
Immediacy .NET CMS possibly vulnerable to Cross Site Scripting through a malformed cookie
Cross Site Scripting (XSS) Vulnerability in IBM WebSphere Application Server
PR06-03b: F5 Firepass 1000 SSL VPN version 5.5 vulnerable to Cross-Site Scripting
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
