[CLOSE] OSVDB ID : 78980 - Disclosed: 2012-02-02

Description:

ZENphoto contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the zp-core/admin-albumsort.php script not properly sanitizing user-supplied input to the 'sortableList' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 78989 - Disclosed: 2012-02-02

Description:

Opera is reportedly prone to multiple overflow conditions. The applications fails to properly sanitize user-supplied input resulting in an integer overflow. With a specially crafted request containing large integer arguments, a remote attacker can potentially cause the application to crash resulting in a loss of availability.

[CLOSE] OSVDB ID : 78748 - Disclosed: 2012-02-02

Description:

Kitchen recipe Extension for TYPO3 contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to certain unspecified input not being properly sanitized before use in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 78749 - Disclosed: 2012-02-02

Description:

Modern FAQ Extension for TYPO3 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78786 - Disclosed: 2012-02-02

Description:

White Papers Extension for TYPO3 contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to certain unspecified input not being properly sanitized before use in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 78789 - Disclosed: 2012-02-02

Description:

Post data records to facebook Extension for TYPO3 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78793 - Disclosed: 2012-02-02

Description:

CSS styled Filelinks Extension for TYPO3 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78796 - Disclosed: 2012-02-02

Description:

Terminal PHP Shell for TYPO3 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78797 - Disclosed: 2012-02-02

Description:

Terminal PHP Shell for TYPO3 contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for unspecified functions. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 78800 - Disclosed: 2012-02-02

Description:

Additional TCA Forms Extension for TYPO3 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input upon submission to the lib/class.tx_jftcaforms_tceFunc.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78801 - Disclosed: 2012-02-02

Description:

UrlTool Extension for TYPO3 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78824 - Disclosed: 2012-02-02

Description:

(Description Provided by CVE) : Unspecified vulnerability in Joomla! 1.7.x before 1.7.5 and 2.5.x before 2.5.1 allows attackers to obtain sensitive information via unknown vectors related to "administrator."

[CLOSE] OSVDB ID : 78833 - Disclosed: 2012-02-02

Description:

ContentLion Alpha contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate user-supplied input via the URI upon submission to the login.html page. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 79330 - Disclosed: 2012-02-02

Description:

osCommerce Online Merchant contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'front' field upon submission to the Shirt module. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 79456 - Disclosed: 2012-02-02

Description:

Chyrp contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'content' parameter upon submission to the includes/ajax.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78811 - Disclosed: 2012-02-02

Description:

A memory corruption flaw exists in Mac OS X. The QuickTime functionality fails to sanitize user-supplied input when handling MP4 encoded files resulting in memory corruption. With a specially crafted MP4 file, a context-dependent attacker can cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 78832 - Disclosed: 2012-02-02

Description:

GhostScript is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a PostScript library file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 78998 - Disclosed: 2012-02-02

Description:

D-Mack Media Currency Converter Module for Joomla! contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'form' parameter upon submission to the includes/convert.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 79333 - Disclosed: 2012-02-02

Description:

NetSarang Xmanager Enterprise and NetSarang Xlpd contain a flaw that may allow a remote denial of service. The issue is due to the application not validating malformed LPD requests, which causes the service to crash resulting in a loss of availability.

[CLOSE] OSVDB ID : 79334 - Disclosed: 2012-02-02

Description:

SmartyCMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate user-supplied input to the 'title bar' upon submission to the template module. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81859 - Disclosed: 2012-02-02

Description:

Cisco IOS contains a flaw related to the ACL functionality. The issue is triggered when keywords that end in a log or time are discarded. This may allow an attacker to bypass access restrictions via network traffic.

[CLOSE] OSVDB ID : 78745 - Disclosed: 2012-02-02

Description:

Multiple HTC products contain a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to the 'WifiConfiguration::toString()' method returning WiFi credentials of stored networks in cleartext.

[CLOSE] OSVDB ID : 78810 - Disclosed: 2012-02-02

Description:

Multiple memory corruption flaw exists in Mac OS X. The OpenGL component fails to sanitize user-supplied input when handling GLSL compilations resulting in memory corruption. With a specially crafted file containing malformed GLSL shaders, a context-dependent attacker can cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 78812 - Disclosed: 2012-02-02

Description:

Mac OS X is prone to an overflow condition. The QuickTime component fails to properly sanitize user-supplied input when handling rdrf atoms in movie files resulting in a single byte buffer overflow. With a specially crafted movie file, a context-dependent attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 78728 - Disclosed: 2012-02-01

Description:

OpenEMR contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the interface/patient_file/encounter/trend_form.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'formname' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 78746 - Disclosed: 2012-02-01

Description:

Drupal contains a flaw related to the Aggregator feed module that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the restarting of the device. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 78804 - Disclosed: 2012-02-01

Description:

Mac OS X contains a flaw that may lead to an unauthorized information disclosure. The issue is due to an error within the CFNetwork component when handling URLs, which will disclose sensitive information to a remote attacker.

[CLOSE] OSVDB ID : 78805 - Disclosed: 2012-02-01

Description:

Mac OS X is prone to an overflow condition. The CoreMedia component fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted H.264 encoded movie, a content-dependent attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 78806 - Disclosed: 2012-02-01

Description:

A memory corruption flaw exists in Mac OS X. The CoreText component fails to sanitize user-supplied input when handling fonts resulting in memory corruption. With a specially crafted font, a context-dependent attacker can cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 78807 - Disclosed: 2012-02-01

Description:

Mac OS X contains a flaw related to the CoreUI component. The issue is due to an unbounded stack allocation error when handling long URLs. This may allow a remote attacker to execute arbitrary code via a specially crafted website.

[CLOSE] OSVDB ID : 78808 - Disclosed: 2012-02-01

Description:

Mac OS X contains a flaw related to the Internet Sharing functionality. The issue is triggered when performing a system update that may resets the used Wi-Fi configuration to factory defaults and removes the WEP password.

[CLOSE] OSVDB ID : 78809 - Disclosed: 2012-02-01

Description:

Mac OS X is prone to an overflow condition. The libresolv library fails to properly sanitize user-supplied input when parsing DNS resource records resulting in a heap-based buffer overflow. With a specially crafted request, a remote attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 78814 - Disclosed: 2012-02-01

Description:

Mac OS X contains a flaw that may lead to an unauthorized information disclosure. The issue is due to the Time Machine component not verifying that a remote AFP volume or Time Capsule is used for subsequent backups, which may disclose backups to a remote attacker by spoofing a remote volume.

[CLOSE] OSVDB ID : 78815 - Disclosed: 2012-02-01

Description:

Mac OS X contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is due to an error within the WebDAV sharing component when handling user authentication, allowing a local attacker to gain system privileges.

[CLOSE] OSVDB ID : 78990 - Disclosed: 2012-02-01

Description:

Apache Struts contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'name' and 'lastName' parameter upon submission to struts2-showcase/person/editPerson.action. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78991 - Disclosed: 2012-02-01

Description:

Apache Struts contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'clientName' parameter upon submission to struts2-rest-showcase/orders. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78719 - Disclosed: 2012-02-01

Description:

Emobile Pocket WiFi GP02 contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the changing of settings, or resetting of the device. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 78727 - Disclosed: 2012-02-01

Description:

OpenEMR contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the interface/patient_file/encounter/load_form.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'formname' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 78747 - Disclosed: 2012-02-01

Description:

Drupal contains a flaw in the File module. The issue is due to an error when using certain field access modules. This may allow a remote attacker to access arbitrary files.

[CLOSE] OSVDB ID : 78802 - Disclosed: 2012-02-01

Description:

Mac OS X contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the Address Book component attempts an unencrypted connection if an encrypted connection fails, which may disclose CardDAV data to a remote attacker.