[CLOSE] OSVDB ID : 81658 - Disclosed: 2012-04-30

Description:

MyClientBase contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'first_name' and 'last_name' POST parameters upon submission to the index.php/users/profile script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82075 - Disclosed: 2012-04-30

Description:

Axous contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the addition of administrators. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 81649 - Disclosed: 2012-04-30

Description:

Remote-Anything is prone to an overflow condition. The player utility fails to properly sanitize user-supplied input when viewing a video, which may result in a buffer overflow. With a specially crafted .flm file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 81655 - Disclosed: 2012-04-30

Description:

HP Systems Insight Manager contains an unspecified flaw that may allow an attacker to bypass authentication. No further details have been provided.

[CLOSE] OSVDB ID : 81659 - Disclosed: 2012-04-30

Description:

MyClientBase contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the application/core/MY_Model.php script not properly sanitizing user-supplied input passed via the 'invoice_number' or 'tags' POST parameters to the index.php/invoice_search script. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81801 - Disclosed: 2012-04-30

Description:

GENU CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the posts/search.php script not properly sanitizing user-supplied input to the 'match' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81646 - Disclosed: 2012-04-30

Description:

Google Chrome contains a race condition in the 'CrossCallParamsEx::CreateFromBuffer' function in sandbox/src/crosscall_server.cc checking and using IPC lengths. With a specially crafted web page, a context-dependent attacker can potentially read and write data inside the broker process, bypassing the sandbox.

[CLOSE] OSVDB ID : 81651 - Disclosed: 2012-04-30

Description:

HP Systems Insight Manager contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when certain unspecified input is not verified before being returned to the user, which will disclose potentially sensitive information to an attacker.

[CLOSE] OSVDB ID : 81660 - Disclosed: 2012-04-30

Description:

Apache Qpid contains a flaw that occurs when the program attempts to check credentials when joining clusters, which may allow an attacker to bypass authentication.

[CLOSE] OSVDB ID : 81805 - Disclosed: 2012-04-30

Description:

MikroTik RouterOS contains a flaw that may allow a remote distributed denial of service. The issue is triggered when .dll/plugin files are continuously requested, and will result in loss of availability for the device.

[CLOSE] OSVDB ID : 82076 - Disclosed: 2012-04-30

Description:

Axous contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'page_title' parameter upon submission to the admin/content_pages_edit.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82077 - Disclosed: 2012-04-30

Description:

Axous contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'category_name' parameter upon submission to the admin/products_category.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82078 - Disclosed: 2012-04-30

Description:

Axous contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'site_name', 'seo_title' and 'meta_keywords' parameters upon submission to the admin/settings_siteinfo.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82079 - Disclosed: 2012-04-30

Description:

Axous contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'company_name', 'address1', 'address2', 'city', 'state', 'country', 'author_first_name', 'author_last_name', 'author_email', 'contact_first_name', 'contact_last_name', 'contact_email', 'general_email', 'general_phone', 'general_fax', 'sales_email', 'sales_phone', 'support_email', and 'support_phone' parameters upon submission to the admin/settings_company.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 82080 - Disclosed: 2012-04-30

Description:

Axous contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'system_email', 'sender_name', 'smtp_server', 'smtp_username', 'smtp_password', 'order_notice_email' parameters upon submission to the admin/settings_email.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 85100 - Disclosed: 2012-04-30

Description:

Websense Web Security contains a flaw related to the TRITON management console. The issue is triggered when a remote attacker supplies a specially crafted uid field in a cookie. This may allow an attacker to bypass authentication.

[CLOSE] OSVDB ID : 86988 - Disclosed: 2012-04-30

Description:

WPsc-MijnPress Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'rwflush' parameter upon submission to the mijnpress_plugin_framework.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81648 - Disclosed: 2012-04-30

Description:

Samba contains a weakness in the application security checks for the CreateAccount, OpenAccount, AddAccountRights, and RemoveAccountRights remote procedure calls in the local security authority. This may allow a remote attacker to manipulate the ownership of arbitrary files and directories.

[CLOSE] OSVDB ID : 81650 - Disclosed: 2012-04-30

Description:

HP Systems Insight Manager contains an unspecified flaw that can be used to bypass unspecified access restrictions. No further details have been provided.

[CLOSE] OSVDB ID : 81652 - Disclosed: 2012-04-30

Description:

HP Systems Insight Manager contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for certain unspecified actions. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 81653 - Disclosed: 2012-04-30

Description:

HP Systems Insight Manager contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when an unspecified error occurs, allowing an attacker to gain escalated privileges.

[CLOSE] OSVDB ID : 81654 - Disclosed: 2012-04-30

Description:

HP Systems Insight Manager contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.

[CLOSE] OSVDB ID : 81799 - Disclosed: 2012-04-30

Description:

GENU CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the news/search.php script not properly sanitizing user-supplied input to the 'match' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81800 - Disclosed: 2012-04-30

Description:

GENU CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the comments/search.php script not properly sanitizing user-supplied input to the 'match' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82836 - Disclosed: 2012-04-30

Description:

vBulletin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the blog.php script not properly sanitizing user-supplied input to the 'p' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 83615 - Disclosed: 2012-04-30

Description:

VLC Media Player is prone to an overflow condition. The Ogg_DecodePacket() function in modules/demux/ogg.c fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 83614 - Disclosed: 2012-04-30

Description:

Anaconda contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered by anaconda/bootloader.py using insecure 0755 permissions for /etc/grub.d, which may allow a local attacker to gain access to password hash information.

[CLOSE] OSVDB ID : 86987 - Disclosed: 2012-04-30

Description:

Pritlog contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'Username' and 'Author' fields upon submission to the adminPageAuthors function in the index.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81797 - Disclosed: 2012-04-29

Description:

Soco CMS contains a flaw that allows an attacker to traverse outside of a restricted path. The issue is due to the index.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'page' parameter. This directory traversal attack would allow the attacker to read arbitrary files.

[CLOSE] OSVDB ID : 81639 - Disclosed: 2012-04-28

Description:

PHP Volunteer Management contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the mods/messages/data/get_messages.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 83157 - Disclosed: 2012-04-28

Description:

libvirt contains a flaw that is triggered when the program fails to properly assign USB devices to virtual machines when handling multiple devices that have the same vendor and product ID. This may allow an attacker to gain access to potentially sensitive information when a USB device is assigned to the wrong guest.

[CLOSE] OSVDB ID : 82835 - Disclosed: 2012-04-28

Description:

vBulletin contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when input passed via the 'item_class' parameter is not properly sanitized before being used in the vb/content.php script, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 86214 - Disclosed: 2012-04-28

Description:

Mingle Forum Plugin for WordPress contains multiple unspecified flaws. No further details have been provided.

[CLOSE] OSVDB ID : 81607 - Disclosed: 2012-04-27

Description:

Uiga FanClub contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index2.php script not properly sanitizing user-supplied input to the 'p' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81608 - Disclosed: 2012-04-27

Description:

Uiga Personal Portal contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index2.php script not properly sanitizing user-supplied input to the 'p' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81612 - Disclosed: 2012-04-27

Description:

MySQLDumper contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'filename' parameter upon submission to the restore.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81642 - Disclosed: 2012-04-27

Description:

Opial contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'searchkeayword' parameter upon submission to the searchresult.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81496 - Disclosed: 2012-04-27

Description:

CPE17 Autorun Killer is prone to an overflow condition. The readfile function fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. This may allow a remote attacker to potentially cause a denial of service or execute arbitrary code.

[CLOSE] OSVDB ID : 81606 - Disclosed: 2012-04-27

Description:

SKYUC contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'encode' parameter upon submission to the search.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81609 - Disclosed: 2012-04-27

Description:

MySQLDumper contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the install.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'language' parameter. This directory traversal attack would allow the attacker to read arbitrary files.