[CLOSE] OSVDB ID : 82216 - Disclosed: 2012-04-27

Description:

FlirtPortal Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the rub2.php script not properly sanitizing user-supplied input to the 'rub' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82218 - Disclosed: 2012-04-27

Description:

FlirtPortal Script contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'ctitle' parameter upon submission to the index_kartensuche.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 84719 - Disclosed: 2012-04-27

Description:

MySQLDumper contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'page' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 84890 - Disclosed: 2012-04-27

Description:

McAfee Application Control and Change Control contain a flaw that is triggered by an error that may allow a local attacker to change file permissions on the solidcore\passwd file to read-only. This will cause the program to no longer prompt a user for a password when executing commands, which will allow the attacker to execute arbitrary commands.

[CLOSE] OSVDB ID : 93541 - Disclosed: 2012-04-27

Description:

Apache Solr contains a flaw that allows a reflected cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via a callback upon submission to json.wrf. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81560 - Disclosed: 2012-04-26

Description:

DiY-CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the mod.php script not properly sanitizing user-supplied input to the 'start' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81561 - Disclosed: 2012-04-26

Description:

DiY-CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the url upon submission to the poll/add.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81568 - Disclosed: 2012-04-26

Description:

Twonky and TwonkyManager contain a flaw related to the secure server settings, that allows a remote attacker to traverse outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to read arbitrary files.

[CLOSE] OSVDB ID : 81629 - Disclosed: 2012-04-26

Description:

sp-mode Mail for Android contains a flaw related to the validation of SSL certificates when accessing certain services. This may allow a man-in-the-middle attacker to spoof a valid server.

[CLOSE] OSVDB ID : 81558 - Disclosed: 2012-04-26

Description:

KMPlayer is prone to a flaw related to ehtrace.dll, in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a DLL file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 81569 - Disclosed: 2012-04-26

Description:

ACTi Web Configurator contains a flaw related to the cgi-bin directory, that allows a remote attacker to traverse outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to read arbitrary files.

[CLOSE] OSVDB ID : 81630 - Disclosed: 2012-04-26

Description:

NinjaXplorer Component for Joomla! contains a flaw that may allow a remote attacker to have an unspecified impact. No further details have been provided.

[CLOSE] OSVDB ID : 81491 - Disclosed: 2012-04-26

Description:

Parallels Plesk Panel contains a flaw that may lead to an unauthorized information disclosure. This issue may allow an attacker to view the contents of psadump.log, which will disclose admin passwords to a remote attacker.

[CLOSE] OSVDB ID : 81492 - Disclosed: 2012-04-26

Description:

Zingiri Web Shop Plugin for Wordpress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'page' parameter upon submission to the plugins/zingiri-web-shop/zing.inc.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81493 - Disclosed: 2012-04-26

Description:

Zingiri Web Shop Plugin for Wordpress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'notes' parameter upon submission to the fws/pages-front/onecheckout.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83206 - Disclosed: 2012-04-26

Description:

Opera contains a flaw that may allow a denial of service. The issue is triggered when reloading a specially crafted page during a multiple origin camera test. This will result in loss of availability for the program.

[CLOSE] OSVDB ID : 83211 - Disclosed: 2012-04-26

Description:

Opera contains a flaw that may allow a denial of service. The issue is triggered when the program fails to properly handle invalid character encodings, which will result in loss of availability for the program.

[CLOSE] OSVDB ID : 83207 - Disclosed: 2012-04-26

Description:

Opera contains a flaw that may allow a denial of service. The issue is triggered when the program fails to properly handle absolute positioned wrap=off TEXTAREA elements which are adjacent to overflow: auto block elements. This will result in a loss of availability for the program.

[CLOSE] OSVDB ID : 83208 - Disclosed: 2012-04-26

Description:

Opera contains a flaw that may allow a denial of service. The issue is triggered when the program fails to properly handle malformed domain names, which will result in loss of availability for the program.

[CLOSE] OSVDB ID : 83209 - Disclosed: 2012-04-26

Description:

Opera contains a flaw that may allow a denial of service. The issue is triggered when an attacker uses JavaScript code to manipulate a form in an unspecified fashion before it is submitted. This will result in loss of availability for the program. No further details have been provided.

[CLOSE] OSVDB ID : 83212 - Disclosed: 2012-04-26

Description:

Opera contains a flaw that may allow a denial of service. The issue is triggered when an an attacker embeds a parent document into an IFRAME element via the src="#" syntax, which will result in a loss of availability for the program.

[CLOSE] OSVDB ID : 83210 - Disclosed: 2012-04-26

Description:

Opera contains a flaw that may allow a denial of service. The issue is triggered when an attacker supplies malformed WebGL content, which will result in loss of availability for the program.

[CLOSE] OSVDB ID : 84390 - Disclosed: 2012-04-26

Description:

OpenSSL contains a flaw related to the SSL_OP_ALL option. This issue is triggered when the TLS 1.1 protocol is disabled, which will result in the protocol being rolled back to 1.0 which may not be secure.

[CLOSE] OSVDB ID : 81837 - Disclosed: 2012-04-26

Description:

Open Source Q&A System contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the cleanup_urls function in the forum/utils/html.py script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83243 - Disclosed: 2012-04-26

Description:

WebKit contains an out-of-bounds read flaw in the SVG filter when handling invalid feConvolveMatrix property values. The issue is triggered when handling SVG filters. With a specially crafted SVG document, a context-dependent attacker can cause a crash or potentially disclose memory contents.

[CLOSE] OSVDB ID : 84162 - Disclosed: 2012-04-26

Description:

WebKit contains a typecasting flaw in the 'HTMLCollection::isAcceptableElement' function in WebCore/html/HTMLCollection.cpp. With a specially crafted SVG document, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 84178 - Disclosed: 2012-04-26

Description:

WebKit contains a use-after-free error that is triggered when removing a line break object after layout. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 85823 - Disclosed: 2012-04-26

Description:

OpenStack Keystone contains a flaw that is triggered when an account associated with a disabled tenant still authenticates as if the tenant is active. This may allow a user to authenticate in some circumstances where it should not be allowed.

[CLOSE] OSVDB ID : 81551 - Disclosed: 2012-04-25

Description:

Creative Commons Module for Drupal contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input used in describing licenses (creativecommons_site_license_additional_text parameter) before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81554 - Disclosed: 2012-04-25

Description:

Ubercart Module for Drupal contains a flaw that may allow a remote attacker to execute arbitray PHP code.

[CLOSE] OSVDB ID : 81406 - Disclosed: 2012-04-25

Description:

By default, RuggedCom Rugged Operating System (ROS) installs with a default, unchangeable password. The 'factory' account has a password based off the ROS device's MAC address. This allows attackers to remotely access the system and gain full administrative control.

[CLOSE] OSVDB ID : 81553 - Disclosed: 2012-04-25

Description:

Ubercart Module for Drupal contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not properly sanitize input passed via the product classes feature before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81488 - Disclosed: 2012-04-25

Description:

Piwigo contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the upgrade.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'language' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 81489 - Disclosed: 2012-04-25

Description:

Piwigo contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'installstatus', 'theme' and 'section' parameters upon submission to the admin.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81556 - Disclosed: 2012-04-25

Description:

Spaces Module for Drupal contains a flaw where the spaces and spaces_og modules in the spaces packages don't always apply the proper restrictions, which may allow an attacker to bypass certain restrictions and possibly gain access to sensitive information.

[CLOSE] OSVDB ID : 81635 - Disclosed: 2012-04-25

Description:

RealName Module for Drupal contains a flaw related to the User Real Name field that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81547 - Disclosed: 2012-04-25

Description:

By default, MoroccoTel Telnet Server installs with a default password. The admin account has a password of admin or 123456 which is publicly known and documented. This allows attackers to trivially access the program or system and gain privileged access.

[CLOSE] OSVDB ID : 81552 - Disclosed: 2012-04-25

Description:

Ubercart Module for Drupal contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when passwords created by new customers are stored as plain text until a purchase is confirmed, which may allow a remote attacker to easily gain access to passwords.

[CLOSE] OSVDB ID : 81555 - Disclosed: 2012-04-25

Description:

Site Documentation Module for Drupal contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the file system doesn't properly verify the saved file is protected by the private file system, which will disclose structure information to an attacker.

[CLOSE] OSVDB ID : 81557 - Disclosed: 2012-04-25

Description:

Linkit Module for Drupal contains a flaw when using the search function that may allow an attacker to bypass certain restrictions and view content otherwise restricted.