[CLOSE] OSVDB ID : 81542 - Disclosed: 2012-04-24

Description:

Hispanic Digital Network CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'cat' parameter upon submission to the clasificados.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81543 - Disclosed: 2012-04-24

Description:

Hispanic Digital Network CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the clasificados.php script not properly sanitizing user-supplied input to the 'cat' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81618 - Disclosed: 2012-04-24

Description:

ShareYourCart Plugin for WordPress contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker takes unspecified action against multiple unspecified scripts within the SDK, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 81514 - Disclosed: 2012-04-24

Description:

A memory corruption flaw exists in multiple Mozilla products. jsval.h and the js::array_shift function fails to sanitize user-supplied input resulting in a memory corruption. This may allow a remote to execute arbitrary code.

[CLOSE] OSVDB ID : 81518 - Disclosed: 2012-04-24

Description:

A memory corruption flaw exists in multiple Mozilla products. The cairo_dwrite_font_face() function fails to sanitize user-supplied input when rendering fonts. This may potentially allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 81520 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the displayed url when an attacker exploits a flaw in docshell's page loading which allows for the manipulation of the displayed URL, which may allow for manipulation of the displayed URL. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81522 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not properly decode the ISO-2022-KR and ISO-2022-CN character sets. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81636 - Disclosed: 2012-04-24

Description:

Net-SNMP contains a flaw that may allow a remote denial of service. The issue is triggered by an array-indexing error in the handle_nsExtendOutput2Table() function in agent/mibgroup/agent/extend.c when processing MIB subtrees, which may allow an attacker to cause a loss of availability for the application via a specially crafted SMNP GET request.

[CLOSE] OSVDB ID : 81663 - Disclosed: 2012-04-24

Description:

OSSIM contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the forensics/base_qry_main.php script not properly sanitizing user-supplied input to the 'tcp_port[0][0]' and 'time[0][0]' parameter.s This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data. Additionally, if a failed query is performed with the 'time[0][0]' parameter, the program will render the user's input without sanitizing it. This causes the resulting error message to potentially be used as a cross-site scripting (XSS) vector.

[CLOSE] OSVDB ID : 83613 - Disclosed: 2012-04-24

Description:

vBulletin contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the 'Subject' parameter when creating a new post. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 84957 - Disclosed: 2012-04-24

Description:

devotee contains a flaw that is triggered by the application using a 32-bit seed for generating 48-bit random numbers. This may allow a remote attacker to more easily gain access to a secret moniker via a brute force attack.

[CLOSE] OSVDB ID : 93402 - Disclosed: 2012-04-24

Description:

By default, Digital Watchdog DW-VMAXD1 installs with multiple default user and admin credentials (username/password combination). The 'Local Admin' account has a password of '0000000', the 'User1' account has a password of '1111111', the 'User2' account has a password of '2222222', the 'User3' account has a password of '3333333', and the 'User4' account has a password of '444444', which are publicly known and documented. This allows remote attackers to trivially access the program or system and gain privileged access.

[CLOSE] OSVDB ID : 81324 - Disclosed: 2012-04-23

Description:

Havalite CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'userId' parameter upon submission to the hava_user.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81325 - Disclosed: 2012-04-23

Description:

Havalite CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'linkId' parameter upon submission to the hava_link.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81534 - Disclosed: 2012-04-23

Description:

CCNewsLetter Module for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the helper/popup.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81326 - Disclosed: 2012-04-23

Description:

Exponent CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'section' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81329 - Disclosed: 2012-04-23

Description:

WebCalendar contains an access restriction weakness when passing input via the install/index.php script. This may allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 81454 - Disclosed: 2012-04-23

Description:

Asterisk Manager Interface contains a flaw when handling multiple actions, which may allow an attacker to execute arbitrary shell commands.

[CLOSE] OSVDB ID : 81455 - Disclosed: 2012-04-23

Description:

Asterisk is prone to an overflow condition. The Skinny Channel Drive fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted KEYPAD_BUTTON_MESSAGE event, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 81456 - Disclosed: 2012-04-23

Description:

Asterisk contains a flaw related to the SIP Channel Driver that may allow a remote denial of service. The issue is triggered when parsing SIP UPDATE requests, which will result in loss of availability for the application.

[CLOSE] OSVDB ID : 81535 - Disclosed: 2012-04-23

Description:

PSFTP contains a flaw related to PSFTP_Key.dat that may allow a local denial of service. The issue is triggered when a null pointer dereference occurs when parsing unicode keys, and will result in loss of availability for the application.

[CLOSE] OSVDB ID : 81538 - Disclosed: 2012-04-23

Description:

ChurchCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin.php script not properly sanitizing user-supplied input to the 'uname' and 'pass' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82027 - Disclosed: 2012-04-23

Description:

Tornado contains a flaw that allows an attacker to conduct an HTTP response splitting attack. This flaw exists because the tornado.web.RequestHandler.set_header() function does not validate certain unspecified input before returning it to the user. This could allow a remote attacker to insert arbitrary HTTP headers, which are included in a response sent to the server. If an application does not properly filter such a request, it could be used to inject additional headers that manipulate cookies, authentication status, or more.

[CLOSE] OSVDB ID : 81328 - Disclosed: 2012-04-23

Description:

Mobipocket Reader is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted CHM file, a context-dependent attacker can potentially cause a denial of service or execute arbitrary code.

[CLOSE] OSVDB ID : 81474 - Disclosed: 2012-04-23

Description:

vBulletin Suite, vBulletin Forum, and vBulletin MAPI plugin contain an unspecified flaw related to the MAPI functionality. No further details have been provided.

[CLOSE] OSVDB ID : 81531 - Disclosed: 2012-04-23

Description:

SocketMail Pro contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the changing of a secret question. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 81532 - Disclosed: 2012-04-23

Description:

SocketMail Pro contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input when sending emails before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81585 - Disclosed: 2012-04-23

Description:

concrete5 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'approveImmediately' parameter upon submission to the tools/required/edit_collection_popup.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81323 - Disclosed: 2012-04-23

Description:

Havalite CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'profile name' field when an administrator views it in the user list area. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81327 - Disclosed: 2012-04-23

Description:

Exponent CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'tag' and 'src' parameters upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81330 - Disclosed: 2012-04-23

Description:

WebCalendar contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the pref.php script not properly sanitizing user-supplied input to the 'pref_THEME' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 81530 - Disclosed: 2012-04-23

Description:

Net-Shops contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'product_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81536 - Disclosed: 2012-04-23

Description:

School Website Solutions contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'search' parameter upon submission to /search. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81537 - Disclosed: 2012-04-23

Description:

School Website Solutions contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'startdate' parameter upon submission to /calendar. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81584 - Disclosed: 2012-04-23

Description:

concrete5 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'btask' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 86728 - Disclosed: 2012-04-23

Description:

TreasonSMS and WiFiSMS contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the Kontakte module before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 86726 - Disclosed: 2012-04-23

Description:

TreasonSMS and WiFiSMS contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the list messages module before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 87743 - Disclosed: 2012-04-23

Description:

Havalite CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'username' parameter upon submission edit article module. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 87742 - Disclosed: 2012-04-23

Description:

Havalite CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'postId' parameter upon submission to the hava_post.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 87739 - Disclosed: 2012-04-23

Description:

TrouSerS contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs in the tcsd daemon during the parsing of a specially crafted packet. This will result in a loss of availability for the service.