OTRS index.pl Multiple Variable XSS

Network Security News – Saturday, November 26, 2005 Events

OTRS index.pl Multiple Variable XSS

OTRS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "QueueID" or "Action" variables upon submission to the index.pl script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21067

OTRS Email Attachment XSS

OTRS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate HTML attachments. This could allow an attacker to create a specially crafted file that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21066

PHP-Post mail.php user Variable XSS

PHP-Pist contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "user" variable upon submission to the mail.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21059

PHP-Post Post Subject Field XSS

PHP-Post contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the subject field upon submission to the post script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21057

PHP-Post profile.php user Variable XSS

PHP-Post contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "user" variable upon submission to the profile.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21058

Tunez search.php searchFor Variable XSS

Tunez contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "searchFor" variable upon submission to the search.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21063

kPlaylist searchfor Variable XSS

kPlaylist contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "searchfor" variable upon submission to the kPlaylist script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21069

Gadu-Gadu MS-DOS Filename Transfer DoS

Gadu-Gadu contains a flaw that may allow a remote denial of service. The issue is triggered when MS-DOS filenames ("LPT:", "AUX:") are used for image processing, and will result in loss of availability for the service.. Read more at osvdb.org/21015

Gadu-Gadu DCC Packet Saturation Thread Exhaustion DoS

Gadu-Gadu contains a flaw that may allow a remote denial of service. The issue is triggered when multiple crafted DCC packets process and consume a large amount of resources, and will result in loss of availability for the service.. Read more at osvdb.org/21018

Omnistar Live kb.php Multiple Variable SQL Injection

Omnistar Live contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'kb.php' script not properly sanitizing user-supplied input to the 'id' and 'category_id' variables. This may allow a remote attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/21077

Vuln: AgileBill Product_Cat SQL Injection Vulnerability

AgileBill Product_Cat SQL Injection Vulnerability. Read more at securityfocus.com/bid/15572

Vuln: PHP MB_Send_Mail TO Argument Header Injection Vulnerability

PHP MB_Send_Mail TO Argument Header Injection Vulnerability. Read more at securityfocus.com/bid/15571

Vuln: IsolSoft Support Center Multiple SQL Injection Vulnerabilities

IsolSoft Support Center Multiple SQL Injection Vulnerabilities. Read more at securityfocus.com/bid/15570

Vuln: eFiction Multiple Input Validation Vulnerabilities

eFiction Multiple Input Validation Vulnerabilities. Read more at securityfocus.com/bid/15568

eFiction <= 2.0 multiple vulnerabilities

eFiction <= 2.0 multiple vulnerabilities. Read more at securityfocus.com/archive/1/417712

Mandriva Security

Mandriva Security. Read more at securityfocus.com/archive/1/417725

SEC Consult SA-20051125-0 :: More Vulnerabilities in vTiger CRM

SEC Consult SA-20051125-0 :: More Vulnerabilities in vTiger CRM. Read more at securityfocus.com/archive/1/417711

Re: Advisory 23/2005: vTiger multiple vulnerabilities

Re: Advisory 23/2005: vTiger multiple vulnerabilities. Read more at securityfocus.com/archive/1/417727