secondary software vulnerabilities
vulnerabilities.aspcode.net
Searching secondary software vulnerabilities
Application Dynamics Cartweaver ColdFusion 2.16
Application
|
Cartweaver
|
ColdFusion
|
Dynamics
|
Application Dynamics Cartweaver ColdFusion 2.16.11 and earlier allows remote attackers to obtain sensitive information via an invalid (1) secondary, (2) PageNum_Results, (3) category, or (4) keywords parameter in (a) Results.cfm; or an invalid (5) ProdID parameter in (b) Details.cfm; which reveal the path in various error messages. NOTE: the behavior for the category, keywords, and ProdID parameters might be resultant from SQL injection.
Cross-site scripting (XSS) vulnerability in Rap
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Rapid Install Web Server in Oracle Application Server 11i allows remote attackers to inject arbitrary web script or HTML via a URL to the "Secondary Login Page", as demonstrated using (1) pls/ and (2) pls/MSBEP004/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
The xfer_secondary_pool function in drivers/cha
drivers/char/randomc
|
xfer_secondary_pool
|
function
|
kernel
|
before
|
Linux
|
The xfer_secondary_pool function in drivers/char/random.c in the Linux kernel 2.4 before 2.4.35 does not properly perform reseed operations, which has unknown impact and attack vectors. NOTE: some of these details are obtained from third party information.
Software vulnerabilities results 1 to 4 of 4
Page:
1