Code
Advisories
Http Request Splitting and Header Abuse with Java AddRequestProperty
Advisory
Http Request Splitting and Header Abuse with Java AddRequestProperty
Java-JNLP-Applet User Assisted Arbitrary Code Execution
Advisory
Java-JNLP-Applet User Assisted Arbitrary Code Execution
Get Internal Network Information with Java Applets
Advisory
Get Internal Network Information with Java Applets
#MSA130510
Advisory
#MSA130510
:
JForum <= 2.08 is vulnerable to Stored Cross Site Scripting in BBCode.
#MSA02240108
Advisory
#MSA02240108
:
Microsoft Internet Explorer allows overwriting of several headers leading to Http request Splitting and smuggling.
#MSA01240108
Advisory
#MSA01240108
:
Microsoft Internet Explorer “Transfer-Encoding: chunked” allows Request Splitting/Smuggling.
MSXML Header Request Vulnerability (CVE-2008-4033)
Advisory
MSXML Header Request Vulnerability (CVE-2008-4033)
Plain Old Webserver Directory Traversal Vulnerability.
Advisory
Plain Old Webserver Directory Traversal Vulnerability.
Advisory
:
IE and Firefox Digest Authentication Request Splitting (04/2007)
Php import_req_var globals overwrite Advisory (03/2007)
Advisory
Php import_req_var globals overwrite Advisory (03/2007)
Advisory
:
Acrobat Reader Plugin Multiple Vulnerabilities (01/2007)
Advisory
:
MySQL Server COM_TABLE_DUMP Information Leakage and Arbitrary command execution.(04/2006)
Advisory
:
MySQL Server Anonymous Login Handshake Information Leakage. (04/2006)
Advisory
:
MySQL Server CREATE FUNCTION libc arbitrary code execution (03/2005)
Advisory
:
MySQL Server CREATE FUNCTION mysql.func table arbitrary library injection (03/2005)
Advisory
:
MySQL Server insecure temporary File Creation (03/2005)
Advisory
:
Php RFC1867 Arbitrary File Upload (10/2004)
Advisory
:
Php shmop safemode bypass and write to arbitrary locations (10/2004)