Cross Site Scripting – Page 2 – Computer Security Articles

Credit to Author: SSD / Maor Schwartz| Date: Sun, 21 May 2017 15:17:30 +0000

Vulnerabilities Summary The following advisory describe two (2) stored Cross-Site Scripting (XSS) found in Synology DiskStation Manager (DSM). Cross-site scripting stored in SWF file Cross-site scripting stored in Video Station application Synology DiskStation Manager (DSM), a Linux based software package that is the operating system for the DiskStation and RackStation products. The Synology DSM is … Continue reading SSD Advisory – Synology DiskStation Manager Multiple Stored Cross-Site Scripting

Independent Securiteam

SSD Advisory – Serviio Media Server Multiple Vulnerabilities

May 2, 2017 admin Cross Site Scripting, Information Disclosure, Privilege Escalation, Remote Code Execution, SecuriTeam Secure Disclosure, Unauthenticated Action

Credit to Author: Maor Schwartz| Date: Tue, 02 May 2017 10:58:33 +0000

Vulnerabilities Summary The following advisory describes a five (5) vulnerabilities found in Serviio Media Server. Affected version: 1.8.0.0 PRO, 1.7.1, 1.7.0, 1.6.1. Serviio is a free media server. It allows you to stream your media files (music, video or images) to renderer devices (e.g. a TV set, Bluray player, games console or mobile phone) on … Continue reading SSD Advisory – Serviio Media Server Multiple Vulnerabilities

Independent Securiteam

SSD Advisory – HPE OpenCall Media Platform (OCMP) Multiple Vulnerabilities

April 24, 2017 admin Cross Site Scripting, Remote File Inclusion, SecuriTeam Secure Disclosure

Credit to Author: Maor Schwartz| Date: Mon, 24 Apr 2017 05:57:39 +0000

Vulnerabilities Summary The following advisory describes Reflected Cross-Site Scripting (XSS) vulnerabilities and a Remote File Inclusion vulnerability that when combined can lead to arbitrary Javascript code execution, were found in HP OpenCall Media Platform (OCMP), version 4.3.2. HPE OpenCall Media Platform (OCMP) is a suite of software and hardware applications which allow implementation of common … Continue reading SSD Advisory – HPE OpenCall Media Platform (OCMP) Multiple Vulnerabilities

Independent Securiteam

SSD Advisory – SolarWinds Multiple Vulnerabilities

March 14, 2017 admin Cross Site Scripting, SecuriTeam Secure Disclosure

Credit to Author: Maor Schwartz| Date: Tue, 14 Mar 2017 07:15:01 +0000

Vulnerabilities Summary SolarWinds Server and Application Monitor version 6.1.1 has been found to contain multiple vulnerabilities: Node Custom Properties Persistent XSS Audit Events Module Persistent XSS Custom “Data Source” and ‘Where Clause’ Persistent XSS “Build Dynamic Query Name” Persistent XSS Multiple Persistent XSS Vulnerabilities Via ‘Title’ field Application Monitor Template Persistent XSS NOC View Name … Continue reading SSD Advisory – SolarWinds Multiple Vulnerabilities →