jetlib.sec

59 items tagged "form"

Related tags: wordpress [+], contact [+], txt [+], tomcat [+], hacks [+], authentication [+], apache tomcat [+], video [+], security [+], vmware [+], server password [+], server [+], obfuscation [+], net [+], form generator [+], day [+], authenticator [+], appending [+], apache [+], vacuum [+], tool [+], sql injection [+], shell [+], printer [+], phpbazar [+], mail form [+], mail [+], information disclosure vulnerability [+], home [+], cross site scripting [+], vulnerability [+], zingiri [+], webapps [+], web applications [+], vulnerabilities [+], vacuum table [+], user [+], usb rs232 adapter [+], usb rs [+], url [+], unlimited [+], tomatocart [+], table [+], survey creator [+], sql [+], spurned [+], spray foam [+], small form factor pc [+], security researchers [+], science fiction author [+], safer use [+], robots [+], resin [+], replacement [+], recreating [+], radiation detector [+], prints [+], power button [+], plugin [+], pkd [+], piwik [+], pip boy [+], pip [+], php form [+], phillip k. dick [+], phillip k dick [+], pegboard [+], parts [+], opera [+], nick skvarla [+], microtower [+], maker [+], james [+], ideo [+], hubub [+], heating coils [+], hack [+], gps sensor [+], gift [+], function [+], ftdi [+], form php [+], footprint [+], factor [+], example [+], entertainment [+], electric frying pans [+], dumpster diving [+], digital [+], daniel [+], computer speaker [+], broadcom [+], audio [+], android [+], ajax [+], Fixes [+], php [+], web [+], service vulnerability [+], hash collision [+], denial of service [+]

December 07, 2012
0:00
Vuln: WordPress Video Lead Form Plugin 'errMsg' Parameter Cross Site Scripting Vulnerability
» ‎ SecurityFocus Vulnerabilities

WordPress Video Lead Form Plugin 'errMsg' Parameter Cross Site Scripting Vulnerability
Tags: video wordpress form cross-site-scripting vulnerability

December 06, 2012
16:00
WordPress Zingiri Form Builder Plugin Cross Site Scripting Vulnerability
» ‎ SecuriTeam

The Zingiri Form Builder plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
Tags: wordpress form zingiri vulnerability

December 04, 2012
19:00
Apache Tomcat Security Bypass
» ‎ Packet Storm Security Advisories

When using FORM authentication it was possible to bypass the security constraint checks in the FORM authenticator by appending "/j_security_check" to the end of the URL if some other component (such as the Single-Sign-On valve) had called request.setUserPrincipal() before the call to FormAuthenticator#authenticate(). Tomcat versions 6.0.0 through 6.0.35 and 7.0.0 through 7.0.27 are affected.
Tags: tomcat form security apache-tomcat authenticator appending

19:00
Apache Tomcat Security Bypass
» ‎ Packet Storm Security Recent Files

When using FORM authentication it was possible to bypass the security constraint checks in the FORM authenticator by appending "/j_security_check" to the end of the URL if some other component (such as the Single-Sign-On valve) had called request.setUserPrincipal() before the call to FormAuthenticator#authenticate(). Tomcat versions 6.0.0 through 6.0.35 and 7.0.0 through 7.0.27 are affected.
Tags: tomcat form security apache-tomcat authenticator appending

19:00
Apache Tomcat Security Bypass
» ‎ Packet Storm Security Misc. Files

When using FORM authentication it was possible to bypass the security constraint checks in the FORM authenticator by appending "/j_security_check" to the end of the URL if some other component (such as the Single-Sign-On valve) had called request.setUserPrincipal() before the call to FormAuthenticator#authenticate(). Tomcat versions 6.0.0 through 6.0.35 and 7.0.0 through 7.0.27 are affected.
Tags: tomcat form security apache-tomcat authenticator appending

November 29, 2012
17:11
WordPress Video Lead Form 0.5 Cross Site Scripting
» ‎ Packet Storm Security Exploits

WordPress Video Lead Form plugin version 0.5 suffers from a cross site scripting vulnerability.
Tags: video wordpress form vulnerability

17:11
WordPress Video Lead Form 0.5 Cross Site Scripting
» ‎ Packet Storm Security Recent Files

WordPress Video Lead Form plugin version 0.5 suffers from a cross site scripting vulnerability.
Tags: video wordpress form vulnerability

17:11
WordPress Video Lead Form 0.5 Cross Site Scripting
» ‎ Packet Storm Security Misc. Files

WordPress Video Lead Form plugin version 0.5 suffers from a cross site scripting vulnerability.
Tags: video wordpress form vulnerability

8:00
Bugtraq: ideo Lead Form Plugin Cross-Site Scripting Vulnerabilities which affects Wordpress URL
» ‎ SecurityFocus Vulnerabilities

ideo Lead Form Plugin Cross-Site Scripting Vulnerabilities which affects Wordpress URL
Tags: ideo plugin form vulnerabilities

October 01, 2012
4:06
Running into the Form 1 printer at Maker Faire
» ‎ Hack a Day

The Form 1 resin printer Kickstarter met its funding goal in just about 8 hours, and after five days is on track to be the most successful Kickstarter to date. Being so successful meant we had to drop by the FormLabs booth at Maker Faire to see what the hubub is. From the sample prints [...]
Tags: maker printer form hubub resin prints printer hacks

September 14, 2012
14:00
[web applications] - Unlimited Form Builder & Manager CSRF Vulnerability
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

[web applications] - Unlimited Form Builder & Manager CSRF Vulnerability
Tags: web unlimited form web-applications vulnerability

August 30, 2012
0:00
Vuln: TomatoCart 'example_form.ajax.php' Cross Site Scripting Vulnerability
» ‎ SecurityFocus Vulnerabilities

TomatoCart 'example_form.ajax.php' Cross Site Scripting Vulnerability
Tags: example tomatocart form ajax vulnerability

August 26, 2012
10:01
Recreating [Phillip K. Dick] in android form… and losing his head
» ‎ Hack a Day

Yes, that’s an android of [Phillip K. Dick]. While you don’t necessarily need to be familir with [Phillip K. Dick] to find this story amusing, we highly recommend that you take a few minutes to learn about him if you don’t recognize the name. [Phillip K. Dick], or [PKD] was a science fiction author and [...]
Tags: recreating form android phillip-k.-dick phillip-k-dick science-fiction-author pkd robots hacks

June 27, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service

April 24, 2012
14:03
PiP-Boy 2000 build goes for function over form
» ‎ Hack a Day

[Daniel] wrote in to tell us about his PIP-Boy 2000 prototype. While most PIP-Boy remakes we’ve seen tend to be focusing more on the aesthetic side, like a prop, [Daniel] is attempting to make a functional one. He has included a GPS sensor, RFID reader, and radiation detector in his build but did choose [...]
Tags: function pip-boy form daniel pip radiation-detector gps-sensor home entertainment hacks

April 13, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
April 03, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
March 27, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service

March 25, 2012
14:00
[webapps / 0day] - PHP Form & Survey Creator CSRF Vulnerability
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

[webapps / 0day] - PHP Form & Survey Creator CSRF Vulnerability
Tags: day php form survey-creator php-form vulnerability
14:00
[webapps / 0day] - Form Builder CSRF Vulnerability
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

[webapps / 0day] - Form Builder CSRF Vulnerability
Tags: day form webapps vulnerability

March 21, 2012
12:11
.NET Form Authentication Insecure Redirect
» ‎ Packet Storm Security Exploits

.NET Form Authentication suffers from an insecure redirect vulnerability.
Tags: authentication form net vulnerability

12:11
.NET Form Authentication Insecure Redirect
» ‎ Packet Storm Security Recent Files

.NET Form Authentication suffers from an insecure redirect vulnerability.
Tags: authentication form net vulnerability

12:11
.NET Form Authentication Insecure Redirect
» ‎ Packet Storm Security Misc. Files

.NET Form Authentication suffers from an insecure redirect vulnerability.
Tags: authentication form net vulnerability

February 10, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
February 06, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
February 01, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
January 31, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
January 20, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
January 13, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
January 12, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
January 11, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
January 02, 2012
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service
December 29, 2011
0:00
Vuln: PHP Web Form Hash Collision Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

PHP Web Form Hash Collision Denial Of Service Vulnerability
Tags: web php form hash-collision service-vulnerability denial-of-service

December 20, 2011
8:01
The most evil gift ever
» ‎ Hack a Day

[form], a new user on the Hack a Day forums, was thinking, “what Christmas present i can send a friend, that would be really annoying?” We think he really hit it out of the park with this one. It’s a modified computer speaker that will play “explicit” audio until the power button is pressed 200 [...]
Tags: user form gift computer-speaker power-button hack digital audio hacks

October 13, 2011
23:05
WordPress Contact Form 2.7.5 SQL Injection / Patch
» ‎ Packet Storm Security Exploits

WordPress Contact Form plugin versions 2.7.5 and below suffer from a remote SQL injection vulnerability. A patch is included.
Tags: wordpress contact form vulnerability
23:05
WordPress Contact Form 2.7.5 SQL Injection / Patch
» ‎ Packet Storm Security Exploits

WordPress Contact Form plugin versions 2.7.5 and below suffer from a remote SQL injection vulnerability. A patch is included.
Tags: wordpress contact form vulnerability

23:05
WordPress Contact Form 2.7.5 SQL Injection / Patch
» ‎ Packet Storm Security Recent Files

WordPress Contact Form plugin versions 2.7.5 and below suffer from a remote SQL injection vulnerability. A patch is included.
Tags: wordpress contact form vulnerability

23:05
WordPress Contact Form 2.7.5 SQL Injection / Patch
» ‎ Packet Storm Security Misc. Files

WordPress Contact Form plugin versions 2.7.5 and below suffer from a remote SQL injection vulnerability. A patch is included.
Tags: wordpress contact form vulnerability

August 31, 2011
14:01
How to build a vacuum form table that gets it right every time
» ‎ Hack a Day

[James] builds all sorts of robots and superhero costume replicas at home, so he is always searching for a better way to get consistent results when using his vacuum table. A lot of people use their oven or exposed heating coils from electric frying pans to warm the plastic sheets, but [James] wasn’t really interested in going [...]
Tags: vacuum table form james electric-frying-pans heating-coils vacuum-table tool hacks

August 11, 2011
22:04
VMware vFabric tc Server Password Obfuscation Bypass
» ‎ Packet Storm Security Advisories

VMware vFabric tc Server allows users to store the passwords used for JMX authentication in an obfuscated form for organizations where storing passwords in plain text is not permitted. The JMX authentication implementation was incorrectly allowing users to authenticate using the password in either its plain text form or its obfuscated form, bypassing the benefit of obfuscation. Versions 2.0.0.RELEASE to 2.0.5.SR01 and 2.1.0.RELEASE to 2.1.1.SR01 are affected.
Tags: vmware server form server-password obfuscation

22:04
VMware vFabric tc Server Password Obfuscation Bypass
» ‎ Packet Storm Security Recent Files

VMware vFabric tc Server allows users to store the passwords used for JMX authentication in an obfuscated form for organizations where storing passwords in plain text is not permitted. The JMX authentication implementation was incorrectly allowing users to authenticate using the password in either its plain text form or its obfuscated form, bypassing the benefit of obfuscation. Versions 2.0.0.RELEASE to 2.0.5.SR01 and 2.1.0.RELEASE to 2.1.1.SR01 are affected.
Tags: vmware server form server-password obfuscation

22:04
VMware vFabric tc Server Password Obfuscation Bypass
» ‎ Packet Storm Security Misc. Files

VMware vFabric tc Server allows users to store the passwords used for JMX authentication in an obfuscated form for organizations where storing passwords in plain text is not permitted. The JMX authentication implementation was incorrectly allowing users to authenticate using the password in either its plain text form or its obfuscated form, bypassing the benefit of obfuscation. Versions 2.0.0.RELEASE to 2.0.5.SR01 and 2.1.0.RELEASE to 2.1.1.SR01 are affected.
Tags: vmware server form server-password obfuscation

January 28, 2011
8:43
Opera Fixes Critical Form-Handling Flaw
» ‎ Packet Storm Security Headlines

Opera Fixes Critical Form-Handling Flaw
Tags: Fixes form opera

December 02, 2010
13:00
Vacuum forming at home
» ‎ Hack a Day

A little dumpster-diving let [Nick Skvarla] build his vacuum form machine for around $5. He pulled a vacuum cleaner out of the trash, which was tossed away because of a broken power plug. He put it into a box which had been sealed with spray foam and used a piece of pegboard for the top [...]
Tags: vacuum form home nick-skvarla dumpster-diving spray-foam pegboard tool hacks

November 24, 2010
0:00
Vuln: Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
» ‎ SecurityFocus Vulnerabilities

Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
Tags: tomcat form apache apache-tomcat authentication
October 26, 2010
0:00
Vuln: Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
» ‎ SecurityFocus Vulnerabilities

Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
Tags: tomcat form apache apache-tomcat authentication
October 13, 2010
0:00
Vuln: Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
» ‎ SecurityFocus Vulnerabilities

Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
Tags: tomcat form apache apache-tomcat authentication

September 30, 2010
20:01
cfg-sql.txt
» ‎ Packet Storm Security Recent Files

Contact Form Generator suffers from a remote SQL injection vulnerability.
Tags: txt contact form form-generator sql-injection vulnerability

20:01
cfg-sql.txt
» ‎ Packet Storm Security Exploits

Contact Form Generator suffers from a remote SQL injection vulnerability.
Tags: txt contact form form-generator sql-injection vulnerability

14:00
[webapps / 0day] - Contact Form Generator (EditFormLite) SQL Injection Vulnerability
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

[webapps / 0day] - Contact Form Generator (EditFormLite) SQL Injection Vulnerability
Tags: day contact form form-generator vulnerability

July 26, 2010
16:03
HP Small Form Factor PC's with Broadcom Integrated NIC Firmware Vulnerability
» ‎ SecuriTeam

A vulnerability was identified in certain versions of HP Small Form Factor Microtower and Workstations PC's with Broadcom Integrated NIC Firmware.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!

Tags: broadcom factor form safer-use small-form-factor-pc microtower

July 22, 2010
19:01
phpbazar-disclose.txt
» ‎ Packet Storm Security Recent Files

phpBazar suffers form an administrative information disclosure vulnerability.
Tags: phpbazar txt form information-disclosure-vulnerability

19:01
phpbazar-disclose.txt
» ‎ Packet Storm Security Exploits

phpBazar suffers form an administrative information disclosure vulnerability.
Tags: phpbazar txt form information-disclosure-vulnerability

July 06, 2010
0:00
Spurned Security Researchers Form Anti-MS Collective
» ‎ Packet Storm Security Headlines

Spurned Security Researchers Form Anti-MS Collective
Tags: spurned form security security-researchers

May 24, 2010
12:00
DB9 form factor USB-RS232 replacement
» ‎ Hack a Day

If you’re attached to that favorite DB-9 interfaced device you should look into this part. FTDI is selling a USB-RS232 adapter as a replacement for DB-9 connectors. They come with USB male or female connections depending on the application and have the same serial footprint and pinout to which you’re accustomed. Using converter cables is [...]
Tags: form usb-rs replacement usb-rs232-adapter ftdi footprint parts

May 06, 2010
0:00
Vuln: Piwik 'form_url' Parameter Cross Site Scripting Vulnerability
» ‎ SecurityFocus Vulnerabilities

Piwik 'form_url' Parameter Cross Site Scripting Vulnerability
Tags: url piwik form cross-site-scripting vulnerability

February 17, 2010
7:32
intuitive (form.php) Sql Injection Vulnerability
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

intuitive (form.php) Sql Injection Vulnerability
Tags: sql php form form-php vulnerability

February 16, 2010
15:00
mailformpro-shell.txt
» ‎ Packet Storm Security Recent Files

Mail Form Pro version 2 suffers from a shell upload vulnerability.
Tags: txt mail form mail-form vulnerability shell

15:00
mailformpro-shell.txt
» ‎ Packet Storm Security Exploits

Mail Form Pro version 2 suffers from a shell upload vulnerability.
Tags: txt mail form mail-form vulnerability shell

jetlib.sec » Tags » form

Feeds

59 items tagged "form"

Tags: video wordpress form cross-site-scripting vulnerability

Tags: wordpress form zingiri vulnerability

Tags: tomcat form security apache-tomcat authenticator appending

Tags: tomcat form security apache-tomcat authenticator appending

Tags: tomcat form security apache-tomcat authenticator appending

Tags: video wordpress form vulnerability

Tags: video wordpress form vulnerability

Tags: video wordpress form vulnerability

Tags: ideo plugin form vulnerabilities

Tags: maker printer form hubub resin prints printer hacks

Tags: web unlimited form web-applications vulnerability

Tags: example tomatocart form ajax vulnerability

Tags: recreating form android phillip-k.-dick phillip-k-dick science-fiction-author pkd robots hacks

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: function pip-boy form daniel pip radiation-detector gps-sensor home entertainment hacks

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: day php form survey-creator php-form vulnerability

Tags: day form webapps vulnerability

Tags: authentication form net vulnerability

Tags: authentication form net vulnerability

Tags: authentication form net vulnerability

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: web php form hash-collision service-vulnerability denial-of-service

Tags: user form gift computer-speaker power-button hack digital audio hacks

Tags: wordpress contact form vulnerability

Tags: wordpress contact form vulnerability

Tags: wordpress contact form vulnerability

Tags: wordpress contact form vulnerability

Tags: vacuum table form james electric-frying-pans heating-coils vacuum-table tool hacks

Tags: vmware server form server-password obfuscation

Tags: vmware server form server-password obfuscation

Tags: vmware server form server-password obfuscation

Tags: Fixes form opera

Tags: vacuum form home nick-skvarla dumpster-diving spray-foam pegboard tool hacks

Tags: tomcat form apache apache-tomcat authentication

Tags: tomcat form apache apache-tomcat authentication

Tags: tomcat form apache apache-tomcat authentication

Tags: txt contact form form-generator sql-injection vulnerability

Tags: txt contact form form-generator sql-injection vulnerability

Tags: day contact form form-generator vulnerability

Tags: broadcom factor form safer-use small-form-factor-pc microtower

Tags: phpbazar txt form information-disclosure-vulnerability

Tags: phpbazar txt form information-disclosure-vulnerability

Tags: spurned form security security-researchers

Tags: form usb-rs replacement usb-rs232-adapter ftdi footprint parts

Tags: url piwik form cross-site-scripting vulnerability

Tags: sql php form form-php vulnerability

Tags: txt mail form mail-form vulnerability shell

Tags: txt mail form mail-form vulnerability shell