OSSIM Cross-Site Scripting and SQL Injection Vulnerabilities

OSSIM Cross-Site Scripting and SQL Injection Vulnerabilities
BugsAlert Home > OSSIM Cross-Site Scripting and SQL Injection Vulnerabilities




Marcin Kopec has discovered some vulnerabilities in OSSIM, which can be exploited by malicious people to conduct cross-site scripting attacks, and by malicious users to conduct SQL injection attacks. Be sure to check if your system is missing security updates or have insecure applications installed: http://secunia.com/software_inspector/ Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that all Microsoft patches are applied * Assists you in updating your system and applications * Runs through your browser. No installation or download is required. Original Source: http://secunia.com/advisories/29046/ Learn more about OSSIM Cross-Site Scripting and SQL Injection Vulnerabilities


Tags: ossim cross-site scripting sql injection vulnerabilities

Related Items
Brief: Adobe investigates Flash Player attacks
Nullsoft Winamp MP4 tags Stack Overflow
CVE-2008-1955 (myboard)
Microsoft Security Advisory (945713): Vulnerability in Web Proxy Auto-Discovery (WPAD) Could Allow Information Disclosure
CVE-2008-4968 (lmbench)
Debian update for wireshark
FrSIRT - Imager Library Image-Based Fill Buffer Overflow Vulnerability