Hanno's blog

Entries tagged as mephisto

Related tags

chcounter security toendacms xss 0days 27c3 addresssanitizer adguard adobe aead aes afra aiglx algorithm altushost android antivir antivirus aok apache apt asan auskunftsanspruch axfr azure barcamp bash berlin berserk bias bigbluebutton bleichenbacher blog bodensee botnetz braunschweig browser bsi bsideshn bufferoverflow bugbounty bundesdatenschutzgesetz bundestrojaner bundesverfassungsgericht busby bypass c ca cacert cbc ccc cccamp11 cellular certificate cfb chrome chromium clamav clang clickjacking cloudflare cmi cms code compiz conflictofinterest cookie crash crypto cryptography csrf cve darmstadt datenschutz deb debian dell deolalikar diffiehellman dingens diploma diplomarbeit distributions dns domain drupal easterhegg edellroot eff email encryption english eplus facebook fedora fileexfiltration firefox firewall forwardsecrecy freak freesoftware freewvs frequency fsfe ftp fuzzing gajim gallery gcc gentoo ghost gimp git glibc gnupg gnutls gobi google gpg gsm gsoc gstreamer hackerone hacking hannover hash heartbleed helma http https infoleak informationdisclosure internetscan ircbot itsecurity jabber javascript jodconverter joomla karlsruhe kaspersky key keyexchange komodia leak lessig libreoffice linux luckythirteen malware maninthemiddle mantis math md5 memorysafety microsoft milleniumproblems mitm mobilephones modulobias moodle mozilla mpaa mplayer mrmcd mrmcd100b mrmcd101b multimedia mysql napster nessus netfiltersdk newspaper nist nss ntp ntpd observatory onlinedurchsuchung openbsc openbts openleaks openpgp openssl openvas osmocombb otr owncloud packagemanagement padding panda papierlos password passwordalert passwort passwörter pdo pgp phishing php pnp poodle privacy privdog protocolfilters provablesecurity pss python rand random rc2 redhat rhein rpm rsa rsapss rss s9y salinecourier schlüssel science serendipity server session sha1 sha2 sha256 sha512 shellbot shellshock sicherheit signatures slides smime snallygaster sni sniffing spam sqlinjection squirrelmail ssl staatsanwaltschaft stacktrace study stuttgart subdomain sunras superfish support talk taz thesis tls tlsdate transvalid überwachung ubuntu unicef unicode update updates useafterfree userdir utf-8 verschlüsselung virus vlc vortrag vulnerabilities vulnerability web webapps webmontag websecurity wiesbaden windows windowsxp wiretapping wordpress x509 xgl xine xmpp xsa zerodays zugangsdaten zzuf content-security-policy csp okte

Thursday, April 12. 2007

Cross site scripting in mephisto blog, toendaCMS and chcounter

Now, once another episode of cross site scripting disclosure. This time we have some free software web applications. Sadly, none of them was able to provide a fix in a decent timeframe.

CVE-2007-1871 XSS in chcounter
CVE-2007-1872 XSS in toendaCMS
CVE-2007-1873 XSS in mephisto

Posted by Hanno Böck in Code, English, Security at 01:35 | Comments (2) | Trackbacks (0)

Defined tags for this entry: chcounter, mephisto, security, toendacms, xss

(Page 1 of 1, totaling 1 entries)

About me

You can find my web page with links to my work as a journalist at https://hboeck.de/.

You may also find my newsletter about climate change and decarbonization technologies interesting.

Hanno Böck
mail: hanno@hboeck.de

Hanno on Mastodon

Impressum

Creative Commons

Unless noted otherwise, all content is CC Zero / public domain

Frontpage
Datenschutz / Privacy