Web App Vulnerabilities

1. Introduction The MercuryBoard User-Agent SQL Injection vulnerability affects the PHP script used by MercuryBoard bulletin board systems. This allows...

1. Introduction Microsoft ASP.NET Application Tracing, specifically through the trace.axd handler, can disclose sensitive information if enabled. This allows unauthenticated...

1. Introduction Microsoft Azure CycleCloud Web Interface Detection indicates that the web interface for Microsoft Azure CycleCloud is accessible on...

1. Introduction Microsoft Azure Service Fabric Web Detection indicates that a web application or API associated with Azure Service Fabric,...

1. Introduction The Microsoft FrontPage Extensions Check identifies whether FrontPage extensions are enabled on a web server. These extensions allow...

1. Introduction The Microsoft IE FRAME/IFRAME/EMBED Tag Overflow vulnerability, also known as the Bofra worm detection, is a critical flaw...

1. Introduction The Microsoft IIS / Site Server viewcode.asp Arbitrary File Access vulnerability is a flaw in a default IIS...

1. Introduction Microsoft IIS 5.0 Form_JScript.asp XSS is a cross-site scripting vulnerability in an example ASP script hosted on web...

1. Introduction Microsoft IIS 6.0 PHP NTFS Stream Authentication Bypass allows unauthenticated access to PHP files in protected web directories....

1. Introduction The Microsoft IIS bdir.htr Arbitrary Directory Listing vulnerability is an information disclosure issue affecting Internet Information Services web...