834 matches found
plusphp url shortening software 1.6 - Remote File Inclusion
plusphp url shortening software 1.6 - Remote File Inclusion Author: DR.TOXIC / [email protected] Title: plusPHP Multi-User Short URL and Statistics plus.php RFI Vulnerability Script Download: http://www.hotscripts.com/jump.php?listingid=80293&jumptype=1 Vulnerability Code: plus.php "includ...
plusphp url shortening software 1.6 - Remote File Inclusion
Author: DR.TOXIC / [email protected] Title: plusPHP Multi-User Short URL and Statistics plus.php RFI Vulnerability Script Download: http://www.hotscripts.com/jump.php?listingid=80293&jumptype=1 Vulnerability Code: plus.php "include $pagesdir.'config.php';" Example;...
Cisco VPN Client IPSec Driver Kernel Memory Corruption Vulnerability
Cisco VPN Client for Windows version 5.0.02.0090 contains a vulnerability that could allow a local attacker to cause the affected system to fail and restart, resulting in a denial of service DoS condition. This vulnerability exists due to invalid memory operations. An attacker could exploit this...
mysql security update
CentOS Errata and Security Advisory CESA-2007:1222-001 Updated mysql packages that fix several security issues are now available for Red Hat Application Stack v1 and v2. This update has been rated as having important security impact by the Red Hat Security Response Team. MySQL is a multi-user,...
RHEL 4 / 5 : mysql (RHSA-2007:1155)
Updated mysql packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server...
[SECURITY] Fedora 7 Update: mysql-5.0.45-6.fc7
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...
[SECURITY] Fedora 8 Update: mysql-5.0.45-6.fc8
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...
security flaw
pamconsole does not properly restore ownership for certain console devices when there are multiple users logged into the console and one user logs out, which might allow local users to gain privileges...
CVE-2007-4544
Cross-site scripting XSS vulnerability in wp-newblog.php in WordPress multi-user MU 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the weblogid parameter Username field...
CVE-2007-2632
Multiple cross-site scripting XSS vulnerabilities in PHP Multi User Randomizer phpMUR 2006.09.13 allow remote attackers to inject arbitrary web script or HTML via 1 the editplugin parameter to configureplugin.tpl.php, or 2 certain array parameters to web/phpinfo.php, as demonstrated by 1 or a...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in PHP Multi User Randomizer phpMUR 2006.09.13 allow remote attackers to inject arbitrary web script or HTML via 1 the editplugin parameter to configureplugin.tpl.php, or 2 certain array parameters to web/phpinfo.php, as demonstrated by 1 or a...
CVE-2007-2632
Multiple cross-site scripting XSS vulnerabilities in PHP Multi User Randomizer phpMUR 2006.09.13 allow remote attackers to inject arbitrary web script or HTML via 1 the editplugin parameter to configureplugin.tpl.php, or 2 certain array parameters to web/phpinfo.php, as demonstrated by 1 or a...
PHP Multi User Randomizer 2006.09.13 - Configure_Plugin.TPL.php Cross-Site Scripting
PHP Multi User Randomizer 2006.09.13 - ConfigurePlugin.TPL.php Cross-Site Scripting source: https://www.securityfocus.com/bid/23917/info PHP Multi User Randomizer is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker m...
PHP Multi User Randomizer 2006.09.13 - 'Configure_Plugin.TPL.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/23917/info PHP Multi User Randomizer is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
CentOS 4 : mysql (CESA-2007:0152)
Updated mysql packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation...
ACLS ineffective in SQL-Ledger and LedgerSMB
Hi all; I have decided to finally send to this list a serious security flaw in the design of SQL-Ledger all versions. LedgerSMB all versions is also affected but the problem with a workaround has been mentioned in our documentation since the fork. Ordinarily I would not make a big deal out of thi...
Hacker attack and Defense of the PPPoE authentication and use-vulnerability and early warning-the black bar safety net
A Foreword In recent years, Internet data traffic has developed rapidly, broadband users showed explosive growth, the operators in the use of xDSL, LAN, HFC, wireless and other access methods at the same time, in order to build an operable, manageable and profitable broadband network, is very...
Windows XP 3 3 8 9(terminals)multi-user login-bug warning-the black bar safety net
The first step:the first is on Windows XP SP2 installed the official version, according to the conventional manner of mounting can be, not repeat them here. Second step:prepare an earlier version of the SP2 terminal server softwareit is said that from Build 2 0 8 2 start the function is disabled,...
CVE-2006-3669
Mercury Messenger, possibly 1.7.1.1 and other versions, when running on a multi-user Mac OS X platform, stores chat logs with world-readable permissions within the /Users directory, which allows local users to read the chat logs from other users...
Echo Security Advisory 2006.36
ECHO.OR.ID ECHOADV36$2006 --------------------------------------------------------------------------- ECHOADV36$2006 ExtCalendar...