UBUNTU-CVE-2025-53111

GLPI is a Free Asset and IT Management Software package. In versions 0.80 through 10.0.18, a lack of permission checks can result in unauthorized access to some resources. This is fixed in version 10.0.19...

GLPI 授权问题漏洞

GLPI is an open source IT and asset management software from GLPI Open Source. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner and ink...

UBUNTU-CVE-2024-43416

GLPI is a free asset and IT management software package. Starting in version 0.80 and prior to version 10.0.17, an unauthenticated user can use an application endpoint to check if an email address corresponds to a valid GLPI user. Version 10.0.17 fixes the issue...

GLPI 信息泄露漏洞

GLPI is an open source IT and asset management software from GLPI Open Source. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner and ink...

PT-2024-10159 · Glpi +1 · Glpi +1

Name of the Vulnerable Software and Affected Versions: GLPI versions 0.80 through 10.0.16 Description: GLPI is a free asset and IT management software package. The issue is related to incorrect access control, allowing an authenticated user to use an application endpoint to delete any user accoun...

Widely-Used PuTTY SSH Client Found Vulnerable to Key Recovery Attack

The maintainers of the PuTTY Secure Shell SSH and Telnet client are alerting users of a critical vulnerability impacting versions from 0.68 through 0.80 that could be exploited to achieve full recovery of NIST P-521 ecdsa-sha2-nistp521 private keys. The flaw has been assigned the CVE identifier...

PuTTY 安全漏洞

PuTTY is a suite of free Telnet, Rlogin, and SSH client software from the individual developer Simon Tatham. The software is primarily used for remote administration of Linux systems. A security vulnerability exists in PuTTY versions 0.68 through 0.80, which stems from the presence of biased rand...

Security update for putty (important)

openSUSE Security Update: Security update for putty Announcement ID: openSUSE-SU-2024:0005-1 Rating: important References: 1218128 Cross-References: CVE-2023-48795 CVSS scores: CVE-2023-48795 NVD : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2023-48795 SUSE: 5.9...

FreeBSD : putty -- add protocol extension against 'Terrapin attack' (91955195-9ebb-11ee-bc14-a703705db3a6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 91955195-9ebb-11ee-bc14-a703705db3a6 advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other...

GLPI SQL注入漏洞

GLPI is an open source IT and asset management software for individual developers. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner cartridg...

Shutter 'HelperFunctions.pm' Remote Code Execution Vulnerability

Shutter is a free and open source screenshot application for Linux-based systems. A remote code execution vulnerability exists in Shutter version 0.80 and above. A remote attacker can exploit this vulnerability to execute arbitrary code or cause a denial of service...

ASPNuke 0.80 Language_Select.ASP HTTP Response Splitting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14063/info ASPNuke is prone to an HTTP response splitting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. A remote attacker may exploit this vulnerability to...

ASP Nuke - SQL Injection Vulnerability

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-asp-nuke-sql-injection-vulnerability/ ''' Abysssec Inc Public Advisory Title : ASP Nuke Sql Injection...

ASP Nuke SQL Injection Vulnerability

Exploit for asp platform in category web applications ==================================== ASP Nuke SQL Injection Vulnerability ==================================== Title : ASP Nuke Sql Injection Vulnerability Affected Version : AspNuke 0.80 Discovery : www.abysssec.com Vendor :...

ASP Nuke - SQL Injection

ASP Nuke - SQL Injection ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | 0 " & "...

Month Of Abysssec Undisclosed Bugs - ASP Nuke 0.80

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | 0 " & "AND art.Archive = 0" Considering to the code, you can bro...

ASP Nuke - SQL Injection

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-asp-nuke-sql-injection-vulnerability/ ''' Abysssec Inc Public Advisory Title : ASP Nuke Sql Injection Vulnerability Affected Version :...

Directory traversal

Directory traversal vulnerability in test/index.php in PHP-Sugar 0.80 allows remote attackers to read arbitrary files via a ..// dot dot slash slash in the t parameter...

CVE-2009-2398

CVE-2009-2398 : Affected software is PHP-Sugar 0.80, vulnerable in test/index.php. The vulnerability is a directory traversal via the t parameter using a ..// sequence, allowing a remote attacker to read arbitrary files. Connected sources corroborate the same description (NVD/NVD mirrors). No exp...

PHP-Sugar 0.80 (index.php t) Local File Inclusion Vulnerability

No description provided by source. =-=-local file include-=-= -=-=-=-=-=-=-=-=-=-=-=- script: PHP-Sugar 0.80 ----------------------- Author: ahmadbady my site :Coming Soon =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= download from:http://php-sugar.net/files/?mod=files...