PT-2023-25034 · Supermicro · Supermicro Motherboard X12Dpg-Qr

Name of the Vulnerable Software and Affected Versions: Supermicro motherboard X12DPG-QR version 1.4b Description: The issue allows local attackers to hijack control flow via manipulation of the SmcSecurityEraseSetupVar variable, potentially enabling them to gain unauthorized access or control...

PHPMyTGP 1.4 AddVIP.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23657/info PHPMyTGP is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlyi...

Sql injection

Multiple SQL injection vulnerabilities in catalog.php in SMEWeb 1.4b and 1.4f allow remote attackers to execute arbitrary SQL commands via the 1 idp and 2 category parameters...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in SMEWeb 1.4b and 1.4f allow remote attackers to inject arbitrary web script or HTML via the 1 data parameter to catalog.php, the 2 keyword parameter to search.php, the 3 page parameter to bb.php, and the 4 news parameter to order.php...

smeweb 1.4b - SQL Injection Cross-Site Scripting

smeweb 1.4b - SQL Injection Cross-Site Scripting ======================================================= SMEweb 1.4b SQL/XSS Multiple Remote Vulnerabilities ======================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Undergrou...

CVE-2007-2328

Affected software/variant: phpMYTGP 1.4b. Vulnerability type: PHP remote file inclusion in addvip.php. Root cause: unchecked/malicious URL input via msetstr[PROGSDIR] leads to arbitrary PHP code execution. Impact (as stated): arbitrary code execution possible; CVSS base factors include high impac...

PHPMyTGP 1.4 - 'AddVIP.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/23657/info PHPMyTGP is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...

PHPMyTGP 1.4 - AddVIP.php Remote File Inclusion

PHPMyTGP 1.4 - AddVIP.php Remote File Inclusion source: https://www.securityfocus.com/bid/23657/info PHPMyTGP is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application an...

CVE-2004-1937

Multiple directory traversal vulnerabilities in Nuked-KlaN 1.4b and 1.5b allow remote attackers to read or include arbitrary files via .. sequences in 1 the userlangue parameter to index.php or 2 the langue parameter to update.php, or modify arbitrary GLOBAL variables by causing globals.php to be...