167 matches found
CVE-2013-4441
The Phonemes mode in Pwgen 2.06 generates predictable passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack...
CVE-2013-4441
Pwgen 2.06’s Phonemes mode produces predictable passwords, enabling context-dependent attackers to brute-force-guess passwords. Affected: Pwgen 2.06; root cause: predictability in Phonemes mode. Remediation/patch details are not provided in the connected documents.
SuperMicro X8STi-F Operating System Command Injection Vulnerability
The SuperMicro X8STi-F is a computer motherboard from SuperMicro USA. An operating system command injection vulnerability exists in the Virtual Media feature in the SuperMicro X8STi-F with IPMI firmware version 2.06 and BIOS version 02.68. An attacker can exploit this vulnerability to obtain a...
CloudBees Jenkins Skytap Cloud CI Plugin Trust Management Issue Vulnerability
CloudBees Jenkins Hudson Labs is a set of Java-based development of continuous integration tools from the U.S. CloudBees. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Skytap Cloud CI Plugin is used in one of the plug-in for...
PT-2019-11762 · Jenkins · Jenkins Skytap Cloud Ci Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Skytap Cloud CI Plugin versions 2.06 and earlier Description: The issue concerns the storage of credentials in an unencrypted form in job config.xml files on the Jenkins master. This allows users with Extended Read permission or acces...
CVE-2018-9032
An authentication bypass vulnerability on D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router Hardware Version : A1, B1; Firmware Version : 1.02-2.06 devices potentially allows attackers to bypass SharePort Web Access Portal by directly visiting /categoryview.php or /folderview.php...
Entrepreneur Job Portal Script 2.06 - SQL Injection
Entrepreneur Job Portal Script 2.06 - SQL Injection x========================================================================================================================================x | Title : Entrepreneur Job Portal Script SQL Injection | Software : Entrepreneur Job Portal Script | Versi...
D-Link DIR-816L Cross-Site Request Forgery Vulnerability
D-Link DIR-816L is a wireless router product from AUO D-Link. A cross-site request forgery vulnerability exists in D-Link DIR-816L Wireless routers using firmware versions prior to 2.06.B09BETA. A remote attacker can exploit this vulnerability by sending specially crafted requests to the hedwig.c...
ColdCalendar 2.06 SQL Injection Exploit
No description provided by source...
CDTrustee .BAK Local Crash PoC
No description provided by source. Exploit Title: CDTrustee .BAK Local Crash POC Date: March 30, 2010 Software Link: http://www.base40.com/cdtDownload.html Version: 2.06 Tested on: WinXP SP3 and Windows 7 Cost: 39.95 USD Author: anonymous Site: http://www.setfreesecurity.com Usage: Install...
e107 Radio Plan 2.06 Shell Upload
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
e107 Plugin - Radio Plan Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
Sql injection
SQL injection vulnerability in index.cfm in ColdGen ColdCalendar 2.06 allows remote attackers to execute arbitrary SQL commands via the EventID parameter in a ViewEventDetails action...
CVE-2010-4910
SQL injection vulnerability in index.cfm in ColdGen ColdCalendar 2.06 allows remote attackers to execute arbitrary SQL commands via the EventID parameter in a ViewEventDetails action...
CDTrustee .BAK Local Crash POC
Exploit for windows platform in category dos / poc ============================== CDTrustee .BAK Local Crash POC ============================== Exploit Title: CDTrustee .BAK Local Crash POC Date: March 30, 2010 Software Link: http://www.base40.com/cdtDownload.html Version: 2.06 Tested on: WinXP S...
CVE-2008-6725
Multiple SQL injection vulnerabilities in CMScout 2.06 allow remote authenticated users to execute arbitrary SQL commands via the id parameter to 1 index.php in a mythings page mythings.php and 2 the users page in admin.php...
CVE-2008-6726
Multiple directory traversal vulnerabilities in CMScout 2.06, when registerglobals is enabled, allow remote attackers to include and execute arbitrary local files via a .. dot dot in the bit parameter to 1 admin.php and 2 index.php, different vectors than CVE-2008-3415...
CVE-2008-6074
Directory traversal vulnerability in frame.php in phpcrs 2.06 and earlier, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the importFunction parameter...
CMScout 2.06 SQL Injection/Local File Inclusion Vulnerabilities
No description provided by source. + CMScout 2.06 Remote SQL Injection/Local File Inclusion + Discovered By SirGod + Visit : www.mortal-team.org + Visit : www.h4cky0u.org + Greetz : All my friends + Script homepage : http://www.cmscout.co.za/ + Dork : Powered by CMScout c2005 CMScout Group + Remo...
CMScout 2.06 SQL Injection / Local File Inclusion
CMScout 2.06 Remote SQL Injection/Local File Inclusion + Discovered By SirGod + Visit : www.mortal-team.org + Visit : www.h4cky0u.org + Greetz : All my friends + Script homepage : http://www.cmscout.co.za/ + Dork : Powered by CMScout c2005 CMScout Group + Remote SQL Injection...