58 matches found
EMC Secure Remote Services Virtual Edition Provisioning component is affected by SQL injection
------------------------------------------------------------------------ EMC Secure Remote Services Virtual Edition Provisioning component is affected by SQL injection ------------------------------------------------------------------------ Han Sahin, November 2014...
FreeNAC 3.02 - SQL Injection and XSS Vulnerabilties
No description provided by source...
CVE-2012-6560
SQL injection vulnerability in deviceadd.php in FreeNAC 3.02 allows remote attackers to execute arbitrary SQL commands via the status parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in FreeNAC 3.02 allow remote attackers to inject arbitrary web script or HTML via the 1 comment, 2 mac, 3 graphtype, 4 name, or 5 type parameter to stats.php; or 6 comment parameter to deviceadd.php...
Sql injection
SQL injection vulnerability in deviceadd.php in FreeNAC 3.02 allows remote attackers to execute arbitrary SQL commands via the status parameter...
CVE-2012-6559
Multiple cross-site scripting XSS vulnerabilities in FreeNAC 3.02 allow remote attackers to inject arbitrary web script or HTML via the 1 comment, 2 mac, 3 graphtype, 4 name, or 5 type parameter to stats.php; or 6 comment parameter to deviceadd.php...
CVE-2012-6560
SQL injection vulnerability in deviceadd.php in FreeNAC 3.02 allows remote attackers to execute arbitrary SQL commands via the status parameter...
CVE-2012-6559
CVE-2012-6559 impacts FreeNAC 3.02 with multiple cross-site scripting (XSS) vulnerabilities, enabling remote attackers to inject scripts/HTML via parameters to stats.php (comment, mac, graphtype, name, type) or deviceadd.php (comment). OpenVAS notes additional SQL injection vectors, expanding the...
CVE-2012-6560
Summary: CVE-2012-6560 is a SQL injection in FreeNAC 3.02, specifically in deviceadd.php via the status parameter. The OpenVAS entry also notes additional vulnerabilities in FreeNAC (multiple XSS/HTML/SQL injection). The NVD/NVD-derived descriptions confirm the SQL injection flaw exists in FreeNA...
FreeNAC 3.02 - SQL Injection / Cross-Site Scripting
FreeNAC version 3.02 SQL Injection and XSS Vulnerabilties Date: May 19, 2012 Author: Blake Software Link: http://sourceforge.net/project/showfiles.php?groupid=170004 Version: 3.02 Tested on: Ubuntu 8.04 freenac version 3.02 vmware appliance FreeNAC FreeNAC provides Virtual LAN assignment, LAN...
Fedora 14 : xpdf-3.02-16.fc14 (2010-16744)
apply xpdf-3.02pl5 security patch to fix CVE-2010-3702, CVS-2010-3704 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Fedora 11 : xpdf-3.02-15.fc11 (2009-10648)
apply xpdf-3.02pl4 security patch to fix: CVE-2009-1188/CVE-2009-3603, CVE-2009-3604, CVE-2009-3606, CVE-2009-3608, CVE-2009-3609 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...
Fedora 10 : xpdf-3.02-13.fc10 (2009-3820)
Fix several security updates in xpdf 3.02pl3 patch applied. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Gentoo Security Advisory GLSA 200904-07 (xpdf)
The remote host is missing updates announced in advisory GLSA 200904-07. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Sql injection
SQL injection vulnerability in viewcat.php in the Photo 3.02 module for RunCMS allows remote attackers to execute arbitrary SQL commands via the cid parameter...
CVE-2008-1551
SQL injection vulnerability in viewcat.php in the Photo 3.02 module for RunCMS allows remote attackers to execute arbitrary SQL commands via the cid parameter...
CVE-2008-1551
CVE-2008-1551 affects the Photo 3.02 module for RunCMS (viewcat.php) with an SQL injection via the cid parameter, enabling remote execution of arbitrary SQL commands. The NVD entry rates it High (CVSS v2.0 7.5) with network access and no authentication. References include X‑Force, Secunia, Exploi...
CVE-2008-1551
SQL injection vulnerability in viewcat.php in the Photo 3.02 module for RunCMS allows remote attackers to execute arbitrary SQL commands via the cid parameter...
RunCMS Module Photo 3.02 (cid) Remote SQL Injection Vulnerability
No description provided by source. RunCMS Module Photo 3.02 SQL injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 BLOG : http://my.opera.com/SQL-Injection/blog/ MAL : [email protected] DORK 1 : allinurl: "modules/photo/viewcat.php?id" DORK 2 : inurl:photo "powered...
[SECURITY] Fedora 8 Update: xpdf-3.02-4.fc8
Xpdf is an X Window System based viewer for Portable Document Format PDF files. Xpdf is a small and efficient program which uses standard X fonts...