25 matches found
CVE-2024-45438
An issue was discovered in TitanHQ SpamTitan Email Security Gateway 8.00.x before 8.00.101 and 8.01.x before 8.01.14. The file quarantine.php within the SpamTitan interface allows unauthenticated users to trigger account-level actions using a crafted GET request. Notably, when a non-existent emai...
Cross site scripting
IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browser within the security context of...
CVE-2012-3341
Vulnerability summary (CVE-2012-3341) : IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is affected by cross-site scripting due to improper validation of user-supplied input. A remote attacker could lure a victim to click a specially-crafted URL, causing script execution in the browser within the...
CVE-2012-3336
IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements to multiple scripts, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 78282...
CVE-2009-3642
Multiple SQL injection vulnerabilities in the Call Logging feature in FrontRange HEAT 8.01 allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters...
CVE-2009-3642
CVE-2009-3642 affects FrontRange HEAT 8.01, where multiple SQL injection flaws in the Call Logging feature allow remote attackers to execute arbitrary SQL commands via the username and password parameters. The issue originates from improper handling of user-supplied credentials in the Call Loggin...
HEAT Call Logging 8.01 SQL Injection
= ;otokoyama; = -=HEAT Call Logging Version 8.01=- "The HEAT family is a comprehensive service solution, combining core technologies with a variety of expansion options, so any enterprise can build a tailored solution." -=web=- http://www.frontrange.com/heat.aspx -=attack=- U:' OR HEATPass IS NOT...
HEAT Call Logging 8.01 SQL Injection
Exploit for unknown platform in category web applications ==================================== HEAT Call Logging 8.01 SQL Injection ==================================== -=HEAT Call Logging Version 8.01=- "The HEAT family is a comprehensive service solution, combining core technologies with a...
HEAT Call Logging 8.01 - SQL Injection
HEAT Call Logging 8.01 - SQL Injection = ;otokoyama; = -=HEAT Call Logging Version 8.01=- "The HEAT family is a comprehensive service solution, combining core technologies with a variety of expansion options, so any enterprise can build a tailored solution." -=web=-...
HEAT Call Logging 8.01 SQL Injection
No description provided by source. = ;otokoyama; = -=HEAT Call Logging Version 8.01=- "The HEAT family is a comprehensive service solution, combining core technologies with a variety of expansion options, so any enterprise can build a tailored solution." -=web=- http://www.frontrange.com/heat.asp...
HEAT Call Logging 8.01 - SQL Injection
= ;otokoyama; = -=HEAT Call Logging Version 8.01=- "The HEAT family is a comprehensive service solution, combining core technologies with a variety of expansion options, so any enterprise can build a tailored solution." -=web=- http://www.frontrange.com/heat.aspx -=attack=- U:' OR HEATPass IS NOT...
CVE-2008-2822
The CVE-2008-2822 issue affects the 3D-FTP Client (version around 8.01/8.0 build 1). The vulnerability is a directory-traversal flaw triggered by a ".." in responses to LIST/MLSD, allowing remote FTP servers to create or overwrite arbitrary files outside the client directory. Attack impact includ...
IPSwitch IMail Server 8.0x Remote Heap Overflow Exploit
No description provided by source. / by axis 2007-06-05 http://www.ph4nt0m.org Mail-List: http://list.ph4nt0m.org 脪脭脟掳脫脨脮芒啪枚脪禄啪枚imail碌脛exp PRIVATE Remote Exploit For IMAIL Smtp Server1.2 This is For imail 8.01-8.11 version Usage:faint.exe -d host options Options: -d: Hostname to attack Required -...
Stack overflow
Stack-based buffer overflow in InterVations MailCOPA 8.01 20070323 allows user-assisted remote attackers to execute arbitrary code via a long command line argument, as demonstrated by a long string in the subject field in a mailto URI. NOTE: some of these details are obtained from third party...
CVE-2007-2505
CVE-2007-2505 : Concrete details indicate a stack-based buffer overflow in InterVations MailCOPA 8.01 20070323. The vulnerability is triggered by a long string in the subject field of a mailto URI, allowing user-assisted remote attackers to execute arbitrary code. The issue affects the MailCOPA p...
CVE-2006-0361
Cross-site scripting XSS vulnerability in addcomment.php in Bit 5 Blog 8.01 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in an tag in the comment parameter, which strips most tags but not...
CVE-2006-0361
The CVE-2006-0361 entry concerns Bit 5 Blog 8.01. The vulnerability is a cross-site scripting (XSS) flaw in addcomment.php, where an attacker can inject arbitrary script/HTML by supplying a javascript URI within an tag in the comment parameter. The filter reportedly strips most tags but not , en...
CVE-2006-0320
SQL injection vulnerability in admin/processlogin.php in Bit 5 Blog 8.01 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the 1 username and 2 password parameter...
Sql injection
SQL injection vulnerability in admin/processlogin.php in Bit 5 Blog 8.01 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the 1 username and 2 password parameter...
CVE-2006-0320
CVE-2006-0320 affects Bit 5 Blog 8.01, with vulnerability in admin/processlogin.php that allows an attacker to bypass authentication and execute arbitrary SQL via the (1) username and (2) password parameters. The provided connected documents confirm the affected file and the SQL injection mechani...