EUVD-2016-6952

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2021-28053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in Configuration Users Contacts / Users allows remote...

PT-2025-28062 · Undefined · Undefined

CVE-2025-1772 Rejected reason https://t.co/GPpU0j8oWl...

CVE-2024-10943

The CVE-2024-10943 entry relates to Rockwell Automation FactoryTalk Updater and describes an authentication bypass caused by shared secrets across accounts, potentially enabling a threat actor to impersonate a user when authentication information can be enumerated. Connected documents confirm the...

CVE-2023-32115

An attacker can exploit MDS COMPARE TOOL and use specially crafted inputs to read and modify database commands, resulting in the retrieval of additional information persisted by the system...

Design/Logic Flaw

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1. The export endpoint discloses some undocumented files. This could allow an unauthenticated remote attacker to gain access to additional information resources...

CVE-2021-28053

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in "Configuration Users Contacts / Users" allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters...

CVE-2021-28053

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in "Configuration Users Contacts / Users" allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters...

UBUNTU-CVE-2021-28053

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in "Configuration Users Contacts / Users" allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters...

PT-2021-17730

Name of the Vulnerable Software and Affected Versions: Centreon Platform version 20.10.0 Description: A SQL injection issue was found in Centreon-Web, part of the Centreon Platform. This allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters ...

KB957488 - MS09-062: Vulnerabilities in GDI+ could allow remote code execution

Resolves vulnerabilities in Microsoft Windows GDI+ that could allow remote code execution if a user viewed a specially crafted image file using affected software or browsed a Web site that contains specially crafted content.Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To...

Mimikatz v2.2.0 - A Post-Exploitation Tool to Extract Plaintexts Passwords, Hash, PIN Code from Memory

mimikatz is a tool I've made to learn C and make somes experiments with Windows security. It's now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets. But that's not all!...

Code injection

IBM Emptoris Contract Management 10.0 and 10.1 reveals detailed error messages in certain features that could cause an attacker to gain additional information to conduct further attacks. IBM X-Force ID: 116738...

GNU binutils - aarch64_ext_ldst_reglist Buffer Overflow Exploit

Exploit for linux platform in category dos / poc Source: https://sourceware.org/bugzilla/showbug.cgi?id=21595 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the...

OnePC mySite Management Software SQL Injection

Exploit Title: OnePC mySite Management Software SQL Injection Vulnerability Date: 10.04.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :: General information :: OnePC mySite Management Software SQL Injection Vulnerability :: by Valentin Hoebel :: [email protected]...

Akamai Technologies Security Advisory 2008-0001 (Download Manager)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------- Akamai Technologies Security Advisory 2008-0001 Akamai ID: 2008-0002 Date: 2008/04/20 Product Name: Download Manager Affected Versions: 2.2.3.6 Fixed Version: 2.2.3.7 CVE IDs: CVE-2008-1770 CVSS...

CVE-2005-4003

Multiple SQL injection vulnerabilities in Absolute Shopping Package Solutions ASPS Shopping Cart Professional 2.9d and earlier, and Lite 2.1 and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 srchproductname parameter to advsearch.asp and 2 bsearch parameter to...

CVE-2005-3256

The key selection dialogue in Enigmail before 0.92.1 can incorrectly select a key with a user ID that does not have additional information, which allows parties with that key to decrypt the message...