Lucene search
K

472 matches found

Exploit DB
Exploit DB
added 2007/12/11 12:0 a.m.49 views

WordPress Core 2.3.1 - Charset SQL Injection

=== WordPress Charset SQL Injection Vulnerability === Release date: 2007-12-10 Last modified: 2007-12-12 Source: Abel Cheung Affected version: WordPress = 2.3.1 Exploit type: Remote Risk: Moderate CVE: pending Reference: http://www.abelcheung.org/advisory/20071210-wordpress-charset.txt 1. Summary...

7.4AI score
Exploits0
0day.today
0day.today
added 2007/12/11 12:0 a.m.33 views

Wordpress <= 2.3.1 Charset Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= Wordpress Affected version: WordPress = 2.3.1 Exploit type: Remote Risk: Moderate CVE: pending 1. Summary 2. Detail 3. Proof of concept 4. Workaround 1. Summary Quoting from...

7.1AI score
Exploits0
UbuntuCve
UbuntuCve
added 2007/11/07 11:46 p.m.30 views

CVE-2007-4766

Multiple integer overflows in Perl-Compatible Regular Expression PCRE library before 7.3 allow context-dependent attackers to cause a denial of service crash or execute arbitrary code via unspecified escape backslash sequences...

7.5CVSS6.3AI score0.0416EPSS
Exploits0References2
OSV
OSV
added 2007/11/07 11:46 p.m.4 views

DEBIAN-CVE-2007-4766

Multiple integer overflows in Perl-Compatible Regular Expression PCRE library before 7.3 allow context-dependent attackers to cause a denial of service crash or execute arbitrary code via unspecified escape backslash sequences...

7.5CVSS7.5AI score0.0416EPSS
Exploits0References1
Prion
Prion
added 2007/11/01 4:46 p.m.17 views

Directory traversal

Directory traversal vulnerability in igallery.asp in Blue-Collar Productions i-Gallery 3.4 allows remote attackers to read arbitrary files via encoded backslash sequences in the d parameter, as demonstrated by a "%5c../../%5c" sequence...

5CVSS7.2AI score0.02747EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/06/06 10:30 a.m.19 views

Directory traversal

Directory traversal vulnerability in Microsoft Internet Explorer allows remote attackers to read arbitrary files via directory traversal sequences in a URI with a certain scheme, possibly related to "..%5C" encoded backslash sequences...

7.8CVSS7.2AI score0.16447EPSS
Exploits0References2
NVD
NVD
added 2007/06/06 10:30 a.m.18 views

CVE-2007-3075

Directory traversal vulnerability in Microsoft Internet Explorer allows remote attackers to read arbitrary files via directory traversal sequences in a URI with a certain scheme, possibly related to "..%5C" encoded backslash sequences...

7.8CVSS6.7AI score0.16447EPSS
Exploits0References2
CVE
CVE
added 2007/06/06 10:0 a.m.53 views

CVE-2007-3075

CVE-2007-3075: Directory traversal vulnerability in Microsoft Internet Explorer allows remote attackers to read arbitrary files via directory traversal sequences in a URI with a certain scheme (e.g., encoded backslash). The connected documents confirm the vulnerability description but do not spec...

7.8CVSS6.8AI score0.16447EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2007/05/24 9:36 a.m.6 views

tomcat directory traversal

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules modproxy, modrewrite, modjk, allows remote attackers to read arbitrary files via a .. dot dot sequence with combinations of 1 "/" slash, 2 "" backslash, and...

5CVSS6AI score0.90768EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2007/05/08 2:53 p.m.29 views

tomcat directory traversal

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules modproxy, modrewrite, modjk, allows remote attackers to read arbitrary files via a .. dot dot sequence with combinations of 1 "/" slash, 2 "" backslash, and...

5CVSS6AI score0.90768EPSS
Exploits2References4
CVE
CVE
added 2007/03/16 10:0 p.m.365 views

CVE-2007-0450

CVE-2007-0450 is a directory traversal vulnerability affecting Apache Tomcat (and Tomcat behind certain Apache proxies) where a crafted URI containing a dot-dot sequence and mixed separators (/, , and %5C) can cause unauthorized disclosure of arbitrary files. Affected products/versions include To...

5CVSS6.2AI score0.90768EPSS
Exploits2References56Affected Software2
NVD
NVD
added 2006/11/10 1:7 a.m.15 views

CVE-2006-5826

Buffer overflow in Texas Imperial Software WFTPD Pro Server 3.23.1.1 allows remote authenticated users to execute arbitrary code or cause a denial of service application crash via crafted APPE commands that contain "/" slash or "" backslash characters...

5.8CVSS7.8AI score0.10511EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2006/08/14 12:0 a.m.22 views

FreeBSD : postgresql -- encoding based SQL injection (17f53c1d-2ae9-11db-a6e2-000e0c2e438a)

The PostgreSQL development team reports : An attacker able to submit crafted strings to an application that will embed those strings in SQL commands can use invalidly-encoded multibyte characters to bypass standard string-escaping methods, resulting in possible injection of hostile SQL commands...

7.5CVSS6AI score0.02792EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2006/07/09 12:0 a.m.58 views

PostgreSQL: SQL injection

Background PostgreSQL is an open source object-relational database management system. Description PostgreSQL contains a flaw in the string parsing routines that allows certain backslash-escaped characters to be bypassed with some multibyte character encodings. This vulnerability was discovered by...

7.5CVSS7.1AI score0.02792EPSS
Exploits0
OSV
OSV
added 2006/05/24 10:6 a.m.3 views

DEBIAN-CVE-2006-2314

PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications that use multibyte encodings that allow the "" backslash byte 0x5c to be the trailing byt...

7.5CVSS7.7AI score0.02792EPSS
Exploits0References1
PostrgeSql
PostrgeSql
added 2006/05/24 10:0 a.m.78 views

Vulnerability in core server (CVE-2006-2314)

The widely-used practice of escaping ASCII single quote "'" by turning it into "'" is unsafe when operating in multibyte encodings that allow 0x5c ASCII code for backslash as the trailing byte of a multibyte character...

7.5CVSS6.1AI score0.02792EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2006/05/23 7:31 p.m.4 views

security flaw

PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications that use multibyte encodings that allow the "" backslash byte 0x5c to be the trailing byt...

7.5CVSS5.7AI score0.02792EPSS
Exploits0References4
NVD
NVD
added 2006/05/05 7:2 p.m.16 views

CVE-2006-2222

Buffer overflow in zawhttpd 0.8.23, and possibly previous versions, allows remote attackers to cause a denial of service daemon crash via a request for a URI composed of several "" backslash characters...

5CVSS7AI score0.03999EPSS
Exploits1References7
CVE
CVE
added 2006/05/05 7:0 p.m.42 views

CVE-2006-2222

CVE-2006-2222 describes a buffer overflow in zawhttpd (v0.8.23 and possibly earlier) that allows remote attackers to cause a denial of service (daemon crash) by crafting a request URI containing multiple backslash characters. The affected component is zawhttpd, and the root cause is a buffer over...

5CVSS7AI score0.03999EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2005/06/02 4:0 a.m.1 views

DEBIAN-CVE-2005-1824

The sqlescapestring function in auth/sql.c for the mailutils SQL authentication module does not properly quote the "" backslash character, which is used as an escape character and makes the module vulnerable to SQL injection attacks...

7.5CVSS7.9AI score0.0108EPSS
Exploits0References1
Rows per page
Query Builder