Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresql/cast.rb in Active Record in Ruby on Rails beta1, when PostgreSQL is used, allows remote attackers to execute "add data" SQL commands via vectors involving \ backslash characters that are not properly handle...

CVE-2014-0080 rubygem-activerecord: PostgreSQL array data injection vulnerability

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresql/cast.rb in Active Record in Ruby on Rails 4.0.x before 4.0.3, and 4.1.0.beta1, when PostgreSQL is used, allows remote attackers to execute "add data" SQL commands via vectors involving \ backslash character...

UBUNTU-CVE-2013-7073

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters...

Code injection

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters...

gimp: XWD plugin color map heap-based buffer overflow

Heap-based buffer overflow in the readxwdcols function in file-xwd.c in the X Window Dump XWD plug-in in GIMP 2.6.9 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an X Window System XWD image dump with more colors than color map...

destoon full version SQL injection vulnerability-vulnerability warning-the black bar safety net

在 include/global.func.php in stripsql function to pass the incoming value for the filter, but we can bypass this limit, to achieve the full version of the injected function stripsql$string $search =...

AVE.CMS 2.09 - 'index.php?module' Blind SQL Injection

!/usr/bin/env python import urllib, sys, time Exploit Title: AVE.CMS " if url:7 != "http://": url = "http://" + url + "/index.php?module=" else: url = url + "/index.php?module=" database = options = 'Version':'VERSION', 'User':'CURRENTUSER', 'Database':'DATABASE' sys.stdout.write"+ Checking...

Mozilla: Use-after-free when displaying table with many columns and column groups (MFSA 2013-05)

Use-after-free vulnerability in the TableBackgroundPainter::TableBackgroundData::Destroy function in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.1...

Estudio447 SQL Injection / Cross Site Scripting

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...

Estudio447 - SQL Injection Vulnerability / Cross-Site Scripting

The Estudio447 specialists graphic design, websites, online shops corporate image, graphic advice 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0...

PBW CMS SQL Injection

---------------IN THE NAME OF ALLAH----------------- Title: PBW CMS SQL Injection Vulnerability Discovered By : Ashiyane Digital Security Team Author : Ashiyane Digital Security Team Dork : intext:Powered by Point B Web CMS inurl:eventdetail.php?eventid= Exploit :...

[SECURITY] Fedora 17 Update: groff-1.21-9.fc17

Groff is a document formatting system. Groff takes standard text and formatting commands as input and produces formatted output. The created documents can be shown on a display or printed on a printer. Groff's formatting commands allow you to specify font type and size, bold type, italic type, th...

Mozilla: Buffer overflow and use-after-free issues found using Address Sanitizer (MFSA 2012-40)

Heap-based buffer overflow in the nsHTMLReflowState::CalculateHypotheticalBox function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allows remote attackers to execute arbitrary code...

CVE-2012-1941

Heap-based buffer overflow in the nsHTMLReflowState::CalculateHypotheticalBox function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allows remote attackers to execute arbitrary code...

Buffer overflow and use-after-free issues found using Address Sanitizer — Mozilla

Security researcher Abhishek Arya of Google used the Address Sanitizer tool to uncover several issues: two heap buffer overflow bugs and a use-after-free problem. The first heap buffer overflow was found in conversion from unicode to native character sets when the function fails. The use-after-fr...

Website Design Cardiff SQL Injection

Exploit Title: Website Design Cardiff SQL Injection Author: Th4 MasK Vendor : http://www.ep-projects.co.uk/ Date : 24.04.2012 Platform : Php Test On : BackTrack 5 Dork : created by Website Design Cardiff // Demo Site : http://www.cardiffscuba.co.uk/viewdivetrip.php?id=11 SQL Database : db37304973...

Dej CMS SQL Injection

Exploit Title: Dej Cms SQL Inject Date: 2012.3.5 Author: Expl0its We Are : Expl0its , Highersense , Black.spook & H4ckcity.net - zone-hc.com Gmail : [email protected] Software : http://www.dejcom.com Vulnerable Page: /showpage.aspx Exploit:...

CVE-2011-3027

Google Chrome before 17.0.963.56 does not properly perform a cast of an unspecified variable during handling of columns, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document...

CVE-2011-3027

Removed by vendor...

Postgres Schema Dump

This module extracts the schema information from a Postgres server. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Postgres Schema Dump', 'Description' = % This module extracts the schema...