MySQL 5 - Command Line Client HTML Special Characters HTML Injection

source: https://www.securityfocus.com/bid/31486/info MySQL is prone to an HTML-injection vulnerability because the application's command-line client fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would run in...

Novell eDirectory unauthenticated access to SOAP interface

= Affected software : Editor : Novell Name : eDirectory Version : 8.7.x see note and 8.8.2 Services : TCP/8028 HTTP and TCP/8030 HTTPS = External references : http://www.novell.com/support/viewContent.do?externalId=3866911&sliceId=1 https://vulners.com/cve/CVE-2008-0926 = Technical details : A SO...

CVE-2006-2703

The CVE-2006-2703 entry concerns the RedCarpet command-line client (rug), where the SSL certificate verification is not performed by the client when connecting to a server. This weaknesses permits a MITM attacker to read traffic and potentially execute commands through the intercepted connection....