RHEL 7 : postgresql (RHSA-2016:2606)

An update for postgresql is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

Database Creation Error: The login already has an account under a different user name

When running the New Database Creation Wizard on the Workspace Environment Management WEM Infrastructure Services server, the administrator encounters the following error: "Database Creation Error!" A database is partially created on the SQL server, without any tables. TheCitrix Workspace...

phpMyAdmin security bypass vulnerability (CNVD-2016-07932)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A security bypass vulnerability exists in phpMyAdmin...

SUSE-SU-2016:2248-1 Security update for mariadb

This update for mariadb fixes the following issues: - CVE-2016-3477: Unspecified vulnerability in subcomponent parser bsc991616 - CVE-2016-3521: Unspecified vulnerability in subcomponent types bsc991616 - CVE-2016-3615: Unspecified vulnerability in subcomponent dml bsc991616 - CVE-2016-5440:...

Moderate: Red Hat Security Advisory: rh-postgresql94-postgresql security update

An update for rh-postgresql94-postgresql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

[SECURITY] Fedora 23 Update: postgresql-9.4.9-1.fc23

PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...

phpMyAdmin Information Disclosure Vulnerability (CNVD-2016-06457)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. An information disclosure vulnerability exists in...

Subrion v4.0.5 CMS - SQL Injection Vulnerability

Document Title: =============== Subrion v4.0.5 CMS - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1893 Release Date: ============= 2016-08-03 Vulnerability Laboratory ID VL-ID: ==================================== 1893 Comm...

The vulnerability of the Linter Bastion database management system allows a malicious individual to increase their privileges.

The vulnerability in the RPC server linstmgr.exe was due to an erroneous assumption that only users with administrative privileges have access to connect to the server. This oversight, combined with the fact that the RPC server operates with the “SYSTEM” user account, allows for an increase in...

The vulnerability of the Linter Bastion database management system allows a malicious individual to disrupt the normal operation of the database management system.

The RPC call with number 0x12 "0x0040C73C" allows a malicious individual to alter the configuration of the kernel startup file of the Linter Bastion database management system, thereby potentially disrupting the normal operation of the database management system...

The vulnerability of the Linter Bastion database management system allows a malicious individual to execute arbitrary code.

The decompression algorithm in the zlib library version 1.1.3, which is part of the Linter Bastion database management system, allows for the use of the inflateEnd function to clean the memory more than once double-free. Exploiting this vulnerability enables attackers to execute arbitrary code by...

The vulnerability of the Linter Bastion database management system allows a malicious individual to execute arbitrary code with system privileges, as well as bypass the “closed environment” protection mechanism.

The dbcwnt.exe module contains a vulnerable function address 0x4017d4, which reads the value of the NETMBX environment variable into a buffer in the stack, without controlling the size of the copied data. This vulnerability allows a local attacker to execute arbitrary code. Additionally, this...

phpMyAdmin SQL Injection Vulnerability

phpmyadmin is an online management tool for MySQL databases. A SQL injection vulnerability exists in phpmyadmin versions 4.6.x, 4.4.x, which can be exploited by an attacker to run arbitrary commands with root privileges...

[SECURITY] Fedora 23 Update: phpMyAdmin-4.6.2-1.fc23

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

Techsoft Web Solutions CMS SQL Injection Vulnerability

TECHSOFT is a WEB solution. A remote SQL injection vulnerability exists in Techsoft Web Solutions CMS. A remote attacker is able to execute malicious sql commands to connect to dbms...

The vulnerability of the MySQL database management system allows attackers to manipulate the accessibility of information.

The vulnerability of the MySQL database management system is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise accessibility by affecting the FTS server...

Stanford University - Multiple SQL Injection Vulnerabilities

Document Title: =============== Stanford University - Multiple SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1829 Release Date: ============= 2016-05-08 Vulnerability Laboratory ID VL-ID: ==================================...

[SECURITY] Fedora 24 Update: php-5.6.21-1.fc24

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

los818 CMS SQL Injection Vulnerability

A sql injection vulnerability exists in los818 Content Management System, which allows remote attackers to execute their own sql commands on the web application or connect to dbms...

New Era Company CMS SQL Injection Vulnerability

A remote sql injection vulnerability exists in the New Era Company content management system. A remote attacker is able to execute sql commands in the application and connect to dbms...