SQL SERVER Database Password vulnerability-vulnerability warning-the black bar safety net

Track a bit the SQL SERVER Database Server login process, and found that the password calculation is very vulnerable, a SQL SERVER Database Password vulnerability embodied in two aspects: 1, A network login when the password encryption algorithm 2, The database storage of the password encryption...

[SA16264] Easy PX 41 CMS Cross-Site Scripting and Information Disclosure

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

CVE-2003-1213

The default installation of MaxWebPortal 1.30 stores the portal database under the web document root with insecure access control, which allows remote attackers to obtain sensitive information via a direct request to database/db2000.mdb...

CVE-2005-1427

Affected component: Uapplication Uphotogallery. Vulnerability: storing the database under the web document root allows remote attackers to access sensitive data via a direct request to uphotogallery.mdb. Impact: exposure of information (confidentiality impact Partial; per CVSS). Notes: the provid...

CVE-2005-0853

The CVE-2005-0853 entry concerns betaparticle blog (bp blog) where the database files are stored under the web root, enabling direct access to sensitive data via HTTP requests. Affected files are (1) dbBlogMX.mdb for versions before 3.0, or (2) Blog.mdb for versions 3.0 and later, with vector 2 a...

CVE-2005-0853

betaparticle blog bp blog stores the database under the web root, which allows remote attackers to obtain sensitive information via a direct request to 1 dbBlogMX.mdb for versions before 3.0, or 2 Blog.mdb for versions 3.0 and later. NOTE: it was later reported that vector 2 also affects versions...