CVE-2013-0880

Removed by vendor...

Team GhostShell Exposes 700k accounts from African universities and businesses

The Hacktivist group Team GhostShell today exposes data including 700,000 accounts / records from African universities and businesses during a campaign named ProjectSunRise. Hacker mention, "GhostShell's new project focuses on Africa, mainly, for the time being, South Africa and to some extent...

Team GhostShell Exposes 700k accounts from African universities and businesses

The Hacktivist group Team GhostShell today exposes data including 700,000 accounts / records from African universities and businesses during a campaign named ProjectSunRise. Hacker mention, "GhostShell's new project focuses on Africa, mainly, for the time being, South Africa and to some extent...

PrestaShop E-Commerce v1.5.x->1.5.2 Multiple Vulnerabilities

This is new Multiple Vulnerabilities POC/Bugs in PrestaShop E-Commerce 1.5.x-1.5.2 The Attacker can use this bug to access and get some important information like backups/dbs, and maybe he can find some secret information like visa/paypal accounts in the backups etc... This is private exploit. Yo...

BSNL telecom server hacked by Anonymous Group against Section 66A of IT Act

The Homepage of BSNL Bharat Sanchar Nigam Limited http://www.bsnl.co.in/ was hacked today morning by hacking group Anonymous. BSNL is an Indian state-owned telecommunications company, the largest provider of fixed telephony and fourth largest mobile telephony provider in India, and is also a...

The South data website management system injection vulnerabilities&background get WebShell-vulnerability warning-the black bar safety net

/Databases/0791idc. mdb 1. Injection point:newssearch. asp? key=7%' union select 0,username%2BCHR1 2 4%2Bpassword,2,3,4,5,6,7,8,9 from admin where 1 or '%'='&otype=title&Submit=%CB%D1%CB%F7 It may beanother versionnewssearch. asp? key=7%' union select 0,username%2BCHR1 2...

Narilam malware target Iran Financial SQL Databases

Symantec recently identified a database-corrupting piece of malware targeting systems mostly in Iran, but despite early speculation that it could be related to the likes of Stuxnet and Flame, it appears to be targeting small businesses rather than the country's infrastructure. Malware Dubbed...

Symantec Warns of New Malware Targeting SQL Databases

Symantec is warning of a new bit of malware that appears to be modifying corporate databases, particularly in the Middle East, though its showing up elsewhere in the world too. W32.Narilam, first discovered Nov. 15, follows a similar pattern of other worms by copying itself onto infected machines...

IBM Db2 SQL/PSM Stored Procedure Debugging Buffer Overflow Vulnerability - Linux

IBM Db2 is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...

[SECURITY] Fedora 18 Update: pnp4nagios-0.6.16-4.fc18

PNP is an addon to nagios which analyzes performance data provided by plugi ns and stores them automatically into RRD-databases...

Fedora Update for pnp4nagios FEDORA-2012-13244

Check for the Version of pnp4nagios OpenVAS Vulnerability Test Fedora Update for pnp4nagios FEDORA-2012-13244 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

[SECURITY] Fedora 17 Update: pnp4nagios-0.6.16-4.fc17

PNP is an addon to nagios which analyzes performance data provided by plugi ns and stores them automatically into RRD-databases...

Fedora Update for python-sqlalchemy0.5 FEDORA-2012-3373

Check for the Version of python-sqlalchemy0.5 OpenVAS Vulnerability Test Fedora Update for python-sqlalchemy0.5 FEDORA-2012-3373 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Scientific Linux Security Update : bind-dyndb-ldap on SL6.x i386/x86_64 (20120803)

The dynamic LDAP back end is a plug-in for BIND that provides back-end capabilities to LDAP databases. It features support for dynamic updates and internal caching that help to reduce the load on LDAP servers. A flaw was found in the way bind-dyndb-ldap performed the escaping of names from DNS...

[SECURITY] Fedora 16 Update: perl-DBD-Pg-2.19.2-1.fc16

DBD::Pg is a Perl module that works with the DBI module to provide access to PostgreSQL databases...

Scientific Linux Security Update : python-sqlalchemy on SL6.x (20120307)

SQLAlchemy is an Object Relational Mapper ORM that provides a flexible, high-level interface to SQL databases. It was discovered that SQLAlchemy did not sanitize values for the limit and offset keywords for SQL select statements. If an application using SQLAlchemy accepted values for these...

UBUNTU-CVE-2012-3398

Algorithmic complexity vulnerability in Moodle 1.9.x before 1.9.19, 2.0.x before 2.0.10, 2.1.x before 2.1.7, and 2.2.x before 2.2.4 allows remote authenticated users to cause a denial of service CPU consumption by using the advanced-search feature on a database activity that has many records...

RedHat Update for bind-dyndb-ldap RHSA-2012:0683-01

Check for the Version of bind-dyndb-ldap OpenVAS Vulnerability Test RedHat Update for bind-dyndb-ldap RHSA-2012:0683-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...

Microsoft IIS MDAC msadcs.dll RDS Arbitrary Remote Command Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

CentOS 6 : bind-dyndb-ldap (CESA-2012:0683)

An updated bind-dyndb-ldap package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...