Nmap NSE net: mongodb-databases

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Nmap NSE net: couchdb-databases

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Nmap NSE net: mysql-databases

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Hack Of PBS.org: 0Day Or Patch Forensics?

A high-profile attack on PBS, the U.S. Public Broadcasting System, was made possible by a previously unknown hole in the MoveableType content management software, according to the hacking group that claimed responsibility for the hack. However, security experts say that the hole may have been...

Hacker Pleads Guilty To Theft of 600K Credit Cards, Could Get 10 Years

A 26 year-old Georgia man pleaded guilty in federal court in Virginia to the theft of hundreds of thousands of credit cards and a years-long fraud scheme that netted him more than $100,000 in illicit profits – money he used to buy himself a BMW and luxury clothing. Rogelio Hackett of Lithonia,...

Information disclosure

Skype for Android stores sensitive user data without encryption in sqlite3 databases that have weak permissions, which allows local applications to read user IDs, contacts, phone numbers, date of birth, instant message logs, and other private information...

Barracuda Networks Hacking via SQL Injection !

Barracuda Networks Hacking via SQL Injection ! Barracuda Networks Inc. combines premises-based gateways and software, virtual appliances, cloud services, and sophisticated remote support to deliver comprehensive content security, data protection and application delivery solutions. The company's...

ESET Nod32 Romania Hacked !

Today guy from InSecurity.Ro named sway1990 found again a critical vulnerability MySQL Injection in their website. Some extracted informations: Version – 5.1.41-3ubuntu12.10 Main DB – c1eset HostName – web.axelsoft.ro User – c1eset@localhost DataBases: informationschema c1eset Tables of main db:...

[SECURITY] Fedora 14 Update: whatsup-1.12-1.fc14

Whatsup is a cluster node up/down detection utility. Whatsup can quickly calculate and output the up and down nodes of a cluster. Whatsup allows some tools, such as Pdsh, to operate more quickly by not operating on down nodes. Whatsup calculates the up and down nodes of a cluster through one of...

[SECURITY] Fedora 13 Update: whatsup-1.12-1.fc13

Whatsup is a cluster node up/down detection utility. Whatsup can quickly calculate and output the up and down nodes of a cluster. Whatsup allows some tools, such as Pdsh, to operate more quickly by not operating on down nodes. Whatsup calculates the up and down nodes of a cluster through one of...

[SECURITY] Fedora 13 Update: postgresql-8.4.7-1.fc13

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

Zwii 2.1.1 - Remote File Inclusion

Exploit Title: Zwii v 2.1.1 Remote file include vulnerbility Google Dork: Propulsé par Zwii 2.1.1 Date: 08/01/2011 Author: Abdi Mohamed Software Link: http://scripts.toocharger.com/fiches/scripts/zwii/5147.htm Version: v 2.1.1 Tested on: ubuntu + centos Email : [email protected] -...

SQL injection authentication bypass

Added: 01/04/2011 Background Structured Query Language SQL is the most common language understood by modern relational databases. Problem A web program uses input parameters within an SQL query in an unsafe manner. This could allow a remote attacker to manipulate the authentication query via a...

MantisBT <=1.2.3 (db_type) Cross-Site Scripting & Path Disclosure

Exploit for php platform in category web applications Vendor: MantisBT Group Product web page: http://www.mantisbt.org Version affected: 1.2.4 Summary: MantisBT is a free popular web-based bugtracking system. It is written in the PHP scripting language and works with MySQL, MS SQL, and PostgreSQL...

[SECURITY] Fedora 13 Update: phpMyAdmin-3.3.8.1-1.fc13

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web. Currently it can create and drop databases, create/drop/alter tables, delete/edit/add fields, execute any SQL statement, manage keys on fields, manage privileges, export data into various formats and ...

CVE-2010-4484

Google Chrome before 8.0.552.215 does not properly handle HTML5 databases, which allows attackers to cause a denial of service application crash via unspecified vectors...

CVE-2010-4484

Google Chrome before 8.0.552.215 does not properly handle HTML5 databases, which allows attackers to cause a denial of service application crash via unspecified vectors...

Hardcoded credentials

Google Chrome before 8.0.552.215 does not properly handle HTML5 databases, which allows attackers to cause a denial of service application crash via unspecified vectors...

CVE-2010-4484

Google Chrome before 8.0.552.215 does not properly handle HTML5 databases, which allows attackers to cause a denial of service application crash via unspecified vectors...

CVE-2010-4484

Removed by vendor...