24 matches found
EUVD-2014-1252
Malware in sbrugna...
EUVD-2005-3870
Malware in sbrugna...
CVE-2014-125083
A vulnerability has been found in Anant Labs google-enterprise-connector-dctm up to 3.2.3 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username/domain leads to sql injection. The patch is named...
CVE-2014-125083
A vulnerability has been found in Anant Labs google-enterprise-connector-dctm up to 3.2.3 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username/domain leads to sql injection. The patch is named...
Sql injection
A vulnerability has been found in Anant Labs google-enterprise-connector-dctm up to 3.2.3 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username/domain leads to sql injection. The patch is named...
CVE-2014-125083 Anant Labs google-enterprise-connector-dctm sql injection
A vulnerability has been found in Anant Labs google-enterprise-connector-dctm up to 3.2.3 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username/domain leads to sql injection. The patch is named...
CVE-2014-125083 Anant Labs google-enterprise-connector-dctm sql injection
A vulnerability has been found in Anant Labs google-enterprise-connector-dctm up to 3.2.3 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username/domain leads to sql injection. The patch is named...
CVE-2014-125083
The CVE-2014-125083 entry applies to Anant Labs google-enterprise-connector-dctm up to version 3.2.3. The root cause is SQL injection via manipulation of the username and domain arguments in the affected functionality. The issue is rated critical (CVSS v3.1) with potential high impact to confiden...
google-enterprise-connector-dctm SQL注入漏洞
google-enterprise-connector-dctm is a Google Search Appliance connector for individual developers. A SQL injection vulnerability exists in google-enterprise-connector-dctm 3.2.3 and below, which can be exploited by an attacker to manipulate the parameter username/domain resulting in a sql injecti...
The vulnerabilities include those of the MobileIron Core, a secure mobile gateway for managing the lifecycle of mobile devices and applications; the MobileIron Sentry, an application for data monitoring; the MobileIron Monitor and Reporting Database (RDB), an application for collecting data about devices and software; and the MobileIron Enterprise Connector, which is related to access control deficiencies, allowing attackers to execute arbitrary code.
The vulnerabilities of the MobileIron Core, a secure mobile gateway; the MobileIron Sentry, a data monitoring application; the MobileIron Monitor and Reporting Database RDB, which collects data about devices and software; and the MobileIron Enterprise Connector are related to deficiencies in acce...
Akamai IT Challenge - 100 apps on EAA in 100 days
About a month or so ago I shared a quick video interview with Joe DeFelice. Joe is a Sr. Director Enterprise Security & Infrastructure Engineering here at Akamai. In the video Joe outlines a few of the major initiatives he and the team are working on, including moving towards eliminating the VPN...
Enterprise Connector 1.0.2 Main.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15984/info Enterprise Connector is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitati...
Enterprise Heart Enterprise Connector 1.0.2 send.php messageid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15578/info Enterprise Connector is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
Enterprise Heart Enterprise Connector 1.0.2 messages.php messageid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15578/info Enterprise Connector is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
CVE-2005-4563
CVE-2005-4563 describes a SQL injection vulnerability in Enterprise Heart Enterprise Connector 1.0.2 (main.php) allowing remote attackers to execute arbitrary SQL via the loginid parameter and bypass login authentication. This is a different vulnerability from CVE-2005-3875, which covers multiple...
Enterprise Connector 1.0.2 - main.php SQL Injection
Enterprise Connector 1.0.2 - main.php SQL Injection source: https://www.securityfocus.com/bid/15984/info Enterprise Connector is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...
Enterprise Connector v.1.02 Multiple SQL Vulnerabilities and Login Bypass
Enterprise Connector v.1.02 Multiple SQL Vulnerabilities and Login Bypass Author: Attila Gerendi Darkz Date: December 20, 2005 Package: Enterprise Connector http://www.enterpriseheart.com/site/modules/mydownloads/ Versions Affected: 1.02 Other versions may also be affected. Severity: SQL Injectio...
CVE-2005-3875
Multiple SQL injection vulnerabilities in Enterprise Connector 1.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the messageid parameter in 1 send.php or 2 a delete action in messages.php...
CVE-2005-3875
The CVE-2005-3875 entry describes SQL injection vulnerabilities in Enterprise Connector 1.0.2 and earlier. The affected component is the Enterprise Connector web interface, with the messageid parameter exploited via send.php or a delete action in messages.php to execute arbitrary SQL. This yields...
CVE-2005-3875
Multiple SQL injection vulnerabilities in Enterprise Connector 1.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the messageid parameter in 1 send.php or 2 a delete action in messages.php...