CVE-2007-4818

CVE-2007-4818 concerns multiple PHP remote file inclusion vulnerabilities in Txx CMS 0.2 . The flaw allows remote attackers to execute arbitrary PHP code by supplying a URL in the doc_root parameter to particular module files: (1) addons/plugin.php, (2) addons/sidebar.php, (3) mail/index.php, and...

Code injection

Cisco Content Switching Modules CSM 4.2 before 4.2.3a, and Cisco Content Switching Module with SSL CSM-S 2.1 before 2.1.2a, allow remote attackers to cause a denial of service CPU consumption or reboot via sets of out-of-order TCP packets with unspecified characteristics, aka CSCsd27478...

Design/Logic Flaw

Cisco Content Switching Modules CSM 4.2 before 4.2.7, and Cisco Content Switching Module with SSL CSM-S 2.1 before 2.1.6, when service termination is enabled, allow remote attackers to cause a denial of service reboot via unspecified vectors related to high network utilization, aka CSCsh57876...

CVE-2007-4788

Cisco Content Switching Modules CSM 4.2 before 4.2.3a, and Cisco Content Switching Module with SSL CSM-S 2.1 before 2.1.2a, allow remote attackers to cause a denial of service CPU consumption or reboot via sets of out-of-order TCP packets with unspecified characteristics, aka CSCsd27478...

CVE-2007-4789

Cisco Content Switching Modules CSM 4.2 before 4.2.7, and Cisco Content Switching Module with SSL CSM-S 2.1 before 2.1.6, when service termination is enabled, allow remote attackers to cause a denial of service reboot via unspecified vectors related to high network utilization, aka CSCsh57876...

CVE-2007-4789

Cisco Content Switching Modules CSM 4.2 before 4.2.7, and Cisco Content Switching Module with SSL CSM-S 2.1 before 2.1.6, when service termination is enabled, allow remote attackers to cause a denial of service reboot via unspecified vectors related to high network utilization, aka CSCsh57876...

Txx CMS 0.2 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. :::::::::::::::::::::::::::::::::::::::::::::::::::....................... ::| \ | | \ | | / | ::| | | | | | | | ::| . | |/ / \ | . |/ | ' \ / \ | | | '/ \ \ /\ / / ::| |\ | | | / | |\ | | | | | | | | / | || | | /\ V V / ::|| ||\| || |,|| || ||| || | //...

Txx CMS 0.2 - Multiple Remote File Inclusions

Txx CMS 0.2 - Multiple Remote File Inclusions :::::::::::::::::::::::::::::::::::::::::::::::::::....................... ::| \ | | \ | | / | ::| | | | | | | | ::| . | |/ / \ | . |/ | ' \ / \ | | | '/ \ \ /\ / / ::| |\ | | | / | |\ | | | | | | | | / | || | | /\ V V / ::|| ||\| || |,|| || |||...

Txx CMS 0.2 - Multiple Remote File Inclusions

:::::::::::::::::::::::::::::::::::::::::::::::::::....................... ::| \ | | \ | | / | ::| | | | | | | | ::| . | |/ / \ | . |/ | ' \ / \ | | | '/ \ \ /\ / / ::| |\ | | | / | |\ | | | | | | | | / | || | | /\ V V / ::|| ||\| || |,|| || ||| || | // :::::::::::::::::::::::::::::We...

Design/Logic Flaw

Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to 1 rename items, 2 read and modify item properties, or 3 lock and replace items via unknown vectors in a the WebDAV module; and 4 edit unspecified data files using "linked items" in WebDAV and b Reupload modules...

CVE-2007-4650

Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to 1 rename items, 2 read and modify item properties, or 3 lock and replace items via unknown vectors in a the WebDAV module; and 4 edit unspecified data files using "linked items" in WebDAV and b Reupload modules...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Olate Download od 3.4.2 allow remote attackers to inject arbitrary web script or HTML via 1 the PHPSELF variable in modules/core/uim.php and 2 url tags in a comment in modules/core/fldm.php...

Remote Memory Read in Diskeeper 9 - 2007

Diskeeper Remote Memory Disclosure Credit: Pravus pravus -a-t- hush -d-o-t- com Greetz: Scientology for making a remotely accessible disk defragmenter. Felix, Jenna, and Isaac. Vulnerability Description: This vulnerability involves a memory comparison function that is remotely, anonymously...

Diskeeper 9 - Remote Memory Disclosure

Diskeeper 9 - Remote Memory Disclosure / Diskeeper Remote Memory Disclosure Credit: Pravus pravus -a-t- hush -d-o-t- com Greetz: Scientology for making a remotely accessible disk defragmenter. Felix, Jenna, and Isaac. Vulnerability Description: This vulnerability involves a memory comparison...

Neuron Blog Admin Permission Bypass and Remote File Upload Vulnerability

Neuron Blog Admin Permission Bypass and Remote File Upload Vulnerability ------------------------------------------------------------------------ Script : Neuron Blog Version : 1.1 Site : http://dev.localhost.be/?q=detail-script&id=11 Founder : Rizgar Contact : [email protected] and...

Novell Client 4.91 SP4 nwspool.dll buffer overflow

Added: 08/10/2007 CVE: CVE-2007-6701 BID: 25092 OSVDB: 37319 Background Novell Client software provides NetWare connectivity to Windows platforms. Problem The nwspool.dll library in Novell Client is affected by buffer overflow vulnerabilities in several different functions, allowing remote...

Sql injection

Multiple SQL injection vulnerabilities in module.php in LANAI la-nai CMS 1.2.14 allow remote attackers to execute arbitrary SQL commands via 1 the mid parameter in an faqviewgroup action in the FAQ Modules, 2 the cid parameter in the EZSHOPINGCART Modules, or 3 the gid parameter in a view action ...

CVE-2007-4210

CVE-2007-4210 affects LANAI (la-nai) CMS 1.2.14. The issue consists of multiple SQL injection vulnerabilities in module.php, allowing remote attackers to execute arbitrary SQL commands via three parameters: (1) mid in the FAQ Modules (faqviewgroup action), (2) cid in EZSHOPPINGCART Modules, and (...

lanai-sql.txt

newhackdotorg la-nai cmsv1.2.14 - Remote SQL Injection Vendor : http://www.redlinesoft.net/module.php?modname=content&cid=9 Download : http://sourceforge.net/project/showfiles.php?groupid=191629 Found By : k1tk4t - k1tk4t4tnewhack.org http://newhack.org Location : Indonesia bug terdapat pada la-n...

la-nai cms 1.2.14 Multiple Remote SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications =============================================================== la-nai cms 1.2.14 Multiple Remote SQL Injection Vulnerabilities =============================================================== newhackdotorg la-nai cmsv1.2.14 - Remote SQL...