Ubuntu 14.04 LTS : MySQL vulnerabilities (USN-2384-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2384-1 advisory. Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to...

UBUNTU-CVE-2014-6484

Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to SERVER:DML...

PT-2014-7255 · Oracle +4 · Mysql Server +4

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 5.5.38 and earlier Oracle MySQL Server versions 5.6.19 and earlier Description: The issue affects the availability of the system, allowing remote attackers to exploit it via vectors related to SERVER:SSL:yaSSL...

USN-2291-1 mysql-5.5 vulnerabilities

Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to 5.5.38. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the...

UBUNTU-CVE-2014-4238

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows remote authenticated users to affect availability via vectors related to SROPTZR...

V3 Chat Live Support 3.0.4 - Insecure Cookie Handling Vulnerability

No description provided by source. ! ! ! OOOO O OOOOOOOOO ! ! O O O O O ! ! O O O ! ! O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO ! ! O OOO OOO O O O O OO O O O O OO O O O ! ! O OO OO O O OOOOOO O O O O O O OOOOOO ! ! O O OOOO O O O O O O O O O O O...

KTP Computer Customer Database CMS 1.0 - Blind SQL Injection Vulnerability

No description provided by source. ================================================ KTPCCD CMS Blind SQL Injection Vulnerability ================================================ ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

Active Web Helpdesk 2 - (Auth Bypass) SQL Injection Vulnerability

No description provided by source. ! ! ! OOOO O OOOOOOOOO ! ! O O O O O ! ! O O O ! ! O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO ! ! O OOO OOO O O O O OO O O O O OO O O O ! ! O OO OO O O OOOOOO O O O O O O OOOOOO ! ! O O OOOO O O O O O O O O O O O...

Mambo <= 4.5.2.1 - SQL Injection Exploit

No description provided by source. !/usr/bin/perl Mambo = 4.5.2.1, MySQL = 4.1 sql injection exploit by RST/GHC coded by 1dt.w0lf , 21.06.05 http://rst.void.ru , http://ghc.ru use IO::Socket; if @ARGV 3 $server = $ARGV0; $path = $ARGV1; $memberid = $ARGV2; $newsid = 1; $newsitemid = 1; $server =...

Cythosia 2.x Botnet - SQL Injection Vulnerability

No description provided by source. Exploit Title: Cythosia Botnet SQL-Injection Vulnerability Date: 11.12.2013 Exploit Author: GalaxyAndroid Vendor Homepage: unkn0wn Application Screenshots http://www.xylibox.com/2012/08/cythosia-botnet-vnloader.html Version: 2.x Tested on: Windows 7 with Xampp...

Woltlab Burningboard Addon Kleinanzeigenmarkt SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w Woltlab Burningboard Addon Kleinanzeigenmarkt SQL Injection Exploit Exploit by fred777 full np stuff 3 Greez to all teh l33t sh1t like : Core.am Back2hack.cc Free-hack.com fred777.de Usage: exploit.pl page userid Example: perl exploit.pl...

Active Web Helpdesk 2 - (CategoryID) Blind SQL Injection Vulnerability

No description provided by source. ! ! ! OOOO O OOOOOOOOO ! ! O O O O O ! ! O O O ! ! O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO ! ! O OOO OOO O O O O OO O O O O OO O O O ! ! O OO OO O O OOOOOO O O O O O O OOOOOO ! ! O O OOOO O O O O O O O O O O O...

digiSHOP 2.0.2 - SQL Injection Vulnerability

No description provided by source. ----------------------------------- TM | | | Y | | | | |. 1 ||||.| | | | |. | -|. |-' | |: | | |: | | |::.|:. | |::.| | --- ---' ---' | Private Place Of 0days | ----------------------------------- ^Exploit Title : ^Date : 23/7/2010 ^Vendor Site :...

Cythosia 2.x Botnet (C2 Web Panel) - SQL Injection

Exploit Title: Cythosia Botnet SQL-Injection Vulnerability Date: 11.12.2013 Exploit Author: GalaxyAndroid Vendor Homepage: unkn0wn Application Screenshots http://www.xylibox.com/2012/08/cythosia-botnet-vnloader.html Version: 2.x Tested on: Windows 7 with Xampp greets goes to: ChrisKSK, Protestant...

PT-2013-4632 · Mysql Server +2 · Mysql Server +2

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.5.31 and earlier MySQL Server versions 5.6.11 and earlier Description: The issue affects the availability of the system, allowing remote authenticated users to exploit it via unknown vectors related to Data Manipulatio...

Hitechvalley iNet CMS advanced SQL Injection vulnerability

Hitechvalley iNet is a CMS for nepalian webistes, which is used mainly by organizations, the govnerment and the Nepal Army. Exploit Title: Hitechvalley iNet CMS SQL Injection vulnerability Date: 24/02/2013 Author: Zyklon B - https://twitter.com/BZyklon Vendor or Software Link:...

MySQL 5.5 < 5.5.29 Multiple Vulnerabilities

The version of MySQL 5.5 installed on the remote host is earlier than 5.5.29 and is, therefore, affected by vulnerabilities in the following components : - Information Schema - InnoDB - MyISAM - Server - Server Locking - Server Optimizer - Server Parser - Server Partition - Server Privileges -...

PT-2012-5965 · Microsoft +1 · Windows 8 +4

Name of the Vulnerable Software and Affected Versions: Oracle MySQL version 5.5.28 Description: The issue is related to an untrusted search path vulnerability in the installation functionality of Oracle MySQL. This vulnerability might allow local users to gain privileges via a Trojan horse DLL in...

SN News 1.2 - &#039;visualiza.php&#039; SQL Injection

\n"; echo "Example:\n"; echo "php $argv0 http://www.website.com/snnews\n"; exit; $target = $argv1; ifsubstr$target, strlen$target-1!="/" $target .= "/"; $inject = $target . "visualiza.php?id=-0'%20"; $token = uniqid; $tokenhex = hex$token; echo " Trying to get informations...\n"; $infos =...

MySQL 5.1 < 5.1.62 Multiple Vulnerabilities

The version of MySQL 5.1 installed on the remote host is earlier than 5.1.62. It is, therefore, affected by the following vulnerabilities : - An error exists related to the included yaSSL component that could allow arbitrary code execution. CVE-2012-0882 - Errors exist related to 'Server...