NCSC Releases Security Advisory

The United Kingdom's National Cyber Security Centre NCSC has released an advisory to highlight Neuron and Nautilus tools used alongside Snake—malware that provides a platform to steal sensitive data. NCSC provides enhanced cybersecurity services to protect against cybersecurity threats. US-CERT...

Neuron News 1.0 Multiple SQL Injection and Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/26896/info Neuron News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and two cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting...

Онлайн семинары, источники.

В этой теме собираем информацию о ресурсах проводящих онлайн конференции по нашей тематике. На данный момент это: Вебинары: от Positive Technologies от Neuron hackspace Презентации: Так же можно послушать радио от Eset:...

WanHu ezEIP 2. 0 injection vulnerability 0day-vulnerability warning-the black bar safety net

System name: WanHu ezEIP System version: 2.0 Vulnerability found by: Akast N. S. T Security team: Neuron Security Team Vulnerability type: SQL injection Vulnerability file:/caseinfo. asp Vulnerability variable: Newid=1&cid=1 Software type: business software Development company: Guangzhou million...

Sql injection

SQL injection vulnerability in neuron news 1.0 allows remote attackers to execute arbitrary SQL commands via the q parameter to the default URI in patch/...

CVE-2007-6540

SQL injection vulnerability in neuron news 1.0 allows remote attackers to execute arbitrary SQL commands via the q parameter to the default URI in patch/...

CVE-2007-6541

Multiple cross-site scripting XSS vulnerabilities in neuron news 1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the topic parameter in a viewtopic action, or the 2 newsyear or 3 newsmonth parameter in a newsarchive action to the default URI in patch/...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in neuron news 1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the topic parameter in a viewtopic action, or the 2 newsyear or 3 newsmonth parameter in a newsarchive action to the default URI in patch/...

CVE-2007-6541

CVE-2007-6541 describes multiple cross-site scripting (XSS) vulnerabilities in the web application neuron news 1.0 . The flaw allows remote attackers to inject arbitrary web script or HTML via 1) the topic parameter in a viewtopic action, or 2) the newsyear or 3) the newsmonth parameter in a news...

CVE-2007-6540

SQL injection vulnerability in neuron news 1.0 allows remote attackers to execute arbitrary SQL commands via the q parameter to the default URI in patch/...

CVE-2007-6540

CVE-2007-6540: A SQL injection in neuron news 1.0 is triggered by the q parameter to the default URI in patch/. The vulnerability enables remote execution of arbitrary SQL commands. Root cause: improper handling of user input in the affected patch/ endpoint (no details on code path provided). Imp...

CVE-2007-6541

Multiple cross-site scripting XSS vulnerabilities in neuron news 1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the topic parameter in a viewtopic action, or the 2 newsyear or 3 newsmonth parameter in a newsarchive action to the default URI in patch/...

neuron news1.0 Multiple Remote Vulnerabilities (sql injection/xss)

...:::::neuron news1.0 Multiple Remote Vulnerabilities::::.... sql injection/xss Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By : virangar security team hadihadi & black.shadowes --------------------------------- special tnx to:MR.nosrati,MR.hesy,satan,Zahra & all...

neuron-multi.txt

...:::::neuron news1.0 Multiple Remote Vulnerabilities::::.... sql injection/xss Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By : virangar security team hadihadi & black.shadowes --------------------------------- special tnx to:MR.nosrati,MR.hesy,satan,Zahra & all...

Neuron News 1.0 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities

Neuron News 1.0 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/26896/info Neuron News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and two cross-site scripting issues, because it fails to...

Neuron News 1.0 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/26896/info Neuron News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and two cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attack...

neuron-lfi.txt

\|/// \ - - // Y! Underground Group @ @ ----oOOo---oOOo-------------------------------------------------- Portal : Neuron News 1.0 Download : http://downloads.localhost.be/scripts/neuronnews.zip Author : Dj7xpl HomePage : http://r00t.ir / http://Dj7xpl.2600.ir Type : Local File Inclusion...

Directory traversal

Directory traversal vulnerability in index.php in Neuron News 1.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the q parameter...

CVE-2007-5050

Directory traversal vulnerability in index.php in Neuron News 1.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the q parameter...

CVE-2007-5050

Directory traversal vulnerability in index.php in Neuron News 1.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the q parameter...