5590 matches found
Fedora Update for trac FEDORA-2010-0007
Check for the Version of trac OpenVAS Vulnerability Test Fedora Update for trac FEDORA-2010-0007 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
dotProject 2.1.3 - Cross-Site Scripting Improper Permissions
dotProject 2.1.3 - Cross-Site Scripting Improper Permissions Exploit Title: dotProject 2.1.3 XSS and Improper Permissions Date: Dec 15 2009 Author: h00die [email protected] & S0lus Software Link:...
dotProject 2.1.3 XSS and Improper Permissions
Exploit for unknown platform in category web applications ============================================= dotProject 2.1.3 XSS and Improper Permissions ============================================= Exploit Title: dotProject 2.1.3 XSS and Improper Permissions Date: Dec 15 2009 Author: h00die Softwar...
dotProject 2.1.3 - Cross-Site Scripting / Improper Permissions
Exploit Title: dotProject 2.1.3 XSS and Improper Permissions Date: Dec 15 2009 Author: h00die [email protected] & S0lus Software Link: http://sourceforge.net/projects/dotproject/files/dotproject/dotProject%20Version%202.1.3/dotproject213.zip/download Version: 2.1.3 Tested on: BT4 pre-final Greetz to...
[SECURITY] Fedora 11 Update: trac-0.11.6-1.fc11
Trac is an integrated system for managing software projects, an enhanced wiki, a flexible web-based issue tracker, and an interface to the Subversion revision control system. At the core of Trac lies an integrated wiki and issue/bug database. Using wiki markup, all objects managed by Trac can...
Joomla J-Projects Blind SQL Injection
Joomla Component comj-projects Blind SQL Injection Vulnerability Author : Pyske | Bug Researchers Name : comj-projects Bug Type : Blind SQL Injection Infection : Admin login bilgileri al?nabilir. Demo Vuln. : TRUE+...
Joomla Component com_j-projects Blind SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================= Joomla Component comj-projects Blind SQL Injection Vulnerability ================================================================= Joomla Component comj-projects Blind SQL...
Joomla! Component com_j-projects - Blind SQL Injection
Joomla! Component comj-projects - Blind SQL Injection Joomla Component comj-projects Blind SQL Injection Vulnerability Author : Pyske Name : comj-projects Bug Type : Blind SQL Injection Infection : Admin login bilgileri al?nabilir. Bug Fix Advice : Zararli karakterler filtrelenmelidir. path...
Joomla! Component com_j-projects - Blind SQL Injection
Joomla Component comj-projects Blind SQL Injection Vulnerability Author : Pyske Name : comj-projects Bug Type : Blind SQL Injection Infection : Admin login bilgileri al?nabilir. Bug Fix Advice : Zararli karakterler filtrelenmelidir. path...
[SECURITY] Fedora 12 Update: trac-0.11.6-1.fc12
Trac is an integrated system for managing software projects, an enhanced wiki, a flexible web-based issue tracker, and an interface to the Subversion revision control system. At the core of Trac lies an integrated wiki and issue/bug database. Using wiki markup, all objects managed by Trac can...
Q&A: Eugene Spafford on Cybercrime, Security Research
Threatpost editor Dennis Fisher talks with Eugene Spafford of Purdue’s CERIAS center about cybercrime, funding for long-term security research projects and whether the federal cybersecurity coordinator position matters. Fisher: Do you see any indications that there will be more funding coming fro...
New Security Consortium to Focus on Long-Term Projects
The three universities involved in the security consortium put together this week by Northrop Grumman will have wide latitude to pursue research projects as they see fit and will be under no obligation to work only on technology that fits Northrop’s future plans. The researchers, in fact, will be...
OpenCSP Multiple Remote File Include Vulnerability
No description provided by source. @================================================================================================================================================@ + Location : notepad + Situs : wwwdotmanadocodingdotnet + Contact : engelpemulaatgmaildotcom + Download Script :...
Microsoft Visual Studio dbp and sln File Handling Buffer Overflow (CVE-2006-1043)
The Microsoft Visual Studio 6.0 integrated development environment IDE suite is designed for building Windows based applications and Web solutions. The product contains several tools which can be used to design programs in languages such as C++, or Basic. A development environment in Visual Studi...
FreeRadius 1.1.8 - Zero-Length Tunnel-Password Denial of Service
FreeRadius 1.1.8 - Zero-Length Tunnel-Password Denial of Service !/usr/bin/env python FreeRadius Packet Of Death Matthew Gillespie 2009-09-11 Requires RadiusAttr http://trac.secdev.org/scapy/attachment/ticket/92/radiuslib.py http://www.braindeadprojects.com/blog/what/freeradius-packet-of-death/...
CVE-2008-7052
Unrestricted file upload vulnerability in profile.php in Pre Projects Pre Real Estate Listings allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in reimages/...
CVE-2008-7052
CVE-2008-7052 describes an unrestricted file upload flaw in profile.php of the Pre Projects Pre Real Estate Listings application. The vulnerability allows remote authenticated users to upload a file with an executable extension as a profile logo and later access it directly via the re_images/ pat...
Gartner Sees Better Days Ahead For Security Budgets
From SearchSecurity.com Robert Westervelt The dismal economy has put the brakes on a lot of security projects, but the need to maintain the basics and automate some security functions has fueled interest in managed security services and some specific security areas, according to analysts at Gartn...
Sql injection
Multiple SQL injection vulnerabilities in login.php in Pre Projects Pre Real Estate Listings allow remote attackers to execute arbitrary SQL commands via 1 the us parameter aka the Username field or 2 the ps parameter aka the Password field...
CVE-2008-6798
The CVE-2008-6798 entry describes multiple SQL injection vulnerabilities in login.php of Pre Projects Pre Real Estate Listings. The vulnerability allows remote attackers to execute arbitrary SQL commands via the us (Username) or ps (Password) parameters, enabling potential unauthorized data acces...