YourTube 2.0 - Arbitrary Database Disclosure

YourTube 2.0 - Arbitrary Database Disclosure exploit : YourTube info : http://www.ac4p.com //= DORK: "powered by yourtube" //= found by: Security Code Team - thanks for sniper code and Qabandi -- //= our home: WwW.Sec-Code.com //= greats 4 our members in our home -- /// // - Upload this file to...

4images 1.7.7 Bypass / Cross Site Scripting

|| || | || o,7 || . o7 || q||| o\, : / / . =By: Qabandi =Email: iqaahotmail.fr From Kuwait, PEACE... =Vuln: 4images = 1.7.7 - filter bypass HTML injection/XSS =INFO: =BUY: =DORK: -=/:Conditions:=- --------------------------------------------------------------------------------- ; Magic quotes...

Fedora Core 10 FEDORA-2009-3761 (prewikka)

The remote host is missing an update to prewikka announced via advisory FEDORA-2009-3761. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

Fedora Core 10 FEDORA-2009-3761 (prewikka)

The remote host is missing an update to prewikka announced via advisory FEDORA-2009-3761. OpenVAS Vulnerability Test $Id: fcore20093761.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3761 prewikka Authors: Thomas Reinke Copyright: Copyright c 2009...

Fedora Core 9 FEDORA-2009-3789 (prewikka)

The remote host is missing an update to prewikka announced via advisory FEDORA-2009-3789. OpenVAS Vulnerability Test $Id: fcore20093789.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3789 prewikka Authors: Thomas Reinke Copyright: Copyright c 2009...

Fedora Core 9 FEDORA-2009-3789 (prewikka)

The remote host is missing an update to prewikka announced via advisory FEDORA-2009-3789. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

Fedora 9 : prewikka-0.9.14-2.fc9 (2009-3789)

The permissions on the prewikka.conf file are world readable and contain the sql database password used by prewikka. This update makes it readable just by the apache group. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

trim()vulnerability crack and protection+articles the whole story-vulnerability warning-the black bar safety net

With the following code: % dim name,title name=trimrequest. form"name" password=trimrequest. form"password" if name=""or password="" then response. redirect "error. asp? error=name&name=null" myDSN="DSN=test;uid=test;pwd=test" set cn=server. createobject"adodb. connection" cn. open myDSN...

EZ-Blog beta1 - Delete All Posts SQL Injection

EZ-Blog beta1 - Delete All Posts SQL Injection Salvatore "drosophila" Fresta Application: EZ-Blog http://sourceforge.net/projects/ez-blog/ Version: Beta 1 Bug: Multiple SQL Injection Exploitation: Remote Date: 1 Mar 2009 Discovered by: Salvatore "drosophila" Fresta Author: Salvatore "drosophila"...

Wordl Recipe 2.11 Cross Site Scripting

Armorize Technologies Security Advisory Armorize-ADV-2008-0001 Title: Multiple XSS Vulnerabilities in World Recipe 2.11 Date: 2008/12/15 Status: Full Class: Input Validation Error Bugtraq ID: N/A Category: Cross Site Scripting Language: ASP.NET C Description Armorize-ADV-2008-0001 discloses...

Multiple XSS Vulnerabilities in World Recipe 2.11

Armorize Technologies Security Advisory Armorize-ADV-2008-0001 Title: Multiple XSS Vulnerabilities in World Recipe 2.11 Date: 2008/12/15 Status: Full Class: Input Validation Error Bugtraq ID: N/A Category: Cross Site Scripting Language: ASP.NET C Description Armorize-ADV-2008-0001 discloses...

Design/Logic Flaw

The Websense Reporter Module in Websense Enterprise 6.3.2 stores the SQL database system administrator password in plaintext in CreateDbInstall.log, which allows local users to gain privileges to the database...

CVE-2008-4646

The CVE concerns the Websense Reporter Module in Websense Enterprise 6.3.2. Affected component: Websense Reporter Module; vulnerability: the SQL database system administrator password is stored in plaintext in CreateDbInstall.log. Root cause: credentials are written to a log file, exposing the pa...

reddot-sql.txt

RedDot CMS SQL injection vulnerability CVE Number: CVE-2008-1613 http://www.irmplc.com/index.php/167-Advisory-026 Vulnerability Type/Importance: SQL injection/Critical Problem Discovered: 12 February 2008 Vendor Contacted: 19 February 2008 Advisory Published: 21 April 2008 Abstract: The RedDot CM...

Debian Security Advisory DSA 1079-1 (mysql-dfsg)

The remote host is missing an update to mysql-dfsg announced via advisory DSA 1079-1. OpenVAS Vulnerability Test $Id: deb10791.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1079-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 1073-1 (mysql-dfsg-4.1)

The remote host is missing an update to mysql-dfsg-4.1 announced via advisory DSA 1073-1. OpenVAS Vulnerability Test $Id: deb10731.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1073-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-1079-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DSA-1463-1 postgresql-7.4 - several

Bulletin has no description...

Design/Logic Flaw

WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid p parameter in an rss2 action to the default URI, which reveals the full path and the SQL database structure...

CVE-2008-0191

WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid p parameter in an rss2 action to the default URI, which reveals the full path and the SQL database structure...