CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

myhack58•added 2007/08/10 12:0 a.m.•13 views

SQL SERVER Database Password vulnerability-vulnerability warning-the black bar safety net

Track a bit the SQL SERVER Database Server login process, and found that the password calculation is very vulnerable, a SQL SERVER Database Password vulnerability embodied in two aspects: 1, A network login when the password encryption algorithm 2, The database storage of the password encryption...

7.9AI score

securityvulns•added 2007/06/18 12:0 a.m.•234 views

Fusetalk SQL injection submission.

Greetings, I have found sql injection in FuseTalk 2.0 during a legitmate audit. Resending because I got MIME errors to [email protected]. I have exchanged emails with [email protected] who needed more information when I originally sent an email to [email protected] Operating...

7.7AI score

securityvulns•added 2007/03/06 12:0 a.m.•39 views

MOPB-13-2007:PHP 4 Ovrimos Extension Multiple Vulnerabilities

Summary The Ovrimos extension is an external contributed extension for the Ovrimos SQL Server, which is a client/server, transactional RDBMS combined with Web capabilities and fast transactions. While looking at the code it was discovered that does not use resources to keep track of connections a...

2.3AI score

Packet Storm•added 2007/02/28 12:0 a.m.•24 views

unorg-sql.txt

un.org SQL Injection vulnerabilities ------------------------------------ by s0cratex I found a small vulnerability in un.org website... The bug is type SQL Injection: http://www.un.org/spanish/News/fullstorynews.asp?NewsID=7702 AND 1 IN SELECT @@version-- or...

7.4AI score

securityvulns•added 2007/02/06 12:0 a.m.•49 views

Uphotogallery Multiple Cross-Site Scripting Vulnerability

Uphotogallery Multiple Cross-Site Scripting Vulnerability Uphotogallery has been developed to run exclusively on web sites hosted on Windows Servers with Internet Information Server 4.0 or higher and ASP 3.0 installed. No other Platforms are supported. Uphotogallery supports both Microsoft Access...

0.2AI score

myhack58•added 2007/01/19 12:0 a.m.•28 views

System safety SA weak passwords bring security risks-vulnerability warning-the black bar safety net

The presence of the Microsoft SQL Server SA of the weak password vulnerability of the computer has been cyber attackers favor of one of the objects, through this loophole, you can easily get the Server Management permission, and thus a threat to network and data security. As a network...

7.6AI score

securityvulns•added 2007/01/17 12:0 a.m.•48 views

InstantForum.NET Multiple Cross-Site Scripting Vulnerability

InstantForum.NET Multiple Cross-Site Scripting Vulnerability ASP.NET based discussion forum. Full administration, WYSIWYG editor, Permission based forum access, Assign forum moderators, VS.NET solution available. InstantForum.NET is the most comprehensive, high performance ASP.NET & SQL Server...

0.7AI score

Packet Storm•added 2007/01/16 12:0 a.m.•33 views

instant-xss.txt

7.4AI score

myhack58•added 2006/12/29 12:0 a.m.•30 views

About the database the simple intrusion and rogue damage-vulnerability warning-the black bar safety net

For domestic and foreign a lot of news, BBS and e-Commerce site using ASP+SQL design, and write an ASP programmer many many have just graduated, so, ASP+SQL attack success rate is relatively high. This type of attack method with the NT version and SQL version is not much relationship, there is no...

0.3AI score

securityvulns•added 2006/12/15 12:0 a.m.•38 views

Microsoft Project Server 2003 information leak

Username and password for Microsoft SQL Server account is sent by client request...

1.7AI score

Exploits0References1Affected Software1

Packet Storm•added 2006/11/29 12:0 a.m.•23 views

15061124.txt

!/usr/bin/perl INFORMATIONS ============ Affected.scr..: Cahier de texte V2.0 Poc.ID........: 15061124 Type..........: Predictable backup filename, Source disclosure Risk.level....: High Conditions....: registerglobals = on Src.download..: www.etab.ac-caen.fr/bsauveur/cahierdetexte/ Poc.link........

7.4AI score

securityvulns•added 2006/10/19 12:0 a.m.•40 views

Multiple vulnerabilities in Highwall Enterprise and Highwall Endpoint management interface

Multiple vulnerabilities in Highwall Enterprise and Highwall Endpoint 4.0.2.11045 management interface SUMMARY Highwall Enterprise and Highwall Endpoint wireless IDS management interface contain multiple vulnerabilities which can lead to privilege escalation and code execution. DETAILS Web...

2.2AI score

Symantec•added 2006/10/10 12:0 a.m.•12 views

Microsoft XML Core Services Information Disclosure Vulnerability

Description Microsoft XML Core Services is prone to an information-disclosure vulnerability. This vulnerability is caused by an error in how the affected component handles server redirects. An attacker can exploit this vulnerability by enticing a victim user into visiting a malicious web page...

7.6AI score

Exploits0References2Affected Software5

Symantec•added 2006/10/10 12:0 a.m.•14 views

Microsoft Windows XML Core Services XSLT Buffer Overrun Vulnerability

Description Microsoft Windows is prone to a remotely exploitable buffer-overrun condition in the XSLT implementation of XML core services. An attacker can exploit this issue to execute arbitrary code on an unsuspecting victim's computer. This may facilitate a remote compromise. Technologies...

0.3AI score

Exploits0References2Affected Software5

Saint•added 2006/08/07 12:0 a.m.•31 views

Microsoft SQL Server Hello buffer overflow

Added: 08/07/2006 CVE: CVE-2002-1123 BID: 5411 OSVDB: 10132 Background Microsoft SQL Server is a database server package for Windows platforms. Problem Microsoft SQL Server 2000 is affected by a buffer overflow vulnerability in the code which handles user authentication. This allows a remote...

Saint•added 2006/08/07 12:0 a.m.•45 views

Microsoft SQL Server Hello buffer overflow

Saint•added 2006/08/07 12:0 a.m.•21 views

Microsoft SQL Server Hello buffer overflow

Saint•added 2006/08/07 12:0 a.m.•37 views

Microsoft SQL Server Hello buffer overflow

myhack58•added 2006/06/15 12:0 a.m.•17 views

Shield SQLFindCandy database scanning-vulnerability warning-the black bar safety net

One, SQLFindCandy scan SQLFindCandy write it the people called the village of rain he said it was Cool, Oh the others are also good） Software Description The following functions: 1. To find a network all the SQl Server2000 Server! 2. For network own to modify the SQL Server Portnon-1 4 3 3The...

0.1AI score