PHP sqlite_single_query和sqlite_array_query函数SQL注入漏洞

No description provided by source...

CVE-2011-1717

Skype for Android stores sensitive user data without encryption in sqlite3 databases that have weak permissions, which allows local applications to read user IDs, contacts, phone numbers, date of birth, instant message logs, and other private information...

Sqlmap v.0.9 - automatic SQL injection and database takeover tool !

Sqlmap v.0.9 - automatic SQL injection and database takeover tool ! sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a kick-ass detection engine, many niche features for...

[SECURITY] Fedora 15 Update: rubygem-rails-3.0.5-2.fc15

Rails is a framework for building web-application using CGI, FCGI, modruby, or WEBrick on top of either MySQL, PostgreSQL, SQLite, DB2, SQL Server, or Oracle with eRuby- or Builder-based templates...

OpenDNSSEC 1.2.1 latest version Released !

OpenDNSSEC 1.2.1 latest version Released ! Version 1.2.1 of OpenDNSSEC has now been released. ldns 1.6.9 is required for bugfixes. dnsruby-1.52 required for bugfixes. Bugfixes: Auditor: 'make check' now works when srcdir != builddir. Auditor: Include the 'make check' files in the tarball. Enforce...

iFileExplorer Free Directory Traversal

Exploit Title: iPod Touch/iPhone iFileExplorer Free Directory Traversal Date: 04/03/2011 UK date format Author: theSmallNothing Software Link: http://itunes.apple.com/gb/app/ifileexplorer-protect-multi/id355253462?mt=8 Version: 2.8 Tested on: iPod Touch 2G 4.1 import urllib, sqlite3 base =...

iOS iFileExplorer Free - Directory Traversal

iOS iFileExplorer Free - Directory Traversal Exploit Title: iPod Touch/iPhone iFileExplorer Free Directory Traversal Date: 04/03/2011 UK date format Author: theSmallNothing Software Link: http://itunes.apple.com/gb/app/ifileexplorer-protect-multi/id355253462?mt=8 Version: 2.8 Tested on: iPod Touc...

Hack Record Book

Записная книга для хранения и обработки найденных на сайтах уязвимостей. Можно сохранить: + Ссылку. + Описание уязвимости. + ТИЦ, PR можно узнать автоматически. + Alexa rate. + Google indexed|not filtered pages count. + Дату и время записи. + Рейтинг уязвимости. + Ваши личные заметки по данному...

Fedora 14 : proftpd-1.3.3c-1.fc14 (2010-17091)

This is an update to the current upstream maintenance release, which addresses two security issues that can be exploited by malicious users to manipulate certain data and compromise a vulnerable system. - A logic error in the code for processing user input containing the Telnet IAC Interpret As...

Fedora 13 : proftpd-1.3.3c-1.fc13 (2010-17098)

This is an update to the current upstream maintenance release, which addresses two security issues that can be exploited by malicious users to manipulate certain data and compromise a vulnerable system. - A logic error in the code for processing user input containing the Telnet IAC Interpret As...

openSUSE Security Update : dovecot12 (openSUSE-SU-2010:0923-1)

dovecot granted admin rights to all owner mailboxes CVE-2010-3706. When using multiple ACL entries for mailboxes the most specific one was not always applied CVE-2010-3707. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

openSUSE Security Update : dovecot12 (openSUSE-SU-2010:0636-1)

When using Maildir all ACLs on INBOX were copied to newly created mailboxes although only default ACLs should have been copied CVE-2010-3304. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

PHP 5.2 < 5.2.14 Multiple Vulnerabilities

According to its banner, the version of PHP 5.2 installed on the remote host is older than 5.2.14. Such versions may be affected by several security issues : - An error exists when processing invalid XML-RPC requests that can lead to a NULL pointer dereference. bug 51288 CVE-2010-0397 - An error...

PHP < 5.2.14 / 5.3.x < 5.3.3 Multiple Vulnerabilities

Binary data 5616.prm...

CMSQlite & CMySQLite CSRF Vulnerability

Exploit for php platform in category web applications ======================================= CMSQlite & CMySQLite CSRF Vulnerability ======================================= Title: CMSQlite & CMySQLite CSRF Vulnerability Author: ADEO Security Published: 28/06/2010 Version: v1.3 = Vendor:...

CMSQLite CMySQLite 1.3 - Cross-Site Request Forgery

CMSQLite CMySQLite 1.3 - Cross-Site Request Forgery Title: CMSQlite & CMySQLite CSRF Vulnerability Author: ADEO Security Published: 28/06/2010 Version: v1.3 = Vendor: http://www.cmsqlite.net Description: "CMSQLite is a small, fast, flexible and complete Content-Management-System CMS. It's perfect...

RSA Key Manager SQL injection Vulnerability &#40; CVE-2010-1904 &#41;

Product: RSA Key Manager Vendor: EMC/RSA Vulnerable Component: Key Manager Client Vulnerable Component Version: 1.5.x Vulnerability Type: SQL injection Vendor Contact Date: 4/20/2010 Status: Vendor does not want to fix the vulnerability. Vulnerability Details: RSA Key Manager Client software uses...

RSA Key Manager 1.5.x SQL Injection

CVE: CVE-2010-1904 Product: RSA Key Manager Vendor: EMC/RSA Vulnerable Component: Key Manager Client Vulnerable Component Version: 1.5.x Vulnerability Type: SQL injection Vendor Contact Date: 4/20/2010 Status: Vendor does not want to fix the vulnerability. Vulnerability Details: RSA Key Manager...

RSA Key Manager version 1.5.x SQL Injection Vulnerability

Exploit for php platform in category web applications ========================================================= RSA Key Manager version 1.5.x SQL Injection Vulnerability ========================================================= CVE: CVE-2010-1904 Product: RSA Key Manager Vendor: EMC/RSA Vulnerabl...

Bitrac personal blog system upload vulnerability-vulnerability warning-the black bar safety net

Bitrac the official version, Bitrac is based on ASP.NET 2.0 + SQLite for single-user blogging application, built-in URLRewrite and page compression, supports the MetaWeblogAPI, the self-write the HTML template engine, easy to modify style, full visual editing environment. The current vendors have...