Lucene search
K

3467 matches found

Cvelist
Cvelist
added 2006/07/14 9:0 p.m.23 views

CVE-2006-3610

index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to obtain sensitive information partial database schema via a modified pagename parameter, which reflects portions of an SQL query in the result. NOTE: it is not clear whether the information is target-specific. If not, then this...

6.5AI score0.01175EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2006/01/22 12:0 a.m.8 views

PT-2006-1440 · Oracle · Mysql Server

Name of the Vulnerable Software and Affected Versions: MySQL version 5.0.18 Description: The issue allows local users with access to a VIEW to obtain sensitive information via the "SELECT FROM information schema.views;" query, which returns the query that created the VIEW. It is noted that the...

2.1CVSS6.4AI score0.00667EPSS
Exploits0References9
Cvelist
Cvelist
added 2005/12/28 11:0 a.m.18 views

CVE-2005-4549

Cross-site scripting XSS vulnerability in Oracle Application Server OracleAS Discussion Forum Portlet allows remote attackers to inject arbitrary web script or HTML via the 1 RowKeyValue parameter in the PORTAL schema; and the 2 title and 3 content input fields when creating an forum article...

5.4AI score0.02741EPSS
Exploits1References5
CVE
CVE
added 2005/12/28 11:0 a.m.55 views

CVE-2005-4549

CVE-2005-4549 describes a cross-site scripting (XSS) vulnerability in the Oracle Application Server (OracleAS) Discussion Forum Portlet. The vulnerability allows remote attackers to inject arbitrary web script or HTML via the RowKeyValue parameter in the PORTAL schema and the title and content fi...

4.3CVSS5.6AI score0.02741EPSS
Exploits1References5Affected Software1
securityvulns
securityvulns
added 2005/01/06 12:0 a.m.21 views

IBM DB2 SATADMIN.SATENCRYPT buffer overflow (#NISR05012005E)

NGSSoftware Insight Security Research Advisory Name: IBM DB2 SATADMIN.SATENCRYPT buffer overflow Systems Affected: DB2 8.1 Severity: Medium risk from remote Vendor URL: http://www.ibm.com/ Author: David Litchfield david at ngssoftware.com Relates to: http://www.nextgenss.com/advisories/db2-02.txt...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/03 12:0 a.m.21 views

Fedora Core 1 : samba-3.0.6-2.FC1 (2004-284)

Wed Aug 25 2004 Jay Fenlason 3.0.6-1.FC2 - Upgrade to 3.0.6 include the following patches: samba-3.0.5rc1-passwd.patch from me. This changes the character used in the password field of the entries generated by winbind from a 'x' to a ''. 'x' means something special 'password is in /etc/shadow' to...

5.6AI score
Exploits0References2
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.28 views

CVE-2001-0528

Oracle E-Business Suite Release 11i Applications Desktop Integrator ADI version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, which allows local users to obtain the password and gain privileges...

6.3AI score0.01615EPSS
Exploits1References4
Rows per page
Query Builder