Lucene search
K

890 matches found

UbuntuCve
UbuntuCve
added 2008/05/12 4:20 p.m.17 views

CVE-2008-1880

The default configuration of Firebird before 2.0.3.12981.0-r6 on Gentoo Linux sets the ISCPASSWORD environment variable before starting Firebird, which allows remote attackers to bypass SYSDBA authentication and obtain sensitive database information via an empty password...

5CVSS5.9AI score0.0212EPSS
Exploits1References1
Prion
Prion
added 2008/05/12 4:20 p.m.13 views

Default configuration

The default configuration of Firebird before 2.0.3.12981.0-r6 on Gentoo Linux sets the ISCPASSWORD environment variable before starting Firebird, which allows remote attackers to bypass SYSDBA authentication and obtain sensitive database information via an empty password...

5CVSS7AI score0.0212EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2008/05/12 4:20 p.m.15 views

CVE-2008-1880

The default configuration of Firebird before 2.0.3.12981.0-r6 on Gentoo Linux sets the ISCPASSWORD environment variable before starting Firebird, which allows remote attackers to bypass SYSDBA authentication and obtain sensitive database information via an empty password...

5CVSS6.5AI score0.0212EPSS
Exploits1References5
securityvulns
securityvulns
added 2006/08/17 12:0 a.m.35 views

[SA21506] MySQL Create Database Bypass and Privilege Escalation

---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...

2AI score
Exploits0
NVD
NVD
added 2006/06/12 8:6 p.m.11 views

CVE-2006-2948

A-CART 2.0 stores the acart20.mdb file under the web document root with insufficient access control, which allows remote attackers to obtain username and password information...

5CVSS6.8AI score0.01504EPSS
Exploits0References6
Exploit DB
Exploit DB
added 2004/11/20 12:0 a.m.28 views

IPBProArcade 2.5 - SQL Injection

source: https://www.securityfocus.com/bid/11719/info A remote SQL injection vulnerability reportedly affects ipbProArcade. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in an SQL query. An attacker may leverage this issue to...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/11/02 12:0 a.m.43 views

WebHost Automation Helm Control Panel 3.1.x - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/11586/info Helm Control Panel is reported prone to multiple vulnerabilities. These include an SQL injection issue and an HTML injection vulnerability. A remote attacker can execute arbitrary HTML and script code in a user's browser. Manipulation of SQL...

7.4AI score
Exploits0
NVD
NVD
added 2004/08/18 4:0 a.m.20 views

CVE-2004-1724

The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusionadmin/dbbackups directory to world read/write/execute 777, which allows remote attackers to download or view database backups, which have easily guessable filenames and contain the administrator userna...

7.5CVSS6.5AI score0.06934EPSS
Exploits1References4
exploitpack
exploitpack
added 2002/06/06 12:0 a.m.21 views

Voxel Dot Net CBms 0.x - Multiple Code Injection Vulnerabilities

Voxel Dot Net CBms 0.x - Multiple Code Injection Vulnerabilities source: https://www.securityfocus.com/bid/4957/info It has been reported that multiple vulnerabilities exist in CBMS. Reportedly, it is possible to inject both JavaScript and SQL code into the system. It may be possible to execute...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2002/06/06 12:0 a.m.31 views

Voxel Dot Net CBms 0.x - Multiple Code Injection Vulnerabilities

source: https://www.securityfocus.com/bid/4957/info It has been reported that multiple vulnerabilities exist in CBMS. Reportedly, it is possible to inject both JavaScript and SQL code into the system. It may be possible to execute script code within the context of the site as an authenticated...

7.4AI score
Exploits0
Rows per page
Query Builder