CVE-2008-6482

CVE-2008-6482 affects Joomla!’s Flash Tree Gallery (com_treeg) 1.0. A PHP remote file inclusion (RFI) flaw in admin.treeg.php allows an attacker to execute arbitrary PHP code via the mosConfig_live_site parameter when register_globals is enabled. This is caused by missing validation in the RFI pa...

CVE-2009-0537

Integer overflow in the ftsbuild function in fts.c in libc in 1 OpenBSD 4.4 and earlier and 2 Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service application crash via a deep directory tree, related to the ftslevel structure member, as...

Integer overflow

Integer overflow in the ftsbuild function in fts.c in libc in 1 OpenBSD 4.4 and earlier and 2 Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service application crash via a deep directory tree, related to the ftslevel structure member, as...

CVE-2009-0537

Integer overflow in the ftsbuild function in fts.c in libc in 1 OpenBSD 4.4 and earlier and 2 Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service application crash via a deep directory tree, related to the ftslevel structure member, as...

CVE-2009-0537

Integer overflow in the ftsbuild function in fts.c in libc in 1 OpenBSD 4.4 and earlier and 2 Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service application crash via a deep directory tree, related to the ftslevel structure member, as...

Improper access control

Quick Tree View .NET 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to qtv.mdb...

CVE-2008-6387

Quick Tree View .NET 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to qtv.mdb...

CVE-2008-6387

Quick Tree View .NET 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to qtv.mdb...

CVE-2008-6387

The CVE-2008-6387 entry concerns Quick Tree View .NET 3.1, where sensitive data is stored under the web root with insufficient access control. The vulnerability allows remote attackers to download the database file directly (qtv.mdb). The connected documents reiterate the same description without...

Tremulous: User-assisted execution of arbitrary code

Background Tremulous is a team-based First Person Shooter game. Description It has been reported that Tremulous includes a vulnerable version of the ioQuake3 engine GLSA 200605-12, CVE-2006-2236. Impact A remote attacker could entice a user to connect to a malicious games server, possibly resulti...

phpCollab: Multiple vulnerabilities

Background phpCollab is a web-enabled groupware and project management software written in PHP. It uses SQL-based database backends. Description Multiple vulnerabilities have been found in phpCollab: rgod reported that data sent to general/sendpassword.php via the loginForm parameter is not...

Moodle 1.9.3 Remote Code Execution

Moodle 1.9.3 Remote Code Execution Name Remote Code Execution in Moodle Systems Affected Moodle 1.9.3 and possibly earlier versions Severity High Impact CVSSv2 High 7.3/10, vector: AV:N/AC:L/Au:M/C:P/I:P/A:C Vendor http://moodle.org/ Advisory http://www.ush.it/team/ush/hack-moodle193/moodle193.tx...

Moodle 1.9.3 Remote Code Execution Vulnerability

Exploit for unknown platform in category web applications ================================================ Moodle 1.9.3 Remote Code Execution Vulnerability ================================================ Moodle 1.9.3 Remote Code Execution Name Remote Code Execution in Moodle Systems Affected...

Moodle 1.9.3 - Remote Code Execution

Moodle 1.9.3 Remote Code Execution Name Remote Code Execution in Moodle Systems Affected Moodle 1.9.3 and possibly earlier versions Severity High Impact CVSSv2 High 7.3/10, vector: AV:N/AC:L/Au:M/C:P/I:P/A:C Vendor http://moodle.org/ Advisory http://www.ush.it/team/ush/hack-moodle193/moodle193.tx...

Moodle 1.9.3 Remote Code Execution Vulnerability

No description provided by source. Moodle 1.9.3 Remote Code Execution Name Remote Code Execution in Moodle Systems Affected Moodle 1.9.3 and possibly earlier versions Severity High Impact CVSSv2 High 7.3/10, vector: AV:N/AC:L/Au:M/C:P/I:P/A:C Vendor http://moodle.org/ Advisory...

Debian: Security Advisory (DSA-1678-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

The ClearQuest Maintenance Tool in IBM Rational ClearQuest before 7 stores the database password in cleartext in an object in a ClearQuest connection profile or export file, which allows remote authenticated users to obtain sensitive information by locating the password object within the object...

CVE-2008-5327

The ClearQuest Maintenance Tool in IBM Rational ClearQuest 7 before 7.1 stores the database password in cleartext in an object in a ClearQuest connection profile or export file, which allows remote authenticated users to obtain sensitive information by locating the password object within the obje...

Quick Tree View .NET 3.1 (qtv.mdb) Database Disclosure Vulnerability

No description provided by source. ! ! ! OOOO O OOOOOOOOO ! ! O O O O O ! ! O O O ! ! O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO ! ! O OOO OOO O O O O OO O O O O OO O O O ! ! O OO OO O O OOOOOO O O O O O O OOOOOO ! ! O O OOOO O O O O O O O O O O O...

Quick Tree View .NET 3.1 (qtv.mdb) Database Disclosure Vulnerability

Exploit for unknown platform in category web applications ==================================================================== Quick Tree View .NET 3.1 qtv.mdb Database Disclosure Vulnerability ==================================================================== ! ! ! OOOO O OOOOOOOOO ! ! O O O O...