121 matches found
[SECURITY] Fedora 18 Update: system-config-users-1.3.1-1.fc18
system-config-users is a graphical utility for administrating users and groups. It depends on the libuser library...
CVE-2012-1741
Unspecified vulnerability in the Enterprise Manager for Fusion Middleware component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors related to User Administration Pages...
Design/Logic Flaw
Unspecified vulnerability in the Enterprise Manager for Fusion Middleware component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors related to User Administration Pages...
CVE-2012-1741
Unspecified vulnerability in the Enterprise Manager for Fusion Middleware component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors related to User Administration Pages...
CVE-2011-2310
Unspecified vulnerability in the Oracle Waveset component in Oracle Sun Products Suite 8.1.0 and 8.1.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to User Administration...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Waveset component in Oracle Sun Products Suite 8.1.0 and 8.1.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to User Administration...
CVE-2011-2310
Technical details for CVE-2011-2310 are not publicly provided in the supplied documents. Monitor for updates from Oracle CPU advisories and vulnerability databases.
CVE-2011-2310
Unspecified vulnerability in the Oracle Waveset component in Oracle Sun Products Suite 8.1.0 and 8.1.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to User Administration...
Visual clues to native vs. ldap users and groups
panel:bgColor=e7f4fa NOTE: This suggestion is for Confluence Cloud. Using Confluence Server? See the corresponding suggestion|http://jira.atlassian.com/browse/CONFSERVER-23355. panel In a mixed environment with Confluence and LDAP users and groups, it would be helpful when administering users and...
Prediction League 0.3.8 Cross Site Request Forgery
======================================================================================== | Title : Prediction League 0.3.8 CSRF Create Admin User Exploit | Author : indoushka | Home : www.iqs3cur1ty.com/vb | Tested on: Lunix Français v.9.4 Ubuntu | Bug : CSRF Create Admin User Exploit...
Prediction League 0.3.8 CSRF Create Admin User Exploit
Exploit for php platform in category web applications ====================================================== Prediction League 0.3.8 CSRF Create Admin User Exploit ======================================================...
Prediction League 0.3.8 - Cross-Site Request Forgery (Add Admin)
======================================================================================== | Title : Prediction League 0.3.8 CSRF Create Admin User Exploit | Author : indoushka | Home : www.iqs3cur1ty.com/vb | Tested on: Lunix Français v.9.4 Ubuntu | Bug : CSRF Create Admin User Exploit...
Debian DSA-1954-1 : cacti - insufficient input sanitising
Several vulnerabilities have been found in cacti, a frontend to rrdtool for monitoring systems and services. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3112, CVE-2007-3113 It was discovered that cacti is prone to a denial of service via the...
chicomas <= 2.0.4 (DB Backup/DD/XSS) Multiple Vulnerabilities
No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: chicomas =2.0.4 Multiple Vulnerabilities Vendor: http://www.chicomas.com/ Demo: http://demo.opensourcecms.com/chicomas Bug: Database Information Disclosure, Authorization Weakness, XSS Vulnerable Version:...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Open Media Collectors Database OpenDb 1.0.6 allow remote attackers to inject arbitrary web script or HTML via the 1 userid parameter in an edit action to useradmin.php, the 2 title parameter to listings.php, and the 3 redirecturl parameter to...
[ECHO_ADV_96$2008] HiveMaker Professional <= 1.0.2 (cid) Sql Injection Vulnerability
ECHOADV96$2008 ----------------------------------------------------------------------------------------- ECHOADV96$2008 HiveMaker Professional = 1.0.2 cid Sql Injection Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...
HiveMaker Professional <= 1.0.2 (cid) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================= HiveMaker Professional = 1.0.2 cid SQL Injection Vulnerability ================================================================= \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / |...
FTP Admin 0.1.0 (LFI/XSS/AB) Multiple Remote Vulnerabilities
No description provided by source. FTP Admin v0.1.0 - MULTIPLE VULNERABILITIES by Omni 1 Infos --------- Date : 2007-11-28 Product : FTP Admin Version : v0.1.0 Vendor : http://sourceforge.net/projects/ftpadmin/ Vendor Status : 2007-11-30 Informed! Description : FTP admin is a web-based user...
Snaps! Gallery 1.4.4 - Remote User Pass Change
Snaps! Gallery 1.4.4 - Remote User Pass Change ?php / \|/// \ - - // @ @ ----oOOo---oOOo--------------------------------------------------- Y! Underground Group [email protected] Dj7xpl.2600.ir ----ooooO-----Ooooo-------------------------------------------------- \ / \ /...
Microsoft Windows - JPEG GDI+ Bind/Reverse/Admin/File Download
/ Exploit Name: ============= JpegOfDeath.M.c v0.6.a All in one Bind/Reverse/Admin/FileDownload ============= Tweaked Exploit By M4Z3R For GSO All Credits & Greetings Go To: ========== FoToZ, Nick DeBaggis, MicroSoft, Anthony Rocha, romhack Peter Winter-Smith, IsolationX, YpCat, Aria Giovanni, Ni...