3 matches found
The vulnerability in the LDAP Account Manager web application, related to the implementation or modification of arguments, allows a perpetrator to execute arbitrary code.
The vulnerability of the LDAP Account Manager web application management application relates to the implementation or modification of arguments. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
CVE-2022-31088 Unauthenticated LDAP Injection in ldap-account-manager
LDAP Account Manager LAM is a webfrontend for managing entries e.g. users, groups, DHCP settings stored in an LDAP directory. In versions prior to 8.0 the user name field at login could be used to enumerate LDAP data. This is only the case for LDAP search configuration. This issue has been fixed ...
iDEFENSE Security Advisory 10.31.02c: PHP-Nuke SQL Injection Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.31.02c: http://www.idefense.com/advisory/10.31.02c.txt PHP-Nuke SQL Injection Vulnerability October 31, 2002 I. BACKGROUND "PHP-Nuke is a news automated system specially designed to be used in Intranets and Internet. The...