EMC Secure Remote Services Virtual Edition SQL Injection

------------------------------------------------------------------------ EMC Secure Remote Services Virtual Edition Provisioning component is affected by SQL injection ------------------------------------------------------------------------ Han Sahin, November 2014...

BACnet OPC Server Authentication Vulnerability

BACnet OPC Server provides data access, alerts, and access to event and historical data between OPC clients and BACnet-compatible devices. BACnet OPC Server has a security vulnerability that can be exploited by an attacker to insert, read, and delete arbitrary items in the database...

WordPress Survey and Poll Blind SQL Injection Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

ZeroCMS Multiple SQL Injection Vulnerabilities (Feb 2015)

ZeroCMS is prone to multiple sql injection vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MyBB < 1.6.12 Multiple Vulnerabilities

Binary data 8628.prm...

Etiko CMS Multiple Vulnerabilities

Etiko CMS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 12.04 LTS : libreoffice vulnerability (USN-2400-1)

It was discovered that LibreOffice incorrectly handled OLE preview generation. If a user were tricked into opening a crafted document, an attacker could possibly exploit this to embed arbitrary data into documents. Note that Tenable Network Security has extracted the preceding description block...

USN-2400-1: LibreOffice vulnerability

It was discovered that LibreOffice incorrectly handled OLE preview generation. If a user were tricked into opening a crafted document, an attacker could possibly exploit this to embed arbitrary data into documents...

WordPress Multi View Event Calendar SQL Injection Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

TomatoCart SQL Injection and Cross Site Scripting Vulnerabilities

TomatoCart is prone to sql-injection and cross-site scripting. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2014-3575

The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org OOo might allow remote attackers to embed arbitrary data into documents via crafted OLE objects...

Design/Logic Flaw

The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org OOo might allow remote attackers to embed arbitrary data into documents via crafted OLE objects...

CVE-2014-3575

The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org OOo might allow remote attackers to embed arbitrary data into documents via crafted OLE objects...

Nagios XI < 2012R2.4 SQL Injection Vulnerability (deprecated)

Binary data 7138.pasl...

CVE-2014-3575

The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org OOo might allow remote attackers to embed arbitrary data into documents via crafted OLE objects...

Nagios XI < 2012R2.4 SQL Injection Vulnerability

Binary data 8369.prm...

mySeatXT 0.1781 SQL Injection Vulnerability

No description provided by source. ------------------------------------------------------------------------ Software................mySeatXT 0.1781 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://sourceforge.net/projects/myseat/ Discovery...

Avaxswf.dll 1.0.0.1 from Avax Vector ActiveX Arbitrary Data Write

No description provided by source. :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: Avaxswf.dll v.1.0.0.1 from Avax Vector software ActiveX Arbitrary Data Write ============================================================================ Internal ID: VULWAR20070626...

FreeBSD 4.4 AIO Library Cross Process Memory Write Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3661/info aio.h is a library implementing the POSIX standard for asynchronous I/O. Support for AIO may be enabled in FreeBSD by compiling the kernel with the VFSAIO option. This option is not enabled in the default kernel...

Mambo CMS 4.6.x (4.6.5) SQL Injection Vulnerability

No description provided by source. ========================================= Mambo CMS 4.6.x 4.6.5 | SQL Injection ========================================= 1. OVERVIEW Mambo CMS 4.6.5 and lower versions are vulnerable to SQL Injection. 2. BACKGROUND Mambo is a full-featured, award-winning conten...