619 matches found
Aurora CMS - SQL Injection
Exploit Title: Aurora CMS Remote SQL Injection Exploit content.php Date: December 22nd, 2009 Author: Sora Software Link: http://www.auroracms.com.au/ Version: 1.0, 2.0, and 3.0 Tested on: Windows and Linux ------------------------------------------------ Aurora CMS Remote SQL Injection Exploit...
CVE-2009-3365
PHP remote file inclusion vulnerability in add-ons/modules/sysmanager/plugins/install.plugin.php in Aurora CMS 1.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the AURORAMODULESFOLDER parameter...
Remote file inclusion
PHP remote file inclusion vulnerability in add-ons/modules/sysmanager/plugins/install.plugin.php in Aurora CMS 1.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the AURORAMODULESFOLDER parameter...
CVE-2009-3365
PHP remote file inclusion vulnerability in add-ons/modules/sysmanager/plugins/install.plugin.php in Aurora CMS 1.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the AURORAMODULESFOLDER parameter...
CVE-2009-3365
CVE-2009-3365 affects Aurora CMS 1.0.2 and is triggered through a PHP remote file inclusion in the install.plugin.php of the sysmanager addon, via the AURORA_MODULES_FOLDER parameter. The underlying issue is a vulnerable inclusion mechanism that allows an attacker to execute arbitrary PHP code by...
Aurora CMS 1.0.2 Remote File Inclusion
--------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...
Aurora CMS 1.0.2 - install.plugin.php Remote File Inclusion
Aurora CMS 1.0.2 - install.plugin.php Remote File Inclusion --------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...
Aurora CMS 1.0.2 (install.plugin.php) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ========================================================================= Aurora CMS 1.0.2 install.plugin.php Remote File Inclusion Vulnerability =========================================================================...
Aurora CMS 1.0.2 (install.plugin.php) Remote File Inclusion Vulnerability
No description provided by source. --------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...
Aurora CMS 1.0.2 - 'install.plugin.php' Remote File Inclusion
--------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...
Aurora Nutritive Analysis Module Multiple XSS
Aurora Nutritive Analysis Module Multiple XSS - Description "Aurora's FoodPro is a total food production, planning and control system that provides start-to-finish control from raw food through production, service, and analysis. It provides historical, as well as current and projected data, in...
Aurora Nutritive Analysis XSS
Aurora Nutritive Analysis Module Multiple XSS - Description "Aurora's FoodPro is a total food production, planning and control system that provides start-to-finish control from raw food through production, service, and analysis. It provides historical, as well as current and projected data, in...
Sql injection
SQL injection vulnerability in aurora framework before 20071208 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the value parameter to the packvar function in module/db.lib/dbmysql.lib. NOTE: some of these details are obtained from third party informati...
CVE-2007-6345
SQL injection vulnerability in aurora framework before 20071208 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the value parameter to the packvar function in module/db.lib/dbmysql.lib. NOTE: some of these details are obtained from third party informati...
CVE-2007-6345
SQL injection vulnerability in aurora framework before 20071208 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the value parameter to the packvar function in module/db.lib/dbmysql.lib. NOTE: some of these details are obtained from third party informati...
CVE-2007-6345
CVE-2007-6345: A SQL injection vulnerability in the aurora framework (before 20071208) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, potentially through the value parameter to pack_var in module/db.lib/db_mysql.lib. The issue is rooted in improper input handli...
Stack overflow
Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control NCTAudioFile2.dll, as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include 1 NCTsoft NCTAudioStudio, NCTAudioEdito...
CVE-2007-0018
Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control NCTAudioFile2.dll, as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include 1 NCTsoft NCTAudioStudio, NCTAudioEdito...
CVE-2007-0018
CVE-2007-0018 describes a stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll) that allows remote code execution via a long argument to the SetFormatLikeSample function. Affected products include numerous NCTAudioFile2-based apps (AudioStudio/Editor/Voice...