Squid < 3.1.4 External Auth Header Parser DoS Vulnerabilities

Squid is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

humanCMS (Auth Bypass) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================== humanCMS Auth Bypass SQL Injection Vulnerability ================================================== f KHatr Zfaft Zenta9 f Zfaft Galo ya khir CHirbakhzer + humanCMS Auth Bypass SQL Injecti...

humanCMS (Auth Bypass) SQL Injection Vulnerability

No description provided by source. f KHatr Zfaft Zenta9 f Zfaft Galo ya khir CHirbakhzer + humanCMS Auth Bypass SQL Injection Vulnerability + Discovered by next + www.sa3eka.com www.m4r0c-s3curity.cc + vie.0athotmail.com + Home Page : http://www.squarelabel.com "humanCMS site description" + Auth...

DEBIAN-CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

Code injection

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

Infinity 2.x - options[style_dir] Local File Disclosure

Infinity 2.x - optionsstyledir Local File Disclosure ------------------Infinity ---------------------------------------------------------------------------------------------------------------- - +LFD Exploit: http://WWW.Site.Com/inf/?optionsstyledir=../include/db.php%00...

Infinity &lt;= 2.x.x options[style_dir] Local File Disclosure Vulnerability

No description provided by source. ------------------Infinity = v2.X.X Local File Disclosure / Auth Bypass Vulnerabilities------------------------- ---------------------------------------------------------------------------------------------------------------- Script : Infinity version : 2.X.X...

Infinity 2.x - &#039;options[style_dir]&#039; Local File Disclosure

------------------Infinity ---------------------------------------------------------------------------------------------------------------- - +LFD Exploit: http://WWW.Site.Com/inf/?optionsstyledir=../include/db.php%00 http://WWW.Site.Com/inf/?optionsstyledir=../../../../../../etc/passwd%00...

CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

Infinity 2.x.x Local File Disclosure

------------------Infinity ---------------------------------------------------------------------------------------------------------------- - +LFD Exploit: http://WWW.Site.Com/inf/?optionsstyledir=../include/db.php%00 http://WWW.Site.Com/inf/?optionsstyledir=../../../../../../etc/passwd%00...

Shorty 0.7.1b (Auth Bypass) Insecure Cookie Handling Vulnerability

No description provided by source. Vulnerable Software -------------------------------------------------------------------------------- Script: Shorty v0.7.1 Beta maybe other versions URL:http://get-shorty.com/ Download:http://get-shorty.com/beta?force=download Google dork: intitle:"Shorty Beta"...

Shorty 0.7.1b (Auth Bypass) Insecure Cookie Handling Vulnerability

Exploit for unknown platform in category web applications ================================================================== Shorty 0.7.1b Auth Bypass Insecure Cookie Handling Vulnerability ================================================================== Vulnerable Software...

Authentication flaw

profileedit.php TaskDriver 1.3 and earlier allows remote attackers to bypass authentication and gain administrative access by setting the auth cookie to "fook!admin."...

SmilieScript 1.0 SQL Injection

======================================================= +++++++++++++++++++ information +++++++++++++++++++++++ ======================================================= + Script :SmilieScript ======================================================= +++++++++++++++++++++++ Exploit...

Logoshows BBS 2.0 SQL Injection

Logoshows BBS 2.0 Auth Bypass SQL Injection Vulnerability -=Dns-Team Marocain Hackers=- Author: Dns-Team Contact: Q2atHoTmaildotFr Site: www.Scam4u.com + www.Dns-Team.com Greetz: Sa4d + HSMX + Stack + PR0H4CK3RZ + N@bilX + Ga3 Réjàlà Xd : Download : http://www.logoshows.com/download/bbs88.rar...

SmilieScript <= 1.0 (Auth Bypass) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= SmilieScript = 1.0 Auth Bypass SQL Injection Vulnerability ============================================================= =======================================================...