6612 matches found
Eatself 1.1.5 SQL Injection
==================================================================================================================================== | Title : Eatself v1.1.5 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 69.032-bit | | Vend...
PT-2023-9861 · Unknown · Web-Cyradm
Name of the Vulnerable Software and Affected Versions: web-cyradm affected versions not specified Description: A critical issue has been found in web-cyradm, affecting some unknown functionality of the file auth.inc.php. The manipulation of the argument login/login password/LANG leads to sql...
CVE-2014-125065
A vulnerability, which was classified as critical, was found in john5223 bottle-auth. Affected is an unknown function. The manipulation leads to sql injection. The name of the patch is 99cfbcc0c1429096e3479744223ffb4fda276875. It is recommended to apply a patch to fix this issue. The identifier o...
Sql injection
A vulnerability, which was classified as critical, was found in john5223 bottle-auth. Affected is an unknown function. The manipulation leads to sql injection. The name of the patch is 99cfbcc0c1429096e3479744223ffb4fda276875. It is recommended to apply a patch to fix this issue. The identifier o...
CVE-2014-125065 john5223 bottle-auth sql injection
A vulnerability, which was classified as critical, was found in john5223 bottle-auth. Affected is an unknown function. The manipulation leads to sql injection. The name of the patch is 99cfbcc0c1429096e3479744223ffb4fda276875. It is recommended to apply a patch to fix this issue. The identifier o...
CVE-2014-125065 john5223 bottle-auth sql injection
A vulnerability, which was classified as critical, was found in john5223 bottle-auth. Affected is an unknown function. The manipulation leads to sql injection. The name of the patch is 99cfbcc0c1429096e3479744223ffb4fda276875. It is recommended to apply a patch to fix this issue. The identifier o...
CVE-2014-125065
Affected software: john5223 bottle-auth. Vulnerability: SQL injection caused by manipulation of an unknown function. This CVE (CVE-2014-125065) is documented with critical impact; multiple sources confirm the issue and reference a patch named 99cfbcc0c1429096e3479744223ffb4fda276875. Impact: High...
CVE-2015-10027
A vulnerability, which was classified as problematic, has been found in hydrian TTRSS-Auth-LDAP. Affected by this issue is some unknown functionality of the component Username Handler. The manipulation leads to ldap injection. Upgrading to version 2.0b1 is able to address this issue. The patch is...
Information disclosure
A vulnerability, which was classified as problematic, has been found in hydrian TTRSS-Auth-LDAP. Affected by this issue is some unknown functionality of the component Username Handler. The manipulation leads to ldap injection. Upgrading to version 2.0b1 is able to address this issue. The patch is...
CVE-2015-10027 hydrian TTRSS-Auth-LDAP Username ldap injection
A vulnerability, which was classified as problematic, has been found in hydrian TTRSS-Auth-LDAP. Affected by this issue is some unknown functionality of the component Username Handler. The manipulation leads to ldap injection. Upgrading to version 2.0b1 is able to address this issue. The patch is...
CVE-2015-10027 hydrian TTRSS-Auth-LDAP Username ldap injection
A vulnerability, which was classified as problematic, has been found in hydrian TTRSS-Auth-LDAP. Affected by this issue is some unknown functionality of the component Username Handler. The manipulation leads to ldap injection. Upgrading to version 2.0b1 is able to address this issue. The patch is...
CVE-2015-10027
CVE-2015-10027 affects hydrian TTRSS-Auth-LDAP's Username Handler, with LDAP injection in unknown functionality prior to 2.0b1. Upgrading to version 2.0b1 addresses the issue; the patch is identified as a7f7a5a82d9202a5c40d606a5c519ba61b224eb8 (VDB-217622). Multiple connected sources corroborate ...
REST-Attacker - Designed As A Proof-Of-Concept For The Feasibility Of Testing Generic Real-World REST Implementations
REST-Attacker is an automated penetration testing framework for APIs following the REST architecture style. The tool's focus is on streamlining the analysis of generic REST API implementations by completely automating the testing process - including test generation, access control handling, and...
bottle-auth SQL注入漏洞
bottle-auth is an application by John C Personal Developer. A SQL injection vulnerability exists in bottle-auth. An attacker could exploit this vulnerability to perform a sql injection attack...
TTRSS-Auth-LDAP 注入漏洞
TTRSS-Auth-LDAP is a GitHub repository for the authldap plugin for Tiny Tiny RSS from the individual developer Ben Tyger. An injection vulnerability exists in TTRSS-Auth-LDAP. An attacker could exploit this vulnerability to cause LDAP injection...
CVE-2022-46582
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the loginname parameter in the dographauth sub4061E0 function...
TRENDnet TEW-755AP 缓冲区错误漏洞
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the loginname parameter of the dographauth sub4061E0 function, which can be exploited by an attacker to execute arbitrary...
PT-2022-27632 · Ip Com · Ip-Com M50
Name of the Vulnerable Software and Affected Versions: IP-COM M50 version 15.11.0.3310768 Description: A buffer overflow issue was discovered via the gotoUrl parameter in the formPortalAuth function. Recommendations: For IP-COM M50 version 15.11.0.3310768, as a temporary workaround, consider...
Exploit for Deserialization of Untrusted Data in Microsoft
CVE-2022-41082-POC PoC for the CVE-2022-41082 NotProxyShell OW...
Malicious code in eg-auth-ui-localization (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 437e53aa9aa9cbd8bae160de3b5b28fa886c8552f617e61fbe93c938c4e2029c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...