EUVD-2009-1207

Malware in sbrugna...

Debian Security Advisory DSA 1757-1 (auth2db)

The remote host is missing an update to auth2db announced via advisory DSA 1757-1. OpenVAS Vulnerability Test $Id: deb17571.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1757-1 auth2db Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Debian: Security Advisory (DSA-1757-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sql injection

SQL injection vulnerability in auth2db 0.2.5, and possibly other versions before 0.2.7, uses the addslashes function instead of the mysqlrealescapestring function, which allows remote attackers to conduct SQL injection attacks using multibyte character encodings...

CVE-2009-1208

SQL injection vulnerability in auth2db 0.2.5, and possibly other versions before 0.2.7, uses the addslashes function instead of the mysqlrealescapestring function, which allows remote attackers to conduct SQL injection attacks using multibyte character encodings...

CVE-2009-1208

SQL injection vulnerability in auth2db 0.2.5, and possibly other versions before 0.2.7, uses the addslashes function instead of the mysqlrealescapestring function, which allows remote attackers to conduct SQL injection attacks using multibyte character encodings...

CVE-2009-1208

The CVE-2009-1208 issue affects auth2db versions 0.2.5 and possibly earlier than 0.2.7, where the code uses addslashes instead of mysql_real_escape_string. This incorrect escaping allows remote SQL injection via multibyte character encodings, exposing the application to unauthorized data access o...

CVE-2009-1208

SQL injection vulnerability in auth2db 0.2.5, and possibly other versions before 0.2.7, uses the addslashes function instead of the mysqlrealescapestring function, which allows remote attackers to conduct SQL injection attacks using multibyte character encodings...

auth2db SQL injection

SQL injection on multibyte character encodings...

[SECURITY] [DSA 1757-1] New auth2db packages fix SQL injection

------------------------------------------------------------------------ Debian Security Advisory DSA-1757-1 [email protected] http://www.debian.org/security/ Steffen Joeris March 30, 2009 http://www.debian.org/security/faq -...

DSA-1757-1 auth2db - SQL injection

Bulletin has no description...

Debian DSA-1757-1 : auth2db - SQL injection

It was discovered that auth2db, an IDS logger, log viewer and alert generator, is prone to a SQL injection vulnerability, when used with multibyte character encodings. The oldstable distribution etch doesn't contain auth2db. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive tex...