35 matches found
CVE-2017-3142
A flaw was found in the way BIND handled TSIG authentication of AXFR requests. A remote attacker, able to communicate with an authoritative BIND server, could use this flaw to view the entire contents of a zone by sending a specially constructed request packet. Mitigation The effects of this...
Cisco Virtual Media Packager PAM API Unauthorized Access Vulnerability
A vulnerability in the application programming interface API for the Platform and Applications Manager PAM for the Cisco Virtual Media Packager VMP could allow an unauthenticated, remote attacker to access the PAM API. The PAM API is only accessible using the SSL or TLS protocol. The vulnerabilit...
simple-image-manipulator <= 1.0 - Remote File Download
Plugin is still affected and has been closed. In ./simple-image-manipulator/controller/download.php no checks are made to authenticate the user or sanitize input when determining file location. PoC $ curl...
KLA10473 Code execution vulnerability in Microsoft products
Lack of authentication control was found in Microsoft products. By exploiting this vulnerability malicious users execute arbitrary code. This vulnerability can be exploited remotely via a specially designed UNC share. Original advisories MS advisory CVE-2015-0008 Related products...
Cisco Patches Hardcoded SSH Key Vulnerability in UCM
The Cisco Unified Communications Domain Manager contains a default private SSH key that could allow an attacker to run arbitrary code on vulnerable installations. The bug is about as serious as they come, giving remote, unauthenticated attackers access to affected machines with the rights of a ro...
Joomla! Component com_videogallery - Local File Inclusion SQL Injection
Joomla! Component comvideogallery - Local File Inclusion SQL Injection source: https://www.securityfocus.com/bid/53237/info The Video Gallery component for Joomla! is prone to local file-include and SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attack...
Joomla! Component com_visa - Local File Inclusion SQL Injection
Joomla! Component comvisa - Local File Inclusion SQL Injection source: https://www.securityfocus.com/bid/51726/info The 'comvisa' component for Joomla! is prone to a local file-include vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied...
4Images 1.7.9 - Multiple Remote File Inclusions SQL Injections
4Images 1.7.9 - Multiple Remote File Inclusions SQL Injections source: https://www.securityfocus.com/bid/47394/info 4images is prone to multiple remote file-include vulnerabilities and an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploi...
4Images 1.7.9 - Multiple Remote File Inclusions / SQL Injections
source: https://www.securityfocus.com/bid/47394/info 4images is prone to multiple remote file-include vulnerabilities and an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to execute arbitrary server-side script...
ReOS Local File Include and SQL Injection Vulnerabilities
ReOS is prone to a local file-include vulnerability and multiple SQL- injection vulnerabilities because it fails to properly sanitize user- supplied input. An attacker can exploit the local file-include vulnerability using directory- traversal strings to view and execute arbitrary local files...
BaconMap Local File Include and SQL Injection Vulnerabilities
BaconMap is prone to a local file-include vulnerability and an SQL- injection vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit the local file-include vulnerability using directory- traversal strings to view and execute arbitrary local files within...
PHP MicroCMS Local File Include and SQL Injection Vulnerabilities
PHP MicroCMS is prone to a local file-include vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
CVE-2007-1526
Sun Java System Web Server 6.1 before 20070314 allows remote authenticated users with revoked client certificates to bypass the Certificate Revocation List CRL authorization control and access secure web server instances running under an account different from that used for the admin server via...
authentificator201.txt
Discovered by Sirdarckcat from elhacker.net ------------------------------------------------------------------------------------ Autentificator v2.01 SQL Injection http://www.hotscripts.com/Detailed/15291.html ------------------------------------------------------------------------------------...
CVE-2002-0241
NDSAuth.DLL in Cisco Secure Authentication Control Server ACS 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services NDS, which could allow those users to authenticate to the server...