49 matches found
Philips' DoseWise Portal Plaintext Storage Vulnerability
Philips' DoseWise Portal is a web-based reporting and tracking tool for radiation exposure. A plaintext storage vulnerability exists in Philips' DoseWise Portal. An attacker obtains text web application store login credentials in a back-end system file...
Universal Password Login Vulnerability in Qiyu Technology Management System Backend
Shenyang Qiyu Tongchuang Technology Co., Ltd. is a service provider of website design and software development for enterprise and government type websites. There is a universal password login vulnerability in the backend of Qiyu Technology management system, and an attacker can log in to the syst...
SQL Injection Vulnerability in FangMail Email Backend Management System
U-Mail mail is widely used in government departments, schools, enterprises and institutions group enterprise mailbox software. A SQL injection vulnerability exists in the background management system of FangMail Mail. It allows attackers to utilize commonly used SQL injection tools to obtain...
用友内部管理系统后台未授权访问(弱口令)
简要描述: 见说明 详细说明: 网址 http://125.35.5.195:808/login.jsp 在java环境下,当然,如果提示安装插件就安装吧,因为是用友登陆的一个java插件,安装后 套帐:选择用友软件测试 公司:随便选吧,里面那么多,我选的是集团0001 当然也可以用其他的去尝试--! 用户:test 密码:123456 然后就一咕噜进去了 --! 漏洞证明: img src="https://images.seebug.org/upload/201307/13...
Varnish 2.1.5 DoS in STV_alloc() while parsing Content-Length header
STValloc | st != NULL Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Versions: 2.1.5 Full panic message: Panic message: Assert error in STValloc, stevedore.c line 192:012 Conditionst != NULL not true. Summary: Varnish 2.1.5 crash and restart via...
Varnish 2.1.5 / 3.0.3 Denial Of Service
STValloc | st != NULL Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Versions: 2.1.5 Full panic message: Panic message: Assert error in STValloc, stevedore.c line 192:012 Conditionst != NULL not true. Summary: Varnish 2.1.5 crash and restart via...
[SECURITY] Fedora 15 Update: sssd-1.5.7-1.fc15
Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy servic...
[SECURITY] Fedora 13 Update: sssd-1.3.0-40.fc13
Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy servic...
[SECURITY] Fedora 14 Update: sssd-1.3.0-30.fc14
Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy servic...