Lucene search
+L

124 matches found

prion
prion
added 2018/03/07 8:29 p.m.11 views

Sql injection

Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server...

7.5CVSS10AI score0.23471EPSS
Exploits5References4Affected Software1
nvd
nvd
added 2018/03/07 8:29 p.m.19 views

CVE-2017-15367

Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server...

9.8CVSS10AI score0.23471EPSS
Exploits5References4
osv
osv
added 2018/03/07 8:29 p.m.14 views

CVE-2017-15367

Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server...

9.8CVSS10AI score
Exploits0References4
cvelist
cvelist
added 2018/03/07 8:0 p.m.17 views

CVE-2017-15367

Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server...

10AI score0.23471EPSS
Exploits5References4
cve
cve
added 2018/03/07 8:0 p.m.66 views

CVE-2017-15367

CVE-2017-15367 affects Bacula-Web prior to 8.0.0-rc2. The vulnerability is described as multiple SQL Injection flaws that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server. Affected component: Bacula-Web (web UI for Bacula bac...

9.8CVSS10AI score0.23471EPSS
Exploits5References4Affected Software1
openvas
openvas
added 2015/09/29 12:0 a.m.18 views

Gentoo Security Advisory GLSA 201405-11

Gentoo Linux Local Security Checks GLSA 201405-11 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

4CVSS5AI score0.02676EPSS
Exploits0References1
seebug
seebug
added 2014/11/13 12:0 a.m.16 views

Bacula-Web 5.2.10 /joblogs.php SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
nvd
nvd
added 2014/10/15 2:55 p.m.16 views

CVE-2014-8295

SQL injection vulnerability in joblogs.php in Bacula-Web 5.2.10 allows remote attackers to execute arbitrary SQL commands via the jobid parameter...

7.5CVSS8.4AI score0.02348EPSS
Exploits1References3
prion
prion
added 2014/10/15 2:55 p.m.17 views

Sql injection

SQL injection vulnerability in joblogs.php in Bacula-Web 5.2.10 allows remote attackers to execute arbitrary SQL commands via the jobid parameter...

7.5CVSS9.1AI score0.02348EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2014/10/15 2:0 p.m.19 views

CVE-2014-8295

SQL injection vulnerability in joblogs.php in Bacula-Web 5.2.10 allows remote attackers to execute arbitrary SQL commands via the jobid parameter...

8.4AI score0.02348EPSS
Exploits1References3
cve
cve
added 2014/10/15 2:0 p.m.53 views

CVE-2014-8295

Bacula-Web 5.2.10 is affected by an SQL injection in joblogs.php via the jobid parameter. The root cause is improper handling of the input, enabling remote attackers to execute arbitrary SQL commands. No remediation details are provided in the supplied documents.

7.5CVSS8.7AI score0.02348EPSS
Exploits1References3Affected Software1
seebug
seebug
added 2014/10/10 12:0 a.m.54 views

Bacula-Web 5.2.10 (joblogs.php, jobid param) - SQL Injection

谷歌搜索:joblogs.php?jobid= 案例:http://cep.treslagoas.ms.gov.br/backup/joblogs.php?jobid=23154 D:\sqlmappython sqlmap.py -u http://cep.treslagoas.ms.gov.br/backup/joblogs.php ?jobid=23154 --dbs | | 1.0-dev-nongit-20150806 | -| . | | | .'| . | || |||||,| | || || http://sqlmap.org ! legal disclaimer:...

7.3AI score
Exploits0
openvas
openvas
added 2014/10/07 12:0 a.m.31 views

Bacula-Web 'jobid' Parameter SQL Injection Vulnerability

Bacula-Web is prone to an SQL injection vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02348EPSS
Exploits1References2
zdt
zdt
added 2014/10/03 12:0 a.m.15 views

Bacula-Web 5.2.10 SQL Injection Vulnerability

Exploit for php platform in category web applications bacula-web 5.2.10 vulnerability Bacula-web is an web base application that provide you a summarized view all of the jobs bacula-director. title : Bacula-web 5.2.10 godork : "jobid=" bacula-web vulnerability : + Sql injection example :...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2014/10/02 12:0 a.m.24 views

Bacula-Web 5.2.10 - joblogs.php?jobid SQL Injection

Bacula-Web 5.2.10 - joblogs.php?jobid SQL Injection bacula-web 5.2.10 vulnerability Bacula-web is an web base application that provide you a summarized view all of the jobs bacula-director. title : Bacula-web 5.2.10 godork : "jobid=" bacula-web vulnerability : + Sql injection example :...

0.1AI score
Exploits0
exploitdb
exploitdb
added 2014/10/02 12:0 a.m.116 views

Bacula-Web 5.2.10 - 'joblogs.php?jobid' SQL Injection

bacula-web 5.2.10 vulnerability Bacula-web is an web base application that provide you a summarized view all of the jobs bacula-director. title : Bacula-web 5.2.10 godork : "jobid=" bacula-web vulnerability : + Sql injection example : http://target.com/bacula-web/joblogs.php?jobid=99' PoC :...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2014/09/29 12:0 a.m.33 views

Bacula-web 5.2.10 SQL Injection

bacula-web 5.2.10 vulnerability Bacula-web is an web base application that provide you a summarized view all of the jobs bacula-director. title : Bacula-web 5.2.10 godork : "jobid=" bacula-web vulnerability : + Sql injection example : http://target.com/bacula-web/joblogs.php?jobid=99' PoC :...

0.2AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.14 views

bacula-web 1.3.x - 5.0.3 - Multiple Vulnerabilities

No description provided by source. GotGeek Labs http://www.gotgeek.com.br/ Bacula-web 1.3.x - 5.0.3 Multiple Remote Vulnerabilities + Description Bacula-Web is a web based tool that provide you a summarized view of your bacula director. It obtain his information from your bacula catalog's databas...

7.1AI score
Exploits0
nessus
nessus
added 2014/05/19 12:0 a.m.29 views

GLSA-201405-11 : Bacula: Information disclosure

The remote host is affected by the vulnerability described in GLSA-201405-11 Bacula: Information disclosure Bacula does not properly enforce console access control lists. Impact : A remote authenticated attacker may be able to bypass restrictions to obtain sensitive information. Workaround : Ther...

4CVSS5.5AI score0.02676EPSS
Exploits0References2
gentoo
gentoo
added 2014/05/17 12:0 a.m.32 views

Bacula: Information disclosure

Background Bacula is a network based backup suite. Description Bacula does not properly enforce console access control lists. Impact A remote authenticated attacker may be able to bypass restrictions to obtain sensitive information. Workaround There is no known workaround at this time. Resolution...

4CVSS6.1AI score0.02676EPSS
Exploits0
Rows per page
Query Builder