Lucene search
K

167 matches found

Cvelist
Cvelist
added 2006/05/19 11:0 p.m.21 views

CVE-2006-2486

SQL injection vulnerability in find.php in YapBB 1.2 Beta2 and earlier allows remote attackers to execute arbitrary SQL commands via the userID parameter...

8.4AI score0.01156EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/03/19 2:0 a.m.22 views

CVE-2006-1265

SQL injection vulnerability in discussion.class.php in xhawk.net discussion 2.0 beta2 allows remote attackers to execute arbitrary SQL commands via the view parameter...

8.3AI score0.01293EPSS
Exploits1References5
CVE
CVE
added 2006/03/19 2:0 a.m.48 views

CVE-2006-1265

CVE-2006-1265 targets the xhawk.net discussion 2.0 beta2 application, where a flaw in the discussion.class.php logic allows a remote attacker to inject SQL via the view parameter, potentially impacting confidentiality, integrity, and availability. The public data lists a base CVSS v2 score of 7.5...

7.5CVSS8.4AI score0.01293EPSS
Exploits1References5Affected Software1
Exploit DB
Exploit DB
added 2006/01/31 12:0 a.m.25 views

Farsinews 2.1 - 'Loginout.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/16440/info FarsiNews is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious P...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2002/09/02 12:10 p.m.8 views

security flaw

The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings...

5CVSS5.9AI score0.36039EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2002/08/08 9:20 a.m.5 views

security flaw

The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings...

5CVSS5.9AI score0.36039EPSS
Exploits1References4
securityvulns
securityvulns
added 2001/04/13 12:0 a.m.30 views

HylaFAX vulnerability

Hi, I've found classical format bug while I was playing with HylaFAX server v4.1 beta2: $ -u /usr/sbin/hfaxd && /usr/sbin/hfaxd -q 'nn' SUID uucp Segmentation fault It crashes while calling syslog with user supplied fmt. Looks nasty. Sorry, I have no working exploit, I won't have one and I have n...

7.1AI score
Exploits0
Rows per page
Query Builder