235 matches found
Design/Logic Flaw
aviary/jobcontrol.py in Condor, as used in Red Hat Enterprise MRG 2.3, when removing a job, allows remote attackers to cause a denial of service condorschedd restart via square brackets in the cproc option...
PT-2013-1675 · Red Hat · Condor
Name of the Vulnerable Software and Affected Versions: Condor versions in Red Hat Enterprise MRG 2.3 Description: The issue allows remote attackers to cause a denial of service, resulting in a condor schedd restart, by utilizing square brackets in the cproc option when removing a job. This is due...
condor: DoS when removing jobs via jobcontrol.py when job id is in square brackets
aviary/jobcontrol.py in Condor, as used in Red Hat Enterprise MRG 2.3, when removing a job, allows remote attackers to cause a denial of service condorschedd restart via square brackets in the cproc option...
condor: DoS when removing jobs via jobcontrol.py when job id is in square brackets
aviary/jobcontrol.py in Condor, as used in Red Hat Enterprise MRG 2.3, when removing a job, allows remote attackers to cause a denial of service condorschedd restart via square brackets in the cproc option...
php: $_FILES array indexes corruption
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid open square bracket characters in name values, which makes it easier for remote attackers to cause a denial of service malformed $FILES indexes or conduct directory traversal attacks during multi-file...
php: $_FILES array indexes corruption
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid open square bracket characters in name values, which makes it easier for remote attackers to cause a denial of service malformed $FILES indexes or conduct directory traversal attacks during multi-file...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allow remote attackers to inject arbitrary web script or HTML via 1 x-mac-arabic, 2 x-mac-farsi, or 3 x-mac-hebrew characters that may b...
CVE-2010-3770
CVE-2010-3770 refers to multiple XSS vulnerabilities in the Mozilla Firefox/SeaMonkey rendering engine. The issue allows remote attackers to inject arbitrary scripts via certain character encodings: x-mac-arabic, x-mac-farsi, or x-mac-hebrew, which may be converted to angle brackets during render...
Sql injection
SQL injection vulnerability in the HotBrackets Tournament Brackets comhotbrackets component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php...
CVE-2010-0945
CVE-2010-0945 concerns a SQL injection vulnerability in the Joomla! extension component com_hotbrackets (HotBrackets Tournament Brackets). The public description states that remote attackers can abuse the id parameter to index.php to execute arbitrary SQL commands. Affected product is Joomla! wit...
Joomla Hot Brackets Blind SQL Injection
Joomla Component comhotbrackets Blind SQL injection Vulnerability author : Fl0riX Name : comhotbrackets Bug Type : Blind SQL Injection Infection : Admin login bilgileri alýnabilir. Demo Vuln. : TRUE+ » http://www.jon2s.com/index.php?option=comhotbrackets&id=1 and 1=1 FALSE- »...
CVE-2007-1662
Perl-Compatible Regular Expression PCRE library before 7.3 reads past the end of the string when searching for unmatched brackets and parentheses, which allows context-dependent attackers to cause a denial of service crash, possibly involving forward references...
DEBIAN-CVE-2007-1662
Perl-Compatible Regular Expression PCRE library before 7.3 reads past the end of the string when searching for unmatched brackets and parentheses, which allows context-dependent attackers to cause a denial of service crash, possibly involving forward references...
CVE-2007-1662
Perl-Compatible Regular Expression PCRE library before 7.3 reads past the end of the string when searching for unmatched brackets and parentheses, which allows context-dependent attackers to cause a denial of service crash, possibly involving forward references...
PT-2004-2528 · Ibm · Ibm Domino +1
Name of the Vulnerable Software and Affected Versions: IBM Lotus Notes versions prior to R6 IBM Domino versions prior to R6 Description: A cross-site scripting XSS issue allows remote attackers to execute arbitrary web script or HTML via square brackets at the beginning and end of computed for...