Lucene search
K

92 matches found

Packet Storm
Packet Storm
added 2009/03/18 12:0 a.m.43 views

FireAnt 1.3 File Disclosure

ECHOADV106$2009 ----------------------------------------------------------------------------------------- ECHOADV106$2009 FireAnt = 1.3 Critical File Disclosure Vulnerability ----------------------------------------------------------------------------------------- Author : K-159 Date : March, 16 ...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.19 views

Fedora Update for bugzilla FEDORA-2007-2299

Check for the Version of bugzilla OpenVAS Vulnerability Test Fedora Update for bugzilla FEDORA-2007-2299 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.5CVSS6.5AI score0.01955EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.20 views

Fedora Update for bugzilla FEDORA-2008-3488

Check for the Version of bugzilla OpenVAS Vulnerability Test Fedora Update for bugzilla FEDORA-2008-3488 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.3CVSS6.4AI score0.01349EPSS
Exploits1References2
0day.today
0day.today
added 2008/12/09 12:0 a.m.19 views

PHP safe_mode bypass via proc_open() and custom environment

Exploit for linux platform in category local exploits =========================================================== PHP safemode bypass via procopen and custom environment ===========================================================...

6.8AI score
Exploits0
Fedora
Fedora
added 2008/05/10 1:57 p.m.68 views

[SECURITY] Fedora 7 Update: bugzilla-3.0.4-1.fc7

Bugzilla is a popular bug tracking system used by multiple open source projects. It requires a database engine installed - either MySQL or PostgreSQL. Without one of these database engines, Bugzilla will not work...

4.3CVSS1.2AI score0.01349EPSS
Exploits1
Fedora
Fedora
added 2008/05/10 1:51 p.m.41 views

[SECURITY] Fedora 8 Update: bugzilla-3.0.4-1.fc8

Bugzilla is a popular bug tracking system used by multiple open source projects. It requires a database engine installed - either MySQL or PostgreSQL. Without one of these database engines, Bugzilla will not work...

4.3CVSS1.2AI score0.01349EPSS
Exploits1
securityvulns
securityvulns
added 2008/05/06 12:0 a.m.66 views

Security Advisory for Bugzilla 3.0.3, 3.1.3, 2.22.3, and 2.20.5

Summary ======= Bugzilla is a Web-based bug-tracking system, used by a large number of software projects. This advisory covers three security issues that have recently been fixed in the Bugzilla code: Users without the "canconfirm" privilege could enter a bug as NEW or ASSIGNED by using the XML-R...

6.7AI score
Exploits0
OSV
OSV
added 2008/01/19 12:0 a.m.21 views

DSA-1467-1 mantis - several vulnerabilities

Bulletin has no description...

5CVSS6AI score0.01854EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.20 views

Debian Security Advisory DSA 944-1 (mantis)

The remote host is missing an update to mantis announced via advisory DSA 944-1. Several security related problems have been discovered in Mantis, a web-based bug tracking system. For details on the issues resolved, please visit the referenced advisories. The old stable distribution woody does no...

7.5CVSS6.5AI score0.03742EPSS
Exploits8
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.17 views

Debian: Security Advisory (DSA-778-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.02576EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.19 views

Debian: Security Advisory (DSA-230)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.02083EPSS
Exploits0References3
seebug.org
seebug.org
added 2007/08/24 12:0 a.m.34 views

Bugzilla多个远程安全漏洞

BUGTRAQ ID: 25420 Bugzilla是很多软件项目都在使用的基于Web的bug跟踪系统。 Bugzilla的实现上存在多个远程安全漏洞,远程攻击者可能利用这些漏洞在服务器上执行恶意命令或导致信息泄露。 在归档bug的时候Bugzilla没有正确地转义指导表单中的buildid字段,这可能允许用户通过向enterbug.cgi提交恶意URL覆盖User-Agent字符串,执行跨站脚本攻击。...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2007/03/08 12:0 a.m.25 views

tyger-sqlxss.txt

-=--------------------ADVISORY-------------------=- Tyger Bug Tracking System Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: Tyger Bug Tracking System -=+ Version: 1.1.3 -=+ Vendor's URL: http://uk.homeunix.org/tyger/cms/ -=+ Platform:...

7.4AI score
Exploits0
CVE
CVE
added 2007/03/07 12:0 a.m.43 views

CVE-2007-1290

CVE-2007-1290 is a confirmed SQL injection in Tyger Bug Tracking System (TygerBT) 1.1.3. The vulnerability resides in ViewReport.php and allows remote attackers to modify or execute arbitrary SQL via the bug parameter. This is documented in the NVD entry and corroborated by multiple connected rec...

7.5CVSS8.1AI score0.01001EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2007/03/07 12:0 a.m.46 views

CVE-2007-1289

CVE-2007-1289 affects Tyger Bug Tracking System (TygerBT) 1.1.3. The vulnerability is an SQL injection in ViewBugs.php exploitable via the s parameter, enabling remote attackers to execute arbitrary SQL commands. This relates to a flaw in input handling (unsanitized user input) in that component,...

6.4CVSS8.3AI score0.01215EPSS
Exploits1References7Affected Software1
securityvulns
securityvulns
added 2007/03/03 12:0 a.m.59 views

Tyger Bug Tracking System Multiple Vulnerability

-=--------------------ADVISORY-------------------=- Tyger Bug Tracking System Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: Tyger Bug Tracking System -=+ Version: 1.1.3 -=+ Vendor's URL: http://uk.homeunix.org/tyger/cms/ -=+ Platform:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2007/02/26 12:0 a.m.22 views

Tyger Bug Tracking System 1.1.3 - 'register.php?PATH_INFO' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied input. Exploiting these...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2007/02/26 12:0 a.m.19 views

Tyger Bug Tracking System 1.1.3 - 'login.php?PATH_INFO' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied input. Exploiting these...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/02/26 12:0 a.m.9 views

Tyger Bug Tracking System 1.1.3 - ViewBugs.php?s SQL Injection

Tyger Bug Tracking System 1.1.3 - ViewBugs.php?s SQL Injection source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails...

0.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.24 views

Debian DSA-1133-1 : mantis - missing input sanitising

Several remote vulnerabilities have been discovered in the Mantis bug tracking system, which may lead to the execution of arbitrary web script. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-0664 A cross-site scripting vulnerability was discovered ...

10CVSS5.5AI score0.0534EPSS
Exploits2References11
Rows per page
Query Builder