subversion: revision properties disclosure to user with partial access

Subversion 1.4.3 and earlier does not properly implement the "partial access" privilege for users who have access to changed paths but not copied paths, which allows remote authenticated users to obtain sensitive information revision properties via svn 1 propget, 2 proplist, or 3 propedit...

Joint Director's (Technical Education Department) official mail ID hacked

The Joint Director of Technical Education Department in Palace Grounds has fallen prey to hacking and email fraud. His official email ID was hacked and a number of messages were sent to a number of government employees seeking help. Joint Director R Krishnamurthy said his official email ID create...

Valentina Cookie Handling Privilege Escalation

Cyber-Warrior & Security TIM - Bug Researchers Group Application Name : Valentina Vulnerable Type : Cookie Handling Vulnerebility Infection : SQL Info GET... Author : Septemb0x Script Down.& WebSite : http://s2.dosya.tc/valentina.zip.html - http://www.valya.ru Cyber-Warrior & Security TIM - Bug...

CVE-2007-6260

The installation process for Oracle 10g and llg uses accounts with default passwords, which allows remote attackers to obtain login access by connecting to the Listener. NOTE: at the end of the installation, if performed using the Database Configuration Assistant DBCA, most accounts are disabled ...

Liberum Help Desk 0.97.3 - SQL Injection

Title : Liberum Help Desk All Password Changed to "kro" """"""""""""""""""""" ajann,Turkey ... Im not Hacker! milw0rm.com 2006-11-25...

PT-2005-4554 · Cisco · Cisco Ip Phone 7920

Name of the Vulnerable Software and Affected Versions: Cisco IP Phone VoIP 7920 version 1.08 Description: The issue concerns hard-coded public and private SNMP community strings that cannot be changed, allowing remote attackers to obtain sensitive information. Recommendations: For Cisco IP Phone...

phpBB 2.0.16 released

Hi everyone, phpBB Group announces the release of phpBB 2.0.16. This release addresses some bugfixes and one critical security issue. To fix this, please apply the following change: In viewtopic.php Find: $message = strreplace'"', '"', substr@pregreplace'?^+|?Rse', "@pregreplace'b" . strreplace''...

Microsoft Windows - Users Information : Never Changed Password

Using the supplied credentials, Nessus was able to list users who have never changed their passwords. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10898; scriptversion"1.23"; scriptcvsdate"Date: 2018/08/13 14:32:39"; scriptnameenglish:"Microsoft Windows - Users...