14 matches found
EUVD-2012-3449
Malware in sbrugna...
CVE-2014-9455
SQL injection vulnerability in showads.php in CTS Projects & Software ClassAd 3.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter...
Information Disclosure
Condor is vulnerable to information disclosure. Remote attackers are able to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condorstartd port, which leaks the ClaimId...
CTS Projects & Software ClassAd SQL Injection Vulnerability
CTS Projects & Software ClassAd is an online advertising application. The CTS Projects & Software ClassAd showads.php script does not properly filter the catid parameter, allowing remote attackers to exploit the vulnerability by submitting specially crafted SQL queries to manipulate or obtain...
CVE-2014-9455
SQL injection vulnerability in showads.php in CTS Projects & Software ClassAd 3.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter...
CVE-2014-9455
SQL injection vulnerability in showads.php in CTS Projects & Software ClassAd 3.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter...
CVE-2014-9455
CVE-2014-9455 concerns a SQL injection in the CTS Projects & Software ClassAd 3.0 web app. The vulnerability is located in showads.php where the catid parameter is not properly filtered, allowing remote attackers to execute arbitrary SQL commands. This is described consistently across multiple re...
ClassAd 3.0 SQL Injection
Bilnd SQL Injection on ClassAd Risk: High CWE number: CWE-89 Date: 9/11/2014 Vendor: projects-and-software.de Version: 3.0 Author: Felipe " Renzi " Gabriel Contact: [email protected] Tested on: Linux Ubuntu 14.04; Mozilla Firefox 34.0; sqlmap 1.0-dev-nongit-20141106 Vulnerable File: showads.php...
DEBIAN-CVE-2012-3493
The commandgiverequestad function in condorstartd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condorstartd port, which leaks the ClaimId...
CVE-2012-3493
The commandgiverequestad function in condorstartd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condorstartd port, which leaks the ClaimId...
CVE-2012-3493
The commandgiverequestad function in condorstartd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condorstartd port, which leaks the ClaimId...
CVE-2012-3493
The commandgiverequestad function in condorstartd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condorstartd port, which leaks the ClaimId...
condor: GIVE_REQUEST_AD leaks privileged ClaimId information
The commandgiverequestad function in condorstartd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condorstartd port, which leaks the ClaimId...
condor: GIVE_REQUEST_AD leaks privileged ClaimId information
The commandgiverequestad function in condorstartd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condorstartd port, which leaks the ClaimId...