CVE-2009-3504

SQL injection vulnerability in offersbuy.php in Alibaba Clone 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2009-3504

Summary of CVE-2009-3504: Affected software: Alibaba Clone 3.0. Vulnerability: SQL injection in offers_buy.php, exploitable via the id parameter. Impact: Remote attackers can execute arbitrary SQL commands; effect includes potential data exposure or modification as indicated by the vulnerability ...

CVE-2009-3504

SQL injection vulnerability in offersbuy.php in Alibaba Clone 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...

kernel: execve: must clear current->clear_child_tid

The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...

Alibaba Clone 3.0 SQL Injection

x========================================================================================================================================x | AntiSecuritydotorg |...

kernel: execve: must clear current->clear_child_tid

The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...

kernel: execve: must clear current->clear_child_tid

The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...

Sql injection

Multiple SQL injection vulnerabilities in ReVou Micro Blogging Twitter clone allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password fields...

CVE-2008-7083

Multiple SQL injection vulnerabilities in ReVou Micro Blogging Twitter clone allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password fields...

CVE-2008-7083

CVE-2008-7083 involves several SQL injection flaws in the ReVou Micro Blogging Twitter clone that allow remote attackers to execute arbitrary SQL commands through the username and password input fields. The entry’s CVSS v2 base score is 7.5 ( HIGH ), with network access, low attack complexity, an...

HotScripts Type PHP Clone Script - feedback.php?msg Cross-Site Scripting

HotScripts Type PHP Clone Script - feedback.php?msg Cross-Site Scripting source: https://www.securityfocus.com/bid/43519/info Hotscripts Type PHP Clone Script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...

HotScripts Type PHP Clone Script - 'lostpassword.php?msg' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43519/info Hotscripts Type PHP Clone Script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

HotScripts Type PHP Clone Script - index.php?msg Cross-Site Scripting

HotScripts Type PHP Clone Script - index.php?msg Cross-Site Scripting source: https://www.securityfocus.com/bid/43519/info Hotscripts Type PHP Clone Script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...

HotScripts Type PHP Clone Script - 'index.php?msg' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43519/info Hotscripts Type PHP Clone Script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

CVE-2009-2894

Multiple SQL injection vulnerabilities in Ebay Clone 2009 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to productdesc.php, and the cid parameter to 2 showcategory.php and 3 gallery.php...

Sql injection

Multiple SQL injection vulnerabilities in Ebay Clone 2009 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to productdesc.php, and the cid parameter to 2 showcategory.php and 3 gallery.php...

CVE-2009-2894

CVE-2009-2894 affects Ebay Clone 2009, with multiple SQL injection flaws that allow remote attackers to alter the database by supplying crafted values to (1) id in product_desc.php and (2) cid in showcategory.php and (3) gallery.php. Root cause: improper input handling enabling SQL commands to be...

CVE-2009-2894

Multiple SQL injection vulnerabilities in Ebay Clone 2009 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to productdesc.php, and the cid parameter to 2 showcategory.php and 3 gallery.php...

Memory corruption

The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...

CVE-2009-2848

CVE-2009-2848 is confirmed in connected material as applicable to MiracleLinux kernel package 2.6.18-128.10AXS3, aligning with the Linux kernel vulnerability where execve does not properly clear current->clear_child_tid during thread creation/exit. This misbehavior can enable local users to ca...