CVE-2009-1767

CVE-2009-1767 involves admin/edituser.php in the 2daybiz Template Monster Clone, where no administrative authentication is required. This permits remote attackers to modify arbitrary accounts via the parameters loginname, password, email, firstname, and lastname. The NVD lists a CVSSv2 base score...

2DayBiz Template Monster Clone - 'edituser.php' Change Pass

Template Monster Clone Change Password 2daybiz Template Monster Clone Add Categoty Add Templates Edit Templates Show Templates -- &nbsp Login Namee font size="5"...

2DayBiz Template Monster Clone - edituser.php Change Pass

2DayBiz Template Monster Clone - edituser.php Change Pass Template Monster Clone Change Password 2daybiz Template Monster Clone Add Categoty Add Templates Edit Templates Show Templates -- &nbsp Login Namee Pa...

2daybiz Template Monster Clone (edituser.php) Change Pass Exploit

Exploit for unknown platform in category web applications ================================================================= 2daybiz Template Monster Clone edituser.php Change Pass Exploit ================================================================= Template Monster Clone Change Password...

2daybiz Template Monster Clone (edituser.php) Change Pass Exploit

No description provided by source. title Template Monster Clone Change Password /title /head head /head body bgcolor="000000" pfont size="6" color="FF0000"a href="http://www.2daybiz.com/" font color="FF0000"2daybiz/font/a Template Monster Clone /font/p TABLE border=0 width=780 align=center TR...

[SECURITY] [DSA 1791-1] New moin packages fix cross-site scripting

------------------------------------------------------------------------ Debian Security Advisory DSA-1791-1 [email protected] http://www.debian.org/security/ Steffen Joeris May 06, 2009 http://www.debian.org/security/faq -...

Linux kernel minor signal handling vulnerability

The clone system call in the Linux kernel 2.6.28 and earlier allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONEPARENT flag, and then letting this new process exit...

Linux kernel minor signal handling vulnerability

The clone system call in the Linux kernel 2.6.28 and earlier allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONEPARENT flag, and then letting this new process exit...

Unrestricted file upload

Unrestricted file upload vulnerability in index.php in the Twitter Clone TClone plugin for ReVou Micro Blogging allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in settings/myphoto...

CVE-2008-6752

adminlogin/password.php in the Twitter Clone TClone plugin for ReVou Micro Blogging does not verify the original password before changing passwords, which allows remote attackers to change the administrator's password and gain privileges via a direct request with modified newpass1 and newpass2...

CVE-2008-6751

CVE-2008-6751 documents an unrestricted file upload in index.php of the Twitter Clone (TClone) plugin for ReVou Micro Blogging. A remote attacker can upload a file with an executable extension and access it via settings/my_photo, enabling arbitrary code execution. NVD assigns a base score of 6.8 ...

kernel security update

CentOS Errata and Security Advisory CESA-2009:0326 Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages...

Linux kernel minor signal handling vulnerability

The clone system call in the Linux kernel 2.6.28 and earlier allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONEPARENT flag, and then letting this new process exit...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

RHEL 5 : kernel (RHSA-2009:0326)

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

CVE-2008-6405

SQL injection vulnerability in showcategory.php in Hotscripts Clone allows remote attackers to execute arbitrary SQL commands via the cid parameter...

Sql injection

SQL injection vulnerability in showcategory.php in Hotscripts Clone allows remote attackers to execute arbitrary SQL commands via the cid parameter...

CVE-2008-6405

The CVE-2008-6405 vulnerability affects Hotscripts Clone’s showcategory.php where the cid parameter is susceptible to SQL injection, enabling remote attackers to execute arbitrary SQL commands. The issue is due to improper handling/sanitization of user input in that component, with potential part...

CVE-2008-6405

SQL injection vulnerability in showcategory.php in Hotscripts Clone allows remote attackers to execute arbitrary SQL commands via the cid parameter...

CVE-2009-0028

CVE-2009-0028 is a local vulnerability in the Linux kernel up to version 2.6.28 where the clone system call with CLONE_PARENT can allow an unprivileged child to spawn a second child and exit, enabling it to send arbitrary signals to the parent process. The MiracleLinux AXSA-2009-42:04 advisory ex...