Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in default.asp in ASPCode CMS 1.5.8, 2.0.0 Build 103, and possibly other versions, allows remote attackers to hijack the authentication of an administrator for requests that 1 delete users via the delete action in the ma2 parameter or 2 create...

CVE-2010-0709

Multiple cross-site request forgery CSRF vulnerabilities in Limny 2.0 allow remote attackers to 1 hijack the authentication of users or administrators for requests that change the email address or password via the user action to index.php, and 2 hijack the authentication of the administrator for...

cPanel - Multiple Cross-Site Request Forgery Vulnerabilities

cPanel - Multiple Cross-Site Request Forgery Vulnerabilities Create Database: Create New Database New Database: Add Redirect: Type Permanent 301 Temporary 302 http://www.? All Public Domains sEc-r1z.com...

cPanel - Multiple Cross-Site Request Forgery Vulnerabilities

Create Database: Create New Database New Database: Add Redirect: Type Permanent 301 Temporary 302 http://www.? All Public Domains sEc-r1z.com / input name...

MySQL: Format string vulnerability by manipulation with database instances (crash)

Multiple format string vulnerabilities in the dispatchcommand function in libmysqld/sqlparse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service daemon crash and possibly have unspecified other impact via format string specifiers in a database...

mysql: incomplete upstream fix for CVE-2008-2079

MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified 1 DATA DIRECTORY or 2 INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time a...

Mandriva Update for mmc-agent MDVA-2010:050 (mmc-agent)

Check for the Version of mmc-agent OpenVAS Vulnerability Test Mandriva Update for mmc-agent MDVA-2010:050 mmc-agent Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

VideoLAN Client (VLC) Win32 smb:// URI Buffer Overflow

$Id: vlcsmburi.rb 8475 2010-02-13 06:58:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Sun MySQL mysql_log Format String (CVE-2009-2446)

A format string vulnerability exists in Sun Microsystems MySQL database server. The flaw is due to insufficient input validation when processing create and drop database commands. Remote authenticated attackers could exploit this vulnerability by sending malformed data to the MySQL process. In a...

Oracle MySQL 6.0 < 6.0.9 CREATE TABLE Security Bypass

Binary data 5333.prm...

MySQL 6.0 < 6.0.9 CREATE TABLE Security Bypass

Binary data 801145.prm...

PT-2010-1294 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Red Hat Enterprise Linux RHEL 5 with Linux kernel 2.6.18 Description: The issue concerns a Red Hat configuration step for the qla2xxx driver in the Linux kernel when N Port ID Virtualization NPIV hardware is used. This configuration sets...

Mandriva Update for mysql MDVSA-2010:012 (mysql)

Check for the Version of mysql OpenVAS Vulnerability Test Mandriva Update for mysql MDVSA-2010:012 mysql Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Mandriva Update for mysql MDVSA-2010:011 (mysql)

Check for the Version of mysql OpenVAS Vulnerability Test Mandriva Update for mysql MDVSA-2010:011 mysql Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

DirectAdmin 1.34.0 XSRF

Vendor: http://www.directadmin.com/ Code : Create Administrator : DirectAdmin v1.34.0 XSRF Create Administrator Vulnerability...

DirectAdmin v1.34.0 XSRF Create Administrator Vulnerability

No description provided by source. Vendor: http://www.directadmin.com/ Code : Create Administrator : html titleDirectAdmin v1.34.0 XSRF Create Administrator Vulnerability/title !--!Set You'r victim By SarBoT511 !-- form name="reseller" action="http://site.com:2222/CMDACCOUNTADMIN" method="post"...

DirectAdmin 1.34.0 - Cross-Site Request Forgery (Add Admin)

DirectAdmin 1.34.0 - Cross-Site Request Forgery Add Admin Vendor: http://www.directadmin.com/ Code : Create Administrator : DirectAdmin v1.34.0 XSRF Create Administrator Vulnerability...

DirectAdmin v1.34.0 XSRF Create Administrator Vulnerability

Exploit for unknown platform in category web applications =========================================================== DirectAdmin v1.34.0 XSRF Create Administrator Vulnerability =========================================================== Vendor: http://www.directadmin.com/ Code : Create...

Matrimony Script XSRF

/\ == \ /\ \ /\ \ \ \ ================================================================ ------------------------------------------------------------------------------------------...

Matrimony Script - Cross-Site Request Forgery

Matrimony Script - Cross-Site Request Forgery /\ == \ /\ \ /\ \ \ \ ================================================================ ------...