Lucene search
+L

3396 matches found

securityvulns
securityvulns
added 2004/10/16 12:0 a.m.26 views

[SA12843] WowBB Forum Unspecified SQL Injection and Cross-Site Scripting

TITLE: WowBB Forum Unspecified SQL Injection and Cross-Site Scripting SECUNIA ADVISORY ID: SA12843 VERIFY ADVISORY: http://secunia.com/advisories/12843/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: WowBB Forum 1.x...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2004/10/08 12:0 a.m.24 views

[SA12764] CubeCart "cat_id" SQL Injection Vulnerability

TITLE: CubeCart "catid" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA12764 VERIFY ADVISORY: http://secunia.com/advisories/12764/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: CubeCart 2.x http://secunia.com/product/4021/ DESCRIPTION: Pedro Sanches h...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2004/09/30 12:0 a.m.33 views

[SA12674] PeopleSoft HRMS Page Manipulation and Identity Spoofing

TITLE: PeopleSoft HRMS Page Manipulation and Identity Spoofing SECUNIA ADVISORY ID: SA12674 VERIFY ADVISORY: http://secunia.com/advisories/12674/ CRITICAL: Moderately critical IMPACT: Spoofing, Manipulation of data WHERE: From remote SOFTWARE: PeopleSoft Human Resources Management System HRMS 7.x...

1.4AI score
Exploits0
securityvulns
securityvulns
added 2004/09/30 12:0 a.m.26 views

[SA12672] RealOne Player / RealPlayer / Helix Player Multiple Vulnerabilities

TITLE: RealOne Player / RealPlayer / Helix Player Multiple Vulnerabilities SECUNIA ADVISORY ID: SA12672 VERIFY ADVISORY: http://secunia.com/advisories/12672/ CRITICAL: Highly critical IMPACT: Manipulation of data, System access WHERE: From remote SOFTWARE: RealPlayer 8...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2004/09/28 12:0 a.m.51 views

[SA12609] YaBB Input Validation Vulnerabilities

TITLE: YaBB Input Validation Vulnerabilities SECUNIA ADVISORY ID: SA12609 VERIFY ADVISORY: http://secunia.com/advisories/12609/ CRITICAL: Less critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: YaBB 1.x http://secunia.com/product/541/ DESCRIPTION: Two...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2004/09/08 12:0 a.m.27 views

Multiple Safari bugs

Security Bypass, Cross Site Scripting, Manipulation of data, Exposure of system information, Exposure of sensitive information, Privilege escalation, DoS, System access...

1.6AI score
Exploits0References1Affected Software1
seebug
seebug
added 2004/07/04 12:0 a.m.36 views

phpMyAdmin 2.5.7 Remote code injection Exploit

No description provided by source. / phpmy-explt.c written by Nasir Simbolon nasir kecapi com eagle kecapi com Jakarta, Indonesia June, 10 2004 A phpMyAdmin-2.5.7 exploite program. This is a kind of mysql server wrapper acts like a proxy except that it will sends a fake table name, when client...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2004/03/17 12:0 a.m.19 views

Belchior Foundry VCard 2.8 - Authentication Bypass

Belchior Foundry VCard 2.8 - Authentication Bypass source: https://www.securityfocus.com/bid/9910/info It has been reported that vCard is prone to a remote authentication bypass vulnerability. This issue is due to a design error that would allow a malicious user access to certain admin...

0.4AI score
Exploits0
exploitdb
exploitdb
added 2004/03/17 12:0 a.m.22 views

Belchior Foundry VCard 2.8 - Authentication Bypass

source: https://www.securityfocus.com/bid/9910/info It has been reported that vCard is prone to a remote authentication bypass vulnerability. This issue is due to a design error that would allow a malicious user access to certain admin functionality without having to first authenticate to the...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/02/20 12:0 a.m.30 views

CERT Advisory CA-2003-05 Multiple Vulnerabilities in Oracle Servers

-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2003-05 Multiple Vulnerabilities in Oracle Servers Original release date: February 19, 2003 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Systems running Oracle9i Database...

7.5CVSS0.1AI score0.14634EPSS
Exploits1
securityvulns
securityvulns
added 2002/07/25 12:0 a.m.51 views

Security Bulletin MS02-036: Authentication Flaw in Microsoft Metadirectory Services Could Allow Privilege Elevation (Q317138)

---------------------------------------------------------------------- Title: Authentication Flaw in Microsoft Metadirectory Services Could Allow Privilege Elevation Q317138 Date: 24 July 2002 Software: Microsoft Metadirectory Services 2.2 Impact: Elevation of privilege Max Risk: Medium Bulletin:...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2001/11/02 12:0 a.m.70 views

Fuse Talk vulnerability

e-zonemedia's Fuse Talk is vulnerable to malicious SQL. Improper form sanitization makes it possible for any user to manipulate data as she feels fit. On the sign up form join.cfm is possible to pass a well crafted form variable to the action template it's the same template subsequently join.cfm...

1.1AI score
Exploits0
cert
cert
added 2001/10/18 12:0 a.m.21 views

Php variables passed from the browser are stored in global context

Overview Php is a dynamic scripting language used by programmers to develop webservers, message boards, chat applications and a variety of programs. By default php stores variables passed from the URL in a global context. Programmers often fail to change this setting which can allow serious...

7.8AI score
Exploits0References16
securityvulns
securityvulns
added 2001/05/29 12:0 a.m.50 views

TWIG SQL query bugs

I can't find the person who really in charge on developing twig, so I mail about this bug to the person who announce new version of twig about two month ago. -------------------------------------------------------------------------- Subject: Unquoted SQL query = potential damage Software package:...

7.8AI score
Exploits0
packetstorm
packetstorm
added 2001/03/03 12:0 a.m.32 views

rdC270201.adv.en

r 0 t t e n d e v 1 c e C r e w r0tten dev1ce Crew A r g e n t i n i a n S e c u r i t y G r o u p Argentinian Security Group ---------------------------------------:2:3:4:5:6:7:8:eee" | uuencode -m f begin-base64 644 f MDpBbm9ueW1vdXM6MjozOjQ6NTo2Ojc6ODplZWUK lynx...

7.4AI score
Exploits0
msupdate
msupdate
added 1970/01/01 12:0 a.m.11 views

Microsoft SQL Server 2008 R2 - PowerPivot for Microsoft Excel 2010 - Service Pack 1 (KB2639688)

Microsoft PowerPivot for Microsoft Excel 2010 provides ground-breaking technology, such as fast manipulation of large data sets often millions of rows, streamlined integration of data, and the ability to effortlessly share your analysis through Microsoft SharePoint 2010...

2.9AI score
Exploits0
Rows per page
Query Builder