EulerOS 2.0 SP2 : openldap (EulerOS-SA-2019-2358)

According to the versions of the openldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security...

Security update for openldap2 (moderate)

openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2019:2176-1 Rating: moderate References: 1073313 1111388 1114845 1143194 1143273 Cross-References: CVE-2017-17740 CVE-2019-13057 CVE-2019-13565 Affected Products: openSUSE Leap 15.0 An update that solves three...

OPENSUSE-SU-2019:2157-1 Security update for openldap2

This update for openldap2 fixes the following issues: Security issue fixed: - CVE-2019-13565: Fixed an authentication bypass when using SASL authentication and session encryption bsc1143194. - CVE-2019-13057: Fixed an issue with delegated database admin privileges bsc1143273. - CVE-2017-17740: Wh...

Security update for openldap2 (moderate)

openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2019:2157-1 Rating: moderate References: 1073313 1111388 1114845 1143194 1143273 Cross-References: CVE-2017-17740 CVE-2019-13057 CVE-2019-13565 Affected Products: openSUSE Leap 15.1 An update that solves three...

SUSE-SU-2019:2395-1 Security update for openldap2

This update for openldap2 fixes the following issues: Security issue fixed: - CVE-2019-13565: Fixed an authentication bypass when using SASL authentication and session encryption bsc1143194. - CVE-2019-13057: Fixed an issue with delegated database admin privileges bsc1143273. - CVE-2017-17740: Wh...

Synonym (function) lifting vulnerability in Damon database

DM7 is a new-generation database product designed by Damon on the basis of summarizing the R&D and application experience of DM series products, absorbing the advantages of mainstream database products and adopting JAVA-like virtual machine technology. DM7 database has a synonym function lifting...

CVE-2016-5483: use mysqldump to backup can generate Backdoor-vulnerability warning-the black bar safety net

mysqldump is used to create a MySQL database, logical backup is a commonly used tool. It is in the default configuration, you can generate one. sql file containing the create/delete tables and insert data. In import the dump file, an attacker may be manufactured by a malicious table name to...

[SECURITY] Fedora 25 Update: phpMyAdmin-4.6.5.1-2.fc25

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

Uebimiau 3.2.0 /inc/database/system_admin/admin.ucf 信息泄漏漏洞

No description provided by source...

vBulletin Search UI SQL Injection

vBulletin "Search UI" SQL Injection: Take Two It looks like someone has found another SQL Injection bug in the vBulletin "Search UI". After taking a quick look @ the bug, I have determined it to be exploitable, pre auth. The actual SQL Injection lies within the addadvancedsearchfilters function...

CVE-2006-1772

debconf in Debian GNU/Linux, when configuring mnogosearch in the mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat file instead of the restricted passwords.dat for storing the cleartext database administrator password in the mnogosearch-common/databaseadminpass record, which...