30 matches found
DM Database Server - SP_DEL_BAK_EXPIRED Memory Corruption
DM Database Server - SPDELBAKEXPIRED Memory Corruption source: https://www.securityfocus.com/bid/40460/info DM Database Server is a database application. DM Database Server is prone to a remote memory-corruption vulnerability. This issue affects the 'CALL SPDELBAKEXPIRED' function when a large...
MySQL空两进制字符串远程拒绝服务漏洞
BUGTRAQ ID: 31081br / CVE ID:CVE-2008-3963br / CNCVE ID:CNCVE-20082358br / br / MySQL是一款开放源代码的数据库应用程序。br / MySQL处理空两进制值存在问题,远程攻击者可以利用漏洞使服务程序崩溃。br / 通过Mysql客户端提交如下查询:br / select b'';br / 可导致服务程序崩溃。br / MySQL AB MySQL 6.0.4 MySQL AB MySQL 5.1.23 MySQL AB MySQL 5.0.60 可升级到最新版本:...
Thwboard Beta 2.8 - v_profile.php?user SQL Injection
Thwboard Beta 2.8 - vprofile.php?user SQL Injection source: https://www.securityfocus.com/bid/15763/info ThWboard is prone to multiple input validation vulnerabilities. The application is vulnerable to HTML injection, cross-site scripting, and SQL injection; these issues are due to a lack of prop...
Thwboard Beta 2.8 - 'misc.php?userid' SQL Injection
source: https://www.securityfocus.com/bid/15763/info ThWboard is prone to multiple input validation vulnerabilities. The application is vulnerable to HTML injection, cross-site scripting, and SQL injection; these issues are due to a lack of proper sanitization of user-supplied input. A remote...
Thwboard Beta 2.8 - 'calendar.php?year' SQL Injection
source: https://www.securityfocus.com/bid/15763/info ThWboard is prone to multiple input validation vulnerabilities. The application is vulnerable to HTML injection, cross-site scripting, and SQL injection; these issues are due to a lack of proper sanitization of user-supplied input. A remote...
efiction 1.01.12.0 - titles.php Cross-Site Scripting
efiction 1.01.12.0 - titles.php Cross-Site Scripting source: https://www.securityfocus.com/bid/15568/info eFiction is prone to SQL injection, remote file upload, and cross site scripting vulnerabilities. These vulnerabilities may allow an attacker to view and modify sensitive information, gain...
efiction 1.0/1.1/2.0 - 'titles.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/15568/info eFiction is prone to SQL injection, remote file upload, and cross site scripting vulnerabilities. These vulnerabilities may allow an attacker to view and modify sensitive information, gain unauthorized access, modify and corrupt the underlying...
efiction 1.0/1.1/2.0 - 'sid' SQL Injection
source: https://www.securityfocus.com/bid/15568/info eFiction is prone to SQL injection, remote file upload, and cross site scripting vulnerabilities. These vulnerabilities may allow an attacker to view and modify sensitive information, gain unauthorized access, modify and corrupt the underlying...
efiction 1.0/1.1/2.0 - 'titles.php' SQL Injection
source: https://www.securityfocus.com/bid/15568/info eFiction is prone to SQL injection, remote file upload, and cross site scripting vulnerabilities. These vulnerabilities may allow an attacker to view and modify sensitive information, gain unauthorized access, modify and corrupt the underlying...
efiction 1.0/1.1/2.0 - 'uid' SQL Injection
source: https://www.securityfocus.com/bid/15568/info eFiction is prone to SQL injection, remote file upload, and cross site scripting vulnerabilities. These vulnerabilities may allow an attacker to view and modify sensitive information, gain unauthorized access, modify and corrupt the underlying...