17 matches found
Astra Linux - уязвимость в sqlite3
In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3dbconfig in the C-language API can cause a denial of service application crash. An sznBig multiplication is not cast to a 64-bit integer, and consequently some memory allocations may be incorrect...
CVE-2026-24309
Due to missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticated attacker could execute specific ABAP function module to read, modify or insert entries into the database configuration table of the ABAP system. This unauthorized content change could lead to reduced...
EUVD-2013-0228
Malware in sbrugna...
EulerOS 2.0 SP11 : sqlite (EulerOS-SA-2025-1969)
According to the versions of the sqlite package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3dbconfig in the C-language API can cause a denial of service application crash. A...
DataEase 安全漏洞
DataEase is an open source data visualization and analysis tool. Used to help users quickly analyze data and gain insight into business trends , so as to achieve business improvement and optimization . A security vulnerability exists in DataEase versions prior to 2.5.0. Attackers can use this...
SUSE CVE-2023-4813
A flaw has been identified in glibc. In an uncommon situation, the gaihinet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with...
qdPM 跨站脚本漏洞
qdPM is a Web-based open source project management tool. A cross-site scripting vulnerability exists in qdPM, which stems from the lack of valid validation of user-side data in the product qdPMinstallmodulesdatabaseconfig.php file. The vulnerability can be exploited to execute client-side code. T...
CVE-2013-0192
File Disclosure in SMF SimpleMachines Forum = 2.0.3: Forum admin can read files such as the database config...
Arbitrary file deletion
File Disclosure in SMF SimpleMachines Forum = 2.0.3: Forum admin can read files such as the database config...
CVE-2013-0192
File Disclosure in SMF SimpleMachines Forum = 2.0.3: Forum admin can read files such as the database config...
Croogo <=1.3.3 Remote DBconfig Download Vulnerability
Exploit for php platform in category web applications Title : Croogo 421 : INSERT IGNORE INTO users id, roleid, username, password, name, email, website,... 1, 1, 'admin', 'c054b152596745efa1d197b809fa7fc70ce586e5', 'Administrator', 'email protected', '/about',....... ================ Exploited B...
Croogo 1.3.3 DBconfig Download
Title : Croogo 421 : INSERT IGNORE INTO users id, roleid, username, password, name, email, website,... 1, 1, 'admin', 'c054b152596745efa1d197b809fa7fc70ce586e5', 'Administrator', '[email protected]', '/about',....... ================ Exploited By KedAns-Dz HST-Dz...
Wmshop Premium Database Config Disclosure
Cyber-Warrior & Security TIM - Bug Researchers Group Application Name : Wmshop Premium v.8.1 - 12.0 - 13.0 Vulnerable Type : Arbitrary Database Config Disclosure Vulnerability Infection : SQL Info Get... Author : Septemb0x Script Down.& WebSite : http://s2.dosya.tc/wmshop12.rar.html -...
Knigman Shop Script Database Config Disclosure
Application Name : Knigman Shop Script Vulnerable Type : Arbitrary Database Config Disclosure Vulnerability Infection : SQL Info Get... Author : Septemb0x Script Down.& WebSite : http://knigman.net/buy.php?tovid=22764 & http://s2.dosya.tc/knigman.zip.html EXPLOIT : http://target/path/config.inc G...
AShop ru.1.Beta Database Config Disclosure
Application Name : AShop ru.1.Beta Vulnerable Type : Arbitrary Database Config Disclosure Vulnerability Infection : Admin Login Password Get... Author : Septemb0x Script Down.& WebSite : http://s2.dosya.tc/AShop.rar.html - http://softsearch.ru/programs/30-132-ashop-ru-download.shtml EXPLOIT :...
ibase-disclose.txt
Name: AFD i-base = 2.03 Author: Dyshoo Vendor: http://www.i-base.net/ Dork: "inurl:ibase site:de" http://site/ibase/zubehoer/download.php?filename=file Database config: http://site/ibase/zubehoer/download.php?filename=../config/configdb.php...
ibase <= 2.03 (download.php) Remote File Disclosure Vulnerability
Exploit for unknown platform in category web applications ================================================================= ibase = 2.03 download.php Remote File Disclosure Vulnerability ================================================================= Name: AFD i-base = 2.03 Author: Dyshoo Vendo...