Uebimiau Webmail v3.2.0-2.0 | Email Disclosure Vulnerability

Exploit for unknown platform in category web applications ============================================================ Uebimiau Webmail v3.2.0-2.0 | Email Disclosure Vulnerability ============================================================ Exploit Title: Uebimiau Webmail v3.2.0-2.0 | Email...

CVE-2010-0765

fipsForum 2.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/forumFips.mdb...

Uiga Personal Portal - 'index.php' SQL Injection

----------------------------Information------------------------------------------------ +Name : Uiga Personal Portal index.php SQL Injection +Autor : Easy Laster +Date : 28.02.2010 +Script : Uiga Personal Portal +Language :PHP +Discovered by Easy Laster +Security Group 4004-Security-Project +Gree...

Let the LOOP anti-download useless take a direct shell-vulnerability warning-the black bar safety net

Title: let the LOOP anti-download useless take a direct shell-the analysis of boiling news multimedia Outlook system V1. 2 0Day Author: Mo if you are askedB. H. S. T& Lee, mi L4nk0r Source: L4nk0r'S Blog This article has been published in the hackers Handbook 2 0 0 9 in the 9th issue of the...

[SECURITY] Fedora 12 Update: gambas-1.0.19-12.fc12

Gambas is a free development environment based on a Basic interpreter with object extensions, like Visual Basic but it is NOT a clone !. With Gambas, you can quickly design your program GUI, access MySQL or PostgreSQL databases, pilot KDE applications with DCOP, translate your program into many...

CVE-2010-0616

evalSMSI 2.1.03 stores passwords in cleartext in the database, which allows attackers with database access to gain privileges. NOTE: remote attack vectors are possible by leveraging a separate SQL injection vulnerability...

CVE-2010-0616

evalSMSI 2.1.03 stores passwords in cleartext in the database, which allows attackers with database access to gain privileges. NOTE: remote attack vectors are possible by leveraging a separate SQL injection vulnerability...

myBusinessAdmin - 'content.php' Blind SQL Injection

myBusinessAdmin content.php Blind Sql Injection Vulnerability ============================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Team : Sec Attack Team .:. Home : www.sec-attack.com/vb .:. Script : myBusinessAdmin .:. Download Script:...

Pre ADS Portal (cid) Remote SQL Injection Vulnerability

No description provided by source. Mega ADS Portal cid Remote SQL Injection Vulnerability ======================================================== Author: Hussin X Home : iq-ty.com/vbhttp://iq-ty.com/vb email: darkangelg85atYahooDoTcom Vendor : http://www.preprojects.com/ads.asp Exploit:...

File Access Vulnerability in Easy File Sharing Web Server

File Access Vulnerability in Easy File Sharing Web Server Discovered by: Timothy "Thor" Mullen Testing by Steve "Raging Haggis" Moffat, Hammer of God, Bermuda Labs Product: Easy File Sharing Web Server, current versions, default installation Vendor: http://www.sharing-file.com/ Vendor Notificatio...

WordPress Plugin WP-Forum 2.3 - SQL Injection Blind SQL Injection

WordPress Plugin WP-Forum 2.3 - SQL Injection Blind SQL Injection ============================================= INTERNET SECURITY AUDITORS ALERT 2009-010 - Original release date: September 28th, 2009 - Last revised: December 15th, 2009 - Discovered by: Juan Galiana Lara - CVE ID: CVE-2009-3703 -...

Piwigo 2.0.6 - Multiple Vulnerabilities

Piwigo 2.0.6 - Multiple Vulnerabilities Piwigo v2.0.6 Multiple Vulnerabilities Found By: mrme Download: http://piwigo.org/ Tested On: Windows Vista Note: For educational purposes only Vulnerabilities: XSS, CSRF, SQL Injection Author contact date: 13/12/09 Note: There is possibly many other...

Theeta CMS (Cross Site Scripting,SQL Injection) Multiple Vulnerabilities

Exploit for unknown platform in category web applications ======================================================================== Theeta CMS Cross Site Scripting,SQL Injection Multiple Vulnerabilities ======================================================================== 1-Cross Site Scripting...

Theeta CMS - Multiple Vulnerabilities

Theeta CMS - Multiple Vulnerabilities / \ / | | | \ / | | | | | | | | | | || | | | | | | | | '| | | | | | | | | | |/ \ / |/ / / | | | | || | || | || || | / || | | | / | | || / / |/ || ,|\|,| +-+-+-+-+ |C|r|e|w| +-+-+-+-+ Theeta CMS Cross Site Scripting,SQL Injection Multiple...

Theeta CMS XSS / SQL Injection

/ \ / | | | \ / | | | | | | | | | | || | | | | | | | | '| | | | | | | | | | |/ \ / |/ / / | | | | || | || | || || | / || | | | / | | || / / |/ || ,|\|,| +-+-+-+-+ |C|r|e|w| +-+-+-+-+ Theeta CMS Cross Site Scripting,SQL Injection Multiple Vulnerabilities Discovered By c0dy...

Big Banyan network article management system of 0day-vulnerability warning-the black bar safety net

Big Banyan network article management system Ver 3.0 Build 0 9 0 6 0 2 user registry filter is not strict can be inserted into a word Use: Google for: inurl:ArtClaShow. asp? cid search inurl:ArtClaShow. asp? cid for about1,170 query results, the following is the1-1 0 article Open the page, find t...

DB2 Monitoring Console Multiple Unspecified Security Bypass Vulnerabilities

The host is running IBM DMC and is prone to multiple Unspecified Security Bypass Vulnerabilities. OpenVAS Vulnerability Test $Id: gbibmdb2mcmultunspecifiedvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ DB2 Monitoring Console Multiple Unspecified Security Bypass Vulnerabilities Authors: Antu Sanadi...

CVE-2008-7131

Unspecified vulnerability in DB2 Monitoring Console 2.2.4 and earlier allows remote attackers to gain access to a database via a link to a victim who is already connected to the database...

Design/Logic Flaw

Unspecified vulnerability in DB2 Monitoring Console 2.2.4 and earlier allows remote attackers to gain access to a database via a link to a victim who is already connected to the database...

CVE-2008-7131

Unspecified vulnerability in DB2 Monitoring Console 2.2.4 and earlier allows remote attackers to gain access to a database via a link to a victim who is already connected to the database...