CVE-2005-3112

The "reset password" feature in Macromedia Breeze 5.0 stores passwords in plaintext in the database instead of the hash, which allows attackers with access to the database to obtain the passwords...

CVE-2005-3112

The "reset password" feature in Macromedia Breeze 5.0 stores passwords in plaintext in the database instead of the hash, which allows attackers with access to the database to obtain the passwords...

PluggedOut CMS 0.4.8 - contenttypeid SQL Injection

PluggedOut CMS 0.4.8 - contenttypeid SQL Injection source: https://www.securityfocus.com/bid/14426/info PluggedOut CMS is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access ...

PluggedOut CMS 0.4.8 - 'contenttypeid' SQL Injection

source: https://www.securityfocus.com/bid/14426/info PluggedOut CMS is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data. Other attacks are also possible...

phpWebSite: Arbitrary command execution through XML-RPC and SQL injection

Background phpWebSite is a web site content management system. Description phpWebSite uses an XML-RPC library that improperly handles XML-RPC requests and responses with malformed nested tags. Furthermore, "matrixkiller" reported that phpWebSite is vulnerable to an SQL injection attack. Impact A...

ASP-Nuke <= 0.80 comment_post.asp远程SQL注入漏洞

ASPNuke中存在SQL注入漏洞，远程攻击者可以利用此漏洞非授权访问数据库。 起因是没有正确的过滤用户输入。请看/module/support/task/commentpost.asp的第36行和第75行代码： ... nTaskID = steNForm TaskID ... If sErrorMsg = Then prevent dup posting here sStat = SELECT TaskID & FROM tblTaskComment & WHERE TaskID = & nTaskID & & AND Subject = & ReplacesSubject, , &...

CVE-2000-1235

The default configurations of 1 the port listener and 2 modplsql in Oracle Internet Application Server IAS 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor DAD files...

[SA15627] C-JDBC Exposure of Cached Results

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

[Full-disclosure] Invision Power Board 1.x and 2.x Privilege Escalation Vulnerability

If an non-root admin goes to delete their own group, they are taken to a screen that says "Move users in this group to..." in which they can select the root admin group and move themselves into it. actually, they can move all users in any group into the root admin group root admins have complete...

CVE-2005-1645

Keyvan1 ImageGallery stores the image.mdb database under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information...

CVE-2005-1645

Keyvan1 ImageGallery stores the image.mdb database under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information...

JGS-Portal 3.0.1 - ID SQL Injection

JGS-Portal 3.0.1 - ID SQL Injection source: https://www.securityfocus.com/bid/13451/info JGS-Portal is prone to an SQL injection. This issue may potentially be exploited to compromise the software or gain unauthorized access to the database. The consequences of exploitation will depend on the...

MetaCart2 - CurCatalogID SQL Injection

MetaCart2 - CurCatalogID SQL Injection source: https://www.securityfocus.com/bid/13384/info A remote SQL injection vulnerability affects MetaCart2. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in SQL queries. An attacker may...

simpgbSQL.txt

Hi, The PHP guestbook SimpGB 1, written by Boesch IT-Consulting 2 can be exploited to gain userdata. The quote variable isn't checked carefully in simpgb/include/gbnew.inc called by guestbook.php. I wrote a proof of concept which shows a md5 hash and the username, read from the database...

phpDEV5 Remote Default Insecure Users Vuln

No description provided by source. ------------------------------------------------------------------------ PHPDev5 Remote Insecure Default Users & Passwords vuln. By : Ali7 e-mail : [email protected] date : 09-03-2k5 greetz : all my friends ; AlkaeN ; s4a.cc boyz ; Target : PHPDev 5 URL :...

phpDEV5 - Remote Default Insecure Users

------------------------------------------------------------------------ PHPDev5 Remote Insecure Default Users & Passwords vuln. By : Ali7 e-mail : [email protected] date : 09-03-2k5 greetz : all my friends ; AlkaeN ; s4a.cc boyz ; Target : PHPDev 5 URL : www.firepages.com.au -...

phpDEV5 Remote Default Insecure Users Vuln

Exploit for unknown platform in category web applications ========================================== phpDEV5 Remote Default Insecure Users Vuln ========================================== ------------------------------------------------------------------------ PHPDev5 Remote Insecure Default Users...

PHPCOIN 1.2 - login.php Multiple Cross-Site Scripting Vulnerabilities

PHPCOIN 1.2 - login.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/12686/info Multiple remote input-validation vulnerabilities affect phpCOIN because the application fails to properly sanitize user-supplied input before using it to carry out critical...

vpasp.txt

VP-ASP Shopping Cart Version 5.0 Google style by fris Finding VP-ASP 5.00 Sites in Google: In google type: intitle:VP-ASP Shopping Cart 5.00 You will find many websites with VP-ASP 5.00 cart software installed Now lets goto the exploit the page will be like this:...

Sybase SQL sa Account Blank Password

The remote Sybase SQL server has the default 'sa' account enabled without any password. An attacker may use this flaw to execute commands against the remote host as well as read database content. C Tenable Network Security, Inc. This script is based on mssqlblankpassword.nasl which is C H D Moore...