TorrentTrader 1.0 RC2 - SQL Injection

!/usr/bin/php ? / TorrentTrader 1.0 RC2 SQL Injection Proof of Concept By aCiDBiTS acidbitsathotmail.com 31-August-2004 "TorrentTrader http://www.torrenttrader.com/ is a feature packed and highly customisable open-source BitTorrent tracker." This PoC dumps the username and password's md5 hash of...

GLSA-200405-18 : Buffer Overflow in Firebird

The remote host is affected by the vulnerability described in GLSA-200405-18 Buffer Overflow in Firebird A buffer overflow exists in three Firebird binaries gdsinetserver, gdslockmgr, and gdsdrop that is exploitable by setting a large value to the INTERBASE environment variable. Impact : An...

Nucleus CMS action.php itemid Parameter SQL Injection

The remote host is running Nucleus CMS, an open source content management system. There is a SQL injection condition in the remote version of this software that could allow an attacker to execute arbitrary SQL commands against the remote database. An attacker could exploit this flaw to gain...

SUSE-SA:2003:0008: imp

The remote host is missing the patch for the advisory SUSE-SA:2003:0008 imp. IMP is a well known PHP-based web-mail system. Some SQL-injection vulnerabilities were found in IMP 2.x that allow an attacker to access the underlying database. No authentication is needed to exploit this bug. An attack...

MySQL 4.15.0 - Authentication Bypass

MySQL 4.15.0 - Authentication Bypass source: https://www.securityfocus.com/bid/10654/info MySQL is prone to a vulnerability that may permit remote clients to bypass authentication. This is due to a logic error in the server when handling client-supplied length values for password strings...

Citadel/UX 6.20 fixes local permissions vulnerability

Citadel/UX Security Advisory 2004-01 1. Topic: Updated Citadel/UX package fixes permissions problem which could allow local users direct access to the Citadel/UX database. 2. Relevant releases/architectures: Citadel/UX 5.00 - 6.14, all architectures 3. Problem description: Citadel/UX is a high...

New Macromedia Security Zone Bulletin Posted

Security Bulletin MPSB 04-05 Potential Risk in Dreamweaver Remote Database Connectivity Originally posted: April 1, 2004 Last updated: April 1, 2004 Summary: Dreamweaver's remote database connectivity for testing dynamic database-driven websites installs scripts that may reveal DSNs to outside...

phpBB < 2.0.7a - Multiple Vulnerabilities

phpBB Multiple Vulnerabilities Vendor: phpBB Group Product: phpBB Version: = 2.0.7a Website: http://www.phpbb.com BID: 9942 Description: phpBB is a high powered, fully scalable, and highly customisable open-source bulletin board package. phpBB has a user-friendly interface, simple and...

CVE-2004-0351

Spider Sales shopping cart stores the private key in the same database and table as the public key, which allows local users with access to the database to decrypt data...

CVE-2002-1578

The default installation of SAP R/3, when using Oracle and SQLnet V2 3.x, 4.x, and 6.10, allows remote attackers to obtain arbitrary, sensitive SAP data by directly connecting to the Oracle database and executing queries against the database, which is not password-protected...

cfWebStore Multiple Vulnerabilities (SQLi, XSS)

The remote host is running cfWebStore 5.0.0 or older. There is a flaw in this software that could allow a remote attacker to execute arbitrary SQL statements in the remote database that could in turn be used to gain administrative access on the remote host, read, or modify the content of the remo...

[Full-Disclosure] Confixx 2.0.xx SQL_Injections and reading MySQL Root-PW

SQL-Injections in Confixx 2.0.xx // reading MySQL Root-PW include"auth.php"; dbconnect$dbhost, $dbuser, $dbpass; $id = dbquery"select countdatenbank as mysql from mysqldatenbanken where kunde = '$PHPAUTHUSER'"; $werte = dbfetcharray$id; $mysql = $werte"mysql"; $id = dbquery"select dbname from...

Spider Sales shopping cart software multiple security vulnerabilities

S-Quadra Advisory 2004-03-03 Topic: Spider Sales shopping cart software multiple security vulnerabilities Severity: High Vendor URL: http://www.spidersales.com Advisory URL: http://www.s-quadra.com/advisories/Adv-20040303.txt Release date: 03 Mar 2004 1. DESCRIPTION "Spider Sales is a powerful...

SpiderSales 2.0 Shopping Cart - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/9799/info Multiple vulnerabilities have been identified in the application that may allow an attacker to obtain the private cryptographic key and gain access to sensitive information. The application is also reported prone to an SQL injection vulnerabilit...

PunkBuster SQL Injection Attack

Timberlake Advisory 200402181e-03. Program: http://pbdb.sourceforge.net/ PunkBuster screenshot management system. Simplifying the task of capturing and cataloguing screenshots. It sticks to the roof like a gecko. It supports screenshot retrieval and cataloguing to a website - which includes searc...

Moderate: Red Hat Security Advisory: slocate security update

Updated slocate packages are now available that fix vulnerabilities allowing a local user to gain "slocate" group privileges. Slocate is a security-enhanced version of locate, designed to find files on a system via a central database. Patrik Hornik discovered a vulnerability in Slocate versions u...

Aardvark Topsites 4.1.0 - Multiple Vulnerabilities

Aardvark Topsites 4.1.0 - Multiple Vulnerabilities Aardvark Topsites Multiple Vulnerabilities Vendor: Aardvark Industries Product: Aardvark Topsites Version: = 4.1.0 Website: http://www.aardvarkind.com/ BID: 9231 Description: Aardvark Topsites is a popular free PHP topsites script. See URL for...

MySQL AB ODBC Driver 3.51 - Plain Text Password

MySQL AB ODBC Driver 3.51 - Plain Text Password source: https://www.securityfocus.com/bid/8245/info A vulnerability has been reported in the MySQL AB ODBC Open Data Base Connectivity driver implementation. The MySQL ODBC driver reportedly stores plain text credentials used to connect to the...

[SECURITY] [DSA-335-1] New mantis packages fix insecure file permissions

-------------------------------------------------------------------------- Debian Security Advisory DSA 335-1 [email protected] http://www.debian.org/security/ Matt Zimmerman June 28th, 2003 http://www.debian.org/security/faq -...

TA-2003-06 Denial of Service Attack against Armida Databased Web Server v1.0

TA-2003-06 Denial of Service Attack against Armida Databased Web Server v1.0 contributed by: rushjo ============================================================================ Tripbit Security Advisory TA-2003-06 Denial of Service Attack against Armida Databased Web Server v1.0...