CVE-2002-2175

phpSquidPass before 0.2 uses an incomplete regular expression to find a matching username in its database, which allows remote authenticated attackers to effectively delete other usernames via a short username that matches the end of the targeted username...

Wizz Forum - ForumAuthDetails.php?AuthID SQL Injection

Wizz Forum - ForumAuthDetails.php?AuthID SQL Injection source: https://www.securityfocus.com/bid/15410/info Wizz Forum is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

[Full-disclosure] phpBB 2.0.18 SQL Query problem

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.18 SQL Query problem cXIb8O3.19 Author: Maksymilian Arciemowicz cXIb8O3 Date: 11.11.2005 from securityreason.com TEAM - --- 0.Description --- phpBB is a high powered, fully scalable, and highly customizable Open Source bulletin boar d packag...

[SA17502] VERITAS Cluster Server for UNIX Buffer Overflow Vulnerability

TITLE: VERITAS Cluster Server for UNIX Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA17502 VERIFY ADVISORY: http://secunia.com/advisories/17502/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: VERITAS Storage Foundation Cluster File System 4.x...

Next injection infection-specific program-let the rookie broiler flocks-vulnerability warning-the black bar safety net

Online is often heard rookie yell: dear warrior, I how to own A your own chickens? Hey, also called the sad mournful cut, and to my listening heart strange sympathy, or I now give you side dishes a quick get-to-broiler method bar, and listen to Ranger know: as the saying goes, impatient to eat no...

[SA17471] toendaCMS Disclosure of Sensitive Information

TITLE: toendaCMS Disclosure of Sensitive Information SECUNIA ADVISORY ID: SA17471 VERIFY ADVISORY: http://secunia.com/advisories/17471/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: toendaCMS 0.x http://secunia.com/product/6059/ DESCRIPTION:...

Successful invasion of the MSSQL database of alternative ideas-vulnerability warning-the black bar safety net

mssql injection of sa use Database and website put in the same server: Method a: Open TS, add accounts on the go, the specific statement is as follows: ;exec master. dbo. xpcmdshell '@echo Components c:\sql' ;exec master. dbo. xpcmdshell '@echo TSEnable = on c:\sql' ;exec master. dbo. xpcmdshell...

JPORTAL Multiple SQL Injection

DATE: ========= 3/11/2005 AFFECTED PRODUCTS ================= JPORTAL all version OVERVIEW ======== JpoRtaL is a simple portal system written in PHP using MySQL on backend. It includes article posting with comments, topics, links manager with section, download manager with section, short news...

CuteNews 1.4.1 remote code execution

CuteNews 1.4.1 Arbitrary file inclusion / remote code execution exploit software: site: http://cutephp.com/ description: "Cute news is a powerful and easy for using news management system that use flat files to store its database. It supports comments, archives, search function, image uploading,...

WowBB view_user.php SQL Injection Flaw

The remote web server contains a PHP script that is affected by a SQL injection flaw. Description : The remote host is running WowBB, a web-based forum written in PHP. The remote version of this software is vulnerable to SQL injection attacks through the script 'viewuser.php'. A malicious user ca...

EZsite Forum Discloses Passwords to Remote Users

The remote host is running EZsite Forum. It is reported that this software stores usernames and passwords in plaintext form in the 'Database/EZsiteForum.mdb' file. A remote user can reportedly download this database. OpenVAS Vulnerability Test $Id: EZsiteForum.nasl 6703 2017-07-12 13:57:25Z...

phpBB Fetch All < 2.0.12

The remote host is running a version of phpBB FetchAll older than 2.0.12. It is reported that this version of phpBB Fetch All is susceptible to an SQL injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input before using it in an SQL quer...

PCCS-Mysql User/Password Exposure

It is possible to read the include file of PCCS-Mysql, dbconnect.inc on the remote server. This include file contains information such as the username and password used to connect to the database. OpenVAS Vulnerability Test $Id: pccsmysqladm.nasl 8023 2017-12-07 08:36:26Z teissa $ Description:...

Oracle Database Detection (TNS service)

TNS service based detection of an Oracle Database Server SPDX-FileCopyrightText: 2005 James W. Abendschan Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MySQL 'zero-length password' Authentication Bypass Vulnerability (MySQL Protocol)

It is possible to bypass password authentication for a database user using a crafted authentication packet with a zero-length password Note: In order to use this script, the MySQL daemon has to allow connection from the scanning IP address SPDX-FileCopyrightText: 2005 Beyond Security Some text...

CVSTrac database plaintext password storage

The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version contains a flaw related to .db files that may allow an attacker to gain access to plaintext passwords. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be...

phpShop Multiple Vulnerabilities (Jan 2004)

phpShop is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:edikon:phpshop"; ifdescription...

Authentication bypassing in Lotus Domino

By creating a specially crafted url, the authentication mechanism of Domino database can be circumvented. SPDX-FileCopyrightText: 2002 Davy Van De Moere Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...

phpBugTracker bug.php SQLi Vulnerability - Active Check

There is a bug in the remote version of phpBugTracker which makes it vulnerable to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

SilverStream database structure

It is possible to download the remote SilverStream database structure by requesting : http://www.example.com/SilverStream/Meta/Tables/?access-mode=text SPDX-FileCopyrightText: 2002 Tor Houghton Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...