869 matches found
Easy News Content Management (News.mdb) Database Disclosure Vuln
No description provided by source. Author : BeyazKurt Contact : [email protected] Site : www.khg-crew.ws - KOSOVA HACKERS GROUP Script : Easy Content Management Publishing Script Site : http://easy-news.org/content-management-terns.asp Description : An easy to use ASP-based content management...
Easy News Content Management - Database Disclosure
Author : BeyazKurt Contact : [email protected] Site : www.khg-crew.ws - KOSOVA HACKERS GROUP Script : Easy Content Management Publishing Script Site : http://easy-news.org/content-management-terns.asp Description : An easy to use ASP-based content management news system. Mulitple login levels...
CVE-2008-5353
creationtimestamp| type| source ---|---|--- 2008-12-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9948 2009-05-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8753 2010-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16293 2011-01-08...
CVE-2008-4686
creationtimestamp| type| source ---|---|--- 2008-10-21 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6798 2008-10-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6825...
CVE-2008-6082
creationtimestamp| type| source ---|---|--- 2008-10-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6753 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/ftp/titan626site.rb 2025-02-06 03:13:39+00:00| seen|...
wordpressmu-xss.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - Security Advisory - - - WordPress MU 2.6 wpmu-blogs.php Crose Site Scrpting vulnerability - - ----------------------------------------------------------------------- Product: Wordpress-MU multi-user Version: Versions prior to 2.6 are affected Url:...
CVE-2008-3008
creationtimestamp| type| source ---|---|--- 2008-09-13 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6454 2010-05-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16521 2018-05-29 15:50:33+00:00| seen|...
CVE-2009-2762
creationtimestamp| type| source ---|---|--- 2008-09-07 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6397 2008-09-10 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6421 2009-08-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9410...
Do not release details about securrity vulnerabilities until after the fix was available for a reasonable period of time
It is an unfortunate practice at Atlassian to as a part of release notes release all the information, often including example exploits|http://jira.atlassian.com/browse/CONF-9350, about security vulnerabilities that were fixed in the version being released. This gives us great headaches because: w...
CVE-2008-2703
creationtimestamp| type| source ---|---|--- 2008-07-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31889 2010-06-22 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16814 2018-05-29 15:50:33+00:00| seen|...
CVE-2008-2568
creationtimestamp| type| source ---|---|--- 2008-06-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5743 2008-06-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5833...
Unfixed XSS vulnerability at www.ncsuretytech.com
Security researcher xylitol, has submitted on 24/05/2008 a cross-site-scripting XSS vulnerability affecting www.ncsuretytech.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/06/2008. It is current...
CVE-2008-1985
creationtimestamp| type| source ---|---|--- 2008-04-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31701 2009-12-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10427...
CenterIM <= 4.22.3 Remote Command Execution Vulnerability:
Application: CenterIM http://www.centerim.org/index.php/MainPage Versions: centerim = 4.22.3 OS: Linux Bug: Execution of shell commands Exploit: remote Date: 15 March 2008 Author: Brian Fonfara w00 eMail: [email protected] Web: newb.kicks-ass.net 1 Bug 2 Exploit ======= 1 Bug ======= Received...
BeContent 031 - id SQL Injection
BeContent 031 - id SQL Injection Founder By Cr@zyKing HackShow.Us BeContent v.031 id Remote Sql Vuln. Down : http://code.google.com/p/becontent/downloads/list?idmenu=9 Exploit: news.php?id=-3+union+select+1,concatws0x3a,username,password,3,4+from+users Greatz : Barakuda GraBBerZ team &...
Debian Security Advisory DSA 1333-1 (libcurl3-gnutls)
The remote host is missing an update to libcurl3-gnutls announced via advisory DSA 1333-1. OpenVAS Vulnerability Test $Id: deb13331.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1333-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Ubuntu 6.06 LTS / 6.10 / 7.04 : curl vulnerability (USN-484-1)
It was discovered that the GnuTLS certificate verification methods implemented in Curl did not check for expiration and activation dates. When performing validations, tools using libcurl3-gnutls would incorrectly allow connections to sites using expired certificates. Note that Tenable Network...
curl TLS certificates spoofing
Certificate's activation adn expire dates are not checked if GnuTLS verification method is used...
[SECURITY] [DSA 1333-1] New libcurl3-gnutls packages fix certificate handling
------------------------------------------------------------------------ Debian Security Advisory DSA-1333 [email protected] http://www.debian.org/security/ Steve Kemp July 18th, 2007 - ------------------------------------------------------------------------ Package : libcurl3-gnutls...
USN-484-1: curl vulnerability
It was discovered that the GnuTLS certificate verification methods implemented in Curl did not check for expiration and activation dates. When performing validations, tools using libcurl3-gnutls would incorrectly allow connections to sites using expired certificates...