Lucene search
+L

188 matches found

Vulnerability Lab
Vulnerability Lab
added 2012/01/20 12:0 a.m.47 views

Airport Koeln/Bonn - Blind SQL Injection Vulnerabilities

Document Title: =============== Airport Koeln/Bonn - Blind SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=174 Release Date: ============= 2012-01-20 Vulnerability Laboratory ID VL-ID: ==================================== 17...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/01/20 12:0 a.m.30 views

VolksBank ZU Application - Auth Bypass Vulnerability

Document Title: =============== VolksBank ZU Application - Auth Bypass Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=382 Release Date: ============= 2012-01-20 Vulnerability Laboratory ID VL-ID: ==================================== 382...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2011/11/01 12:0 a.m.31 views

NATO INT RTO - File Include Web Vulnerability

Document Title: =============== NATO INT RTO - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=307 Release Date: ============= 2011-11-01 Vulnerability Laboratory ID VL-ID: ==================================== 307 Common...

7.1AI score
Exploits0
Fedora
Fedora
added 2011/02/09 8:21 p.m.49 views

[SECURITY] Fedora 13 Update: postgresql-8.4.7-1.fc13

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

8.5CVSS0.8AI score0.04621EPSS
Exploits1
Cvelist
Cvelist
added 2011/02/01 5:0 p.m.24 views

CVE-2011-0736

Adobe ColdFusion 9.0.1 CHF1 and earlier, when a web application is configured to use a DBMS, allows remote attackers to obtain potentially sensitive information about the database structure via an id=- query to a .cfm file. NOTE: the vendor disputes the significance of this issue because the...

6.1AI score0.02718EPSS
Exploits1References3
CVE
CVE
added 2011/02/01 5:0 p.m.59 views

CVE-2011-0736

Adobe ColdFusion 9.0.1 CHF1 and earlier: when a web app uses a DBMS, remote attackers can cause information disclosure of database structure via an id=- query to a .cfm file. The vendor disputes severity; mitigation advised by ColdFusion Lockdown guide is proper Site-wide Error Handler and Debug ...

5.3CVSS6.3AI score0.02718EPSS
Exploits1References3Affected Software1
The Hacker News
The Hacker News
added 2010/11/04 12:28 a.m.19 views

Update : Havij v1.13 automated SQL Injection tool - New version

Update : Havij v1.13 automated SQL Injection tool - New version "Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page. It can take advantage of a vulnerable web application. By using this software user can perform...

8.4AI score
Exploits0
Fedora
Fedora
added 2010/10/18 5:44 a.m.31 views

[SECURITY] Fedora 14 Update: postgresql-8.4.5-1.fc14

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

6CVSS0.8AI score0.03331EPSS
Exploits0
exploitpack
exploitpack
added 2010/07/01 12:0 a.m.14 views

SIDA University System - SQL Injection

SIDA University System - SQL Injection Author: K053 Vendor : SIDA Version: All below 1389 are vulberable ==================================================================================== Note: Seems vendor patched this vulnerability in newest update 1389 so we decide to public it now. Maybe mo...

0.3AI score
Exploits0
0day.today
0day.today
added 2010/07/01 12:0 a.m.18 views

SIDA University System SQL Injection Vulnerability

Exploit for asp platform in category web applications ================================================== SIDA University System SQL Injection Vulnerability ================================================== Author: K053 Vendor : SIDA Version: All below 1389 are vulberable...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/07/01 12:0 a.m.33 views

SIDA University System - SQL Injection

Author: K053 Vendor : SIDA Version: All below 1389 are vulberable ==================================================================================== Note: Seems vendor patched this vulnerability in newest update 1389 so we decide to public it now. Maybe more in future ;...

7AI score
Exploits0
Fedora
Fedora
added 2010/05/18 9:57 p.m.41 views

[SECURITY] Fedora 11 Update: postgresql-8.3.11-1.fc11

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

8.5CVSS1AI score0.04081EPSS
Exploits1
Fedora
Fedora
added 2009/12/18 4:39 a.m.33 views

[SECURITY] Fedora 12 Update: postgresql-8.4.2-1.fc12

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

6.5CVSS0.8AI score0.03644EPSS
Exploits5
Fedora
Fedora
added 2009/12/18 4:36 a.m.30 views

[SECURITY] Fedora 11 Update: postgresql-8.3.9-1.fc11

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

6.5CVSS1AI score0.03644EPSS
Exploits5
Fedora
Fedora
added 2009/09/11 11:21 p.m.42 views

[SECURITY] Fedora 11 Update: postgresql-8.3.8-1.fc11

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

6.5CVSS1AI score0.03098EPSS
Exploits1
Fedora
Fedora
added 2009/03/23 3:55 p.m.36 views

[SECURITY] Fedora 9 Update: postgresql-8.3.7-1.fc9

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

4CVSS1AI score0.10242EPSS
Exploits2
securityvulns
securityvulns
added 2008/10/26 12:0 a.m.79 views

CVE-2008-2625: Oracle DBMS – Proxy Authentication Vulnerability

Oracle is a widely-deployed Database Management System DBMS that supports a variety of applications. Many multi-tier applications are designed to use proxy authentication, restricting a middle tier to establish the database connection on behalf of the users. The standard authentication mechanism...

4CVSS6.2AI score0.02066EPSS
Exploits1
Fedora
Fedora
added 2008/01/11 10:24 p.m.41 views

[SECURITY] Fedora 7 Update: postgresql-8.2.6-1.fc7

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

7.2CVSS1AI score0.03855EPSS
Exploits3
Prion
Prion
added 2007/11/20 8:46 p.m.25 views

Buffer overflow

IBM DB2 UDB 9.1 before Fixpak 4 does not properly perform vector aggregation, which might allow attackers to cause a denial of service divide-by-zero error and DBMS crash, related to an "overflow." NOTE: the vendor description of this issue is too vague to be certain that it is security-related...

7.8CVSS6.5AI score0.01309EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/07/01 12:0 a.m.37 views

Ingres Data Access Server Detection

The remote service is an Ingres Data Access Server, which translates requests from the JDBC driver and .NET Data Provider into an internal format and forwards them to the appropriate DBMS server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

5.5AI score
Exploits0References1
Rows per page
Query Builder