7425 matches found
CVE-2006-5359
Multiple unspecified vulnerabilities in Oracle Reports Developer component in Oracle Application Server 9.0.4.3 and 10.1.2.0.2, and Oracle E-Business Suite and Applications 11.5.10CU2, have unknown impact and remote attack vectors, aka Vuln 1 REP01 and 2 REP02. NOTE: as of 20061027, Oracle has no...
CVE-2006-5359
Technical details about CVE-2006-5359 are not publicly available in the provided documents. Monitor for updates from official advisories; current sources only reference generic vulnerabilities in Oracle Reports Developer without specifics.
CVE-2006-5359
Multiple unspecified vulnerabilities in Oracle Reports Developer component in Oracle Application Server 9.0.4.3 and 10.1.2.0.2, and Oracle E-Business Suite and Applications 11.5.10CU2, have unknown impact and remote attack vectors, aka Vuln 1 REP01 and 2 REP02. NOTE: as of 20061027, Oracle has no...
Softerra PHP Developer Library <= 1.5.3 File Include Vulnerabilities
Exploit for unknown platform in category web applications ==================================================================== Softerra PHP Developer Library = 1.5.3 File Include Vulnerabilities ==================================================================== Softerra. PHP Developer Library...
Softerra PHP Developer Library <= 1.5.3 File Include Vulnerabilities
No description provided by source. Softerra. PHP Developer Library Class: Remote File Include Vulnerability Patch: Unavailable Published 2006/10/12 Remote: Yes Local: No Type: High Site: http://www.softerra.com/productsphp-library.htm Author: MP Contact: [email protected] Exploit:...
Softerra PHP Developer Library 1.5.3 - Remote File Inclusion
Softerra PHP Developer Library 1.5.3 - Remote File Inclusion Softerra. PHP Developer Library Class: Remote File Include Vulnerability Patch: Unavailable Published 2006/10/12 Remote: Yes Local: No Type: High Site: http://www.softerra.com/productsphp-library.htm Author: MP Contact: [email protected]...
Download-Engine Remote File Include
Softerra. PHP Developer Library Class: Remote File Include Vulnerability Patch: Unavailable Published 2006/10/12 Remote: Yes Local: No Type: High Site: http://www.softerra.com/productsphp-library.htm Author: MP Contact: [email protected] Exploit:...
Softerra. PHP Developer Library
Softerra. PHP Developer Library Class: Remote File Include Vulnerability Patch: Unavailable Published 2006/10/12 Remote: Yes Local: No Type: High Site: http://www.softerra.com/productsphp-library.htm Author: MP Contact: [email protected] Exploit:...
Softerra PHP Developer Library 1.5.3 - Remote File Inclusion
Softerra. PHP Developer Library Class: Remote File Include Vulnerability Patch: Unavailable Published 2006/10/12 Remote: Yes Local: No Type: High Site: http://www.softerra.com/productsphp-library.htm Author: MP Contact: [email protected] Exploit:...
Softerra PHP Developer Library 1.5.3 - Grid3.lib.php Remote File Inclusion
Softerra PHP Developer Library 1.5.3 - Grid3.lib.php Remote File Inclusion source: https://www.securityfocus.com/bid/20442/info Softerra PHP Developer Library is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...
Softerra PHP Developer Library 1.5.3 - 'Grid3.lib.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/20442/info Softerra PHP Developer Library is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying...
eyeOS -- multiple XSS security bugs
eyeOS team reports: EyeOS 0.9.1 release fixes two XSS security bugs, so we recommend all users to upgrade to this new version in order to have the best security. These two bugs were discovered by Jose Carlos Norte, who is a new eyeOS developer...
LedgerSMB.txt
Hi all; Summary: A directory transversal issue was found in LedgerSMB 1.0.0 involving the terminal variable. This vulnerability was inherited from the SQL-Ledger codebase. Due to the fact that SQL-Ledger has a built-in text editor, this issue could result in arbitrary code execution on the server...
sicherheit_83.txt
+-------------------------------------------------------------------- + + phpAutoMembersArea 3.2.5 $installedconfigfile Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: phpAutoMembersArea 3.2.5 + Venedor ...........:...
CVE-2006-3544
Multiple SQL injection vulnerabilities in Invision Power Board IPB 1.3 Final allow remote attackers to execute arbitrary SQL commands via the CODE parameter in a 1 Stats, 2 Mail, and 3 Reg action in index.php. NOTE: the developer has disputed this issue, stating that "At no point does the CODE...
lintah_|adv|_01@2006>=========<[Aura-CMS v1.62]<===>[XSS vulnerable]&[bug]
by : iFX a.k.a inversFX [email protected] [email protected] ------------------------------- locate : Indonesia, Jakarta -------------------------------- date : 29/06/2006 -------------------------------- title : XSS on CMS Aura v1.62 -------------------------------- Developer CMS : Arif...
Hosting Controller <= 6.1 Hotfix 3.1 Privilege Escalation Vulnerability
Exploit for unknown platform in category web applications ======================================================================= Hosting Controller function siteaction nact= "/hosting/addreseller.asp?htype=3" window.document.all.frm1.action = window.document.all.siteact.value + nact...
Hosting Controller 6.1 Hotfix 3.1 - Privilege Escalation
Hosting Controller 6.1 Hotfix 3.1 - Privilege Escalation Title: An attacker can gain reseller privileges and after that can gain admin privileges Version: 6.1 Hotfix function siteaction nact= "/hosting/addreseller.asp?htype=3" window.document.all.frm1.action = window.document.all.siteact.value +...
Hosting Controller <= 6.1 Hotfix 3.1 Privilege Escalation Vulnerability
No description provided by source. Title: An attacker can gain reseller privileges and after that can gain admin privileges Version: 6.1 Hotfix = 3.1 Developer url: www.Hostingcontroller.com Solution: Update to Hotfix 3.2 Discover date: 2005,Summer Report date to hc company: Sat Jun 10, 2006...
Regarding "SMB Invalid Handle Value" - MS06-030. Vulnerability not fixed.
Hi, Just to confirm that Microsoft has not fixed the NtClose/ZwClose DeadLock vulnerability. The bulletin MS06-030 addressed this flaw as "SMB Invalid Handle Value" which is just an euphemism under my point of view. The code added to mrxsmb.sys is just a wrapper in order to avoid the "Invalid...