ROS-20241017-09

Vulnerability of the alistadd function of the vim text editor is related to memory usage after its after it has been freed. Exploitation of the vulnerability could allow an attacker to execute arbitrary autocommands Vulnerability of instypebuf function of vim text editor is related to buffer...

Information Disclosure

389 Directory Server is vulnerable to information disclosure. This is due to improper access restriction in the dosearch function in ldap/servers/slapd/search.c when the nsslapd-allow-anonymous-access configuration is set to rootdse and the BASE search scope is used, allowing a remote attacker to...

CVE-2014-1840

Cross-site scripting XSS vulnerability in Upload/search.php in MyBB 1.6.12 and earlier allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a dosearch action, which is not properly handled in a forced SQL error message...

MyBB 'search.php'跨站脚本漏洞

BUGTRAQ ID: 65344 CVECAN ID: CVE-2014-1840 MyBB是一个功能完整并且非常实用的论坛软件。 MyBB 1.6.12及其他版本没有正确过滤search.php的参数值，在实现上存在跨站脚本漏洞，攻击者可利用此漏洞在受影响站点上下文中的用户浏览器内执行任意脚本代码。 0 MyBB MyBB 1.6.12 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.mybb.com/ html body form name="exploit"...

forumsasp-sql.txt

this exploit have 500.000 site admin forums.asp hack content.asp?contenttype SQL Injection AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DORKS 2 : allinurl: "content.asp?contenttype" EXPLOIT 1:...