992 matches found
CVE-2006-2096
plug.php in Land Down Under LDU 802 and earlier allows remote attackers to obtain sensitive information via an invalid 1 month or 2 year parameter, which reveals the path in an error message...
CVE-2006-2096
The CVE-2006-2096 entry affects Land Down Under (LDU) 802 and earlier. The vulnerability is in plug.php where an invalid month or year parameter can cause an error message to disclose the system path, enabling information disclosure. The provided sources describe this as a remote information-leak...
Land Down Under 802 and below version Path Disclosure Vulnerability
Land Down Under 802 and below version Path Disclosure Vulnerability ------------------------------------------------------------------------------------------------------------------------------- Aria-Security.net Advisory Discovered by:R@1D3N amin emami date:21/04/2006 original...
Apple Mac OSX Safari 2.0.3 (417.9.2) - ROWSPAN Denial of Service (PoC)
Apple Mac OSX Safari 2.0.3 417.9.2 - ROWSPAN Denial of Service PoC milw0rm.com 2006-04-24...
Land Down Under <= 801 Multiple Vulnerabilities
The remote web server contains several PHP scripts that permit SQL injection and cross-site scripting attacks. Description : The remote version of Land Down Under is prone to several SQL injection and cross-site scripting attacks due to its failure to sanitize user-supplied input to several...
Land Down Under <= 800 Multiple Vulnerabilities
The remote web server contains a PHP script that permits SQL injection and cross-site scripting attacks. Description : The remote version of Land Down Under is prone to various SQL injection and cross-site scripting attacks provided PHP's 'magicquotes' setting is disabled due to its failure to...
Land Down Under <= 800 Multiple Vulnerabilities
The remote version of Land Down Under is prone to various SQL injection and cross-site scripting attacks provided PHP SPDX-FileCopyrightText: 2005 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2005-4711
Neocrome Land Down Under (LDU) 801 is affected by CVE-2005-4711: SQL injection via input from the HTTP Referer header. The issue allows remote attackers to execute arbitrary SQL commands on the backend database. The Nessus NASL item for LDU_REFERER_SQL_INJECTION.NASL documents that input from the...
CVE-2005-4711
SQL injection vulnerability in Neocrome Land Down Under LDU 801 allows remote attackers to execute arbitrary SQL commands via an HTTP Referer header. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Land Down Under Signature HTML Code Injection
NightWarriorKurdish Hacker nightwarrior771athotmail.com Land Down Under Signature HTML Code Injection http://www.neocrome.net example: STYLE =text/cssBODY background-image: url'http://www.geocities.com/nightwarrior771/blank.jpeg'; /STYLE Contact :nightwarrior771athotmail.com NightWarriorKurdihs...
CVE-2005-4711
SQL injection vulnerability in Neocrome Land Down Under LDU 801 allows remote attackers to execute arbitrary SQL commands via an HTTP Referer header. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2005-4821
Multiple SQL injection vulnerabilities in Land Down Under LDU v801 and earlier allow remote attackers to execute arbitrary SQL commands via parameters including 1 the m parameter in auth.php, 2 the f parameter in events.php, or 3 the e parameter in plug.php...
PT-2005-5482 · Unknown · Land Down Under
Name of the Vulnerable Software and Affected Versions: Land Down Under LDU versions v801 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via parameters including 1 the m parameter in "auth.php", 2 the f parameter in "events.php", ...
Hummingbird Connectivity FTP service XCWD Overflow
The remote host is running the Hummingbird Connectivity FTP server. It was possible to shut down the remote FTP server by issuing a XCWD command followed by a too long argument. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and ar...
gdb security update
CentOS Errata and Security Advisory CESA-2005:709 An updated gdb package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GDB, the GNU debugger, allows debugging of programs written ...
Microsoft Windows win32k.sys DoS
WMCLOSE event for active drop-down menu causes system to crash...
CVE-2005-2884
Cross-site scripting XSS vulnerability in events.php in Land Down Under LDU 801 and earlier allows remote attackers to inject arbitrary web script or HTML via the Description field in an event...
Land Down Under 800801 - plug.php?e SQL Injection
Land Down Under 800801 - plug.php?e SQL Injection source: https://www.securityfocus.com/bid/14820/info Land Down Under is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries...
Land Down Under <= 801 Multiple Vulnerabilities
The remote version of Land Down Under is prone to several SQL injection and cross-site scripting attacks due to its failure to sanitize user-supplied input to several parameters used by the 'auth.php', 'events.php', 'index.php', 'list.php', and 'plug.php' scripts. A malicious user can exploit...
Land Down Under 601/602/700/701/800/801 - 'events.php' HTML Injection
source: https://www.securityfocus.com/bid/14746/info Land Down Under is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code wou...