CrushFTP Remote Code Execution Exploit

This Metasploit exploit module leverages an improperly controlled modification of dynamically-determined object attributes vulnerability CVE-2023-43177 to achieve unauthenticated remote code execution. This affects CrushFTP versions prior to 10.5.1. It is possible to set some user's session...

SUSE CVE-2012-5529

TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service NULL pointer dereference and crash by preparing an empty dynamic SQL query...

IBM i 安全漏洞

IBM i is a set of operating systems from IBM USA running in IBM Power Systems and IBM PureSystems. IBM i 7.1, 7.2, 7.3 and 7.4 Extended Dynamic Remote SQL server EDRSQL has a security vulnerability that could be exploited by an attacker to send specially designed requests to a remotely...

Sql injection

A SQLi exists in the probe code of all Connectwise Automate versions before 2020.7 or 2019.12. A SQL Injection in the probe implementation to save data to a custom table exists due to inadequate server side validation. As the code creates dynamic SQL for the insert statement and utilizes the user...

CVE-2020-15008

A SQLi exists in the probe code of all Connectwise Automate versions before 2020.7 or 2019.12. A SQL Injection in the probe implementation to save data to a custom table exists due to inadequate server side validation. As the code creates dynamic SQL for the insert statement and utilizes the user...

WordPress Plugin Content Timeline - SQL Injection

WordPress Plugin Content Timeline - SQL Injection Exploit Title: Multiple Blind SQL Injections Wordpress Plugin: Content Timeline Google Dork: - Date: September 16, 2017 Exploit Author: Jeroen - ITNerdbox Vendor Homepage: http://www.shindiristudio.com/ Software Link:...

Null pointer dereference

TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service NULL pointer dereference and crash by preparing an empty dynamic SQL query...

CA Total Defense Suite UNCWS Multiple Report Stored Procedure SQL Injections (CVE-2011-1653)

CA Total Defense combines CA Anti-Virus, CA Anti-Spyware, CA Gateway Security and CA Host-Based Intrusion Prevention System. The unified network control UNC offers network access protection by validating endpoints requesting network access. Multiple SQL Injection vulnerabilities have been reporte...

CVE-2011-1343

SQL injection vulnerability in the Web GUI in IBM Tivoli Netcool/OMNIbus before 7.3.0.4 allows remote attackers to execute arbitrary SQL commands via "dynamic SQL parameters."...

IBM DB2 9.7 < Fix Pack 3 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 9.7 running on the remote host is prior Fix Pack 3. It is, therefore, affected by one or more of the following issues : - When privileges on a database object are revoked from PUBLIC, the dependent functions are not marked INVALID. As a result...

CVE-2010-3475

IBM DB2 9.7 before FP3 does not properly enforce privilege requirements for execution of entries in the dynamic SQL cache, which allows remote authenticated users to bypass intended access restrictions by leveraging the cache to execute an UPDATE statement contained in a compiled compound SQL...

CVE-2010-3475

IBM DB2 9.7 before FP3 does not properly enforce privilege requirements for execution of entries in the dynamic SQL cache, which allows remote authenticated users to bypass intended access restrictions by leveraging the cache to execute an UPDATE statement contained in a compiled compound SQL...

dynamic-sql.txt

Aria-Security Team http://Aria-Security.Net ---------------------------- Shoutz: Aura, imm02rtal, NULL, Kinglet And all our staff Vendor: http://www.phpwebscript.net/dynamicphotogallery/foto-gallery.php Original Link: http://forum.aria-security.net/showthread.php?p=1521 PoC:...

SQL Injection in package SYS.DBMS_SQLTUNE_INTERNAL

Name SQL Injection in package SYS.DBMSSQLTUNEINTERNAL 6980745 DB10 Systems Affected Oracle 8i-10g Rel. 2 Severity High Risk Category SQL Injection Vendor URL http://www.oracle.com/ Author Alexander Kornbrust ak at red-database-security.com Advisory 18 October 2006 V 1.00 Advisory...