12 matches found
CVE-2017-8295
WordPress through 4.7.4 relies on the Host HTTP header for a password-reset e-mail message, which makes it easier for remote attackers to reset arbitrary passwords by making a crafted wp-login.php?action=lostpassword request and then arranging for this message to bounce or be resent, leading to...
MagicMail Mike g & e-mail system XSS and absolute path vulnerability-vulnerability warning-the black bar safety net
This morning in the Black Box testing of the local education network of the time to find a mail system vulnerability Comprising a reflectiveXSS as well as the absolute path to the leak Looked at looks like all is linux. Keywords: Mike g & e-mail system by MagicMail ! You can see a lot of governme...
CVE-2008-5926
Multiple SQL injection vulnerabilities in login.asp in ASP-DEv Internal E-Mail System allow remote attackers to execute arbitrary SQL commands via the 1 login parameter aka user field or the 2 password parameter aka pass field. NOTE: some of these details are obtained from third party information...
Sql injection
Multiple SQL injection vulnerabilities in login.asp in ASP-DEv Internal E-Mail System allow remote attackers to execute arbitrary SQL commands via the 1 login parameter aka user field or the 2 password parameter aka pass field. NOTE: some of these details are obtained from third party information...
CVE-2008-5926
Multiple SQL injection vulnerabilities in login.asp in ASP-DEv Internal E-Mail System allow remote attackers to execute arbitrary SQL commands via the 1 login parameter aka user field or the 2 password parameter aka pass field. NOTE: some of these details are obtained from third party information...
CVE-2008-5926
CVE-2008-5926 affects the ASP-DEv Internal E-Mail System, where multiple SQL injection flaws exist in login.asp that allow remote attackers to alter the database by manipulating the login (user) or password fields. The NVD entry reports a base score of 7.5 (HIGH) with network access and LOW attac...
ASP-DEV Internal E-Mail System SQL Injection
--------------------------------------------------------- Portal Name: Internal E-Mail System Vendor : http://asp-dev.com/main.asp?page=41 Download : http://asp-dev.com/download.asp?did=4 Author : PouyaServer , [email protected] Vulnerability : Auth Bypass SQL Injection Vulnerability...
ASP-DEV Internal E-Mail System (Auth Bypass) SQL Injection Vuln
No description provided by source. --------------------------------------------------------- Portal Name: Internal E-Mail System Vendor : http://asp-dev.com/main.asp?page=41 Download : http://asp-dev.com/download.asp?did=4 Author : PouyaServer , [email protected] Vulnerability : Auth Bypass...
Internal E-Mail System SQL Injection
--------------------------------------------------------- Portal Name: Internal E-Mail System Vendor : http://asp-dev.com/main.asp?page=41 Download : http://asp-dev.com/download.asp?did=4 Author : PouyaServer , [email protected] Vulnerability : Auth Bypass SQL Injection Vulnerability...
ASP-DEV Internal E-Mail System - Authentication Bypass
ASP-DEV Internal E-Mail System - Authentication Bypass --------------------------------------------------------- Portal Name: Internal E-Mail System Vendor : http://asp-dev.com/main.asp?page=41 Download : http://asp-dev.com/download.asp?did=4 Author : PouyaServer , [email protected]...
ASP-DEV Internal E-Mail System (Auth Bypass) SQL Injection Vuln
Exploit for unknown platform in category web applications =============================================================== ASP-DEV Internal E-Mail System Auth Bypass SQL Injection Vuln ===============================================================...
ASP-DEV Internal E-Mail System - Authentication Bypass
--------------------------------------------------------- Portal Name: Internal E-Mail System Vendor : http://asp-dev.com/main.asp?page=41 Download : http://asp-dev.com/download.asp?did=4 Author : PouyaServer , [email protected] Vulnerability : Auth Bypass SQL Injection Vulnerability...