666 matches found
phpAuction - 'profile.php' SQL Injection (1)
Viva IslaM Viva IslaM Remote SQL Injection Vulnerability PHPAuction profile.php userid AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ATsDp.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : PHPAuction site : www.phpauctions.info D0rk1 : allinurl: "profile.php?userid" auctionid D0rk2 :...
BaSiC-CMS (index.php r) Remote SQL Injection Vulnerability
No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability BaSiC-CMS index.php r AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : BaSiC-CMS site : www.Basic-CMS.de -:: SQL ::- www.site.com/pages/...
FreeCMS.us 0.2 - index.php SQL Injection
FreeCMS.us 0.2 - index.php SQL Injection Viva IslaM Viva IslaM Remote SQL Injection Vulnerability FreeCMS 0.2 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : FreeCMS Vesrion : 0.2 site : www.Freecms.us -:: SQL ::- www.site.com/...
Unfixed XSS vulnerability at mirabolivia.com
Security researcher el-mago, has submitted on 27/05/2008 a cross-site-scripting XSS vulnerability affecting mirabolivia.com, which at the time of submission ranked 85861 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/07/2008. It is currentl...
netbutikker-sql.txt
Viva Islam rEm0te SQL Injection Vulnerability netbutik V1 index.php id Script Name : Netbutik Download : www.simpelside.dk Version : version 1 , 2 , 3 ,4 AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] Note This script have 4 version on demo and users table have diffrents names y...
EntertainmentScript (play.php id) Remote SQL Injection Vulnerability
No description provided by source. rEm0te SQL Injection Vulnerability EntertainmentScript V1.4.0 play.php id Script : EntertainmentScript.com V1.4.0 name script on demo site is fastfreemedia DeMo : http://demo.fastfreemedia.com/index.php AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email :...
Moderate: kernel security and bug fix update
2.6.9-67.0.7.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with...
Debian Security Advisory DSA 340-1 (x-face-el)
The remote host is missing an update to x-face-el announced via advisory DSA 340-1. OpenVAS Vulnerability Test $Id: deb3401.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 340-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 338-1 (x-face-el)
The remote host is missing an update to x-face-el announced via advisory DSA 338-1. OpenVAS Vulnerability Test $Id: deb3381.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 338-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 1269-1 (lookup-el)
The remote host is missing an update to lookup-el announced via advisory DSA 1269-1. Tatsuya Kinoshita discovered that Lookup, a search interface to electronic dictionaries on emacsen, creates a temporary file in an insecure fashion when the ndeb-binary feature is used, which allows a local...
Debian: Security Advisory (DSA-1269-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-340)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2007-0237
The ndeb-binary feature in Lookup lookup-el allows local users to overwrite arbitrary files via a symlink attack on temporary files...
CVE-2007-0237
CVE-2007-0237 affects the ndeb-binary feature of Lookup (lookup-el). The vulnerability arises from insecure temporary file handling, allowing a local attacker to perform a symlink attack to overwrite arbitrary files. Affected advisories/documentation: Gentoo GLSA 200712-07, GLSA 200712-07 (Gentoo...
Debian DSA-1269-1 : lookup-el - insecure temporary file
Tatsuya Kinoshita discovered that Lookup, a search interface to electronic dictionaries on emacsen, creates a temporary file in an insecure fashion when the ndeb-binary feature is used, which allows a local attacker to craft a symlink attack to overwrite arbitrary files. %NASLMINLEVEL 70300 C...
[SECURITY] [DSA 1269-1] New lookup-el packages fix insecure temporary file
-------------------------------------------------------------------------- Debian Security Advisory DSA 1269-1 [email protected] http://www.debian.org/security/ Martin Schulze March 18th, 2007 http://www.debian.org/security/faq -...
[Full-disclosure] [SECURITY] [DSA 1269-1] New lookup-el packages fix insecure temporary file
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1269-1 [email protected] http://www.debian.org/security/ Martin Schulze March 18th, 2007 http://www.debian.org/security/faq -...
Important kernel security update
2.6.9-42.0.3.0.2 -rebuilt for EL 2.6.9-42.0.3.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.9-42.0.3 -fix mprotect to not allow permission subversion Jason Baron 190073 CVE-2006-2071 -fix sysperfmonctl file descriptor reference count issue Anil Keshavamurthy...
[Full-disclosure] Remote access to NeuSecure/Netcool backend database via web interface credentials leakage
-= DDSi Security Report =- March 8th, 2006 --------------------------------------------------------------------------------------------------------- Another credentials leak was found in Netcool/NeuSecure Security Information Management platform which leads to remote backend database access with...
[Full-disclosure] Password disclosure and remote access in Netcool/NeuSecure Security information management platform
Multiple security information disclosure paths and remote access Netcool/NeuSecure Security information management platform . Cleartext-storage of passwords in the configuration file Cleartext reporting of user password in the log Default backend Mysql database user and remote access. Laxed...