7965 matches found
NetPanzer <= 0.8 Remote Denial of Service Exploit
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h void stderrvoid ch...
[SECURITY] [DSA 745-1] New drupal package fixes multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA 745-1 [email protected] http://www.debian.org/security/ Michael Stone July 10, 2005 http://www.debian.org/security/faq - ------------------------------------------------------------------------...
kernel -- ipfw packet matching errors with address tables
Problem Description The ipfw tables lookup code caches the result of the last query. The kernel may process multiple packets concurrently, performing several concurrent table lookups. Due to an insufficient locking, a cached result can become corrupted that could cause some addresses to be...
CVE-2002-1952
phpRank 1.8 does not properly check the return codes for MySQL operations when authenticating users, which could allow remote attackers to authenticate using a NULL password when database errors occur or if the database is unavailable...
CVE-2002-1952
The vulnerability concerns phpRank 1.8, where authentication does not properly check return codes from MySQL operations. This can allow remote attackers to authenticate with a NULL password when a database error occurs or the database is unavailable. The affected component is the authentication p...
Moderate: Red Hat Security Advisory: postgresql security update
Updated postgresql packages that fix several security vulnerabilities and risks of data loss are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PostgreSQL is an advanced Object-Relational database management system DBMS that...
duportal1.txt
Dcrab 's Security Advisory Hsc Security Group http://www.hackerscenter.com/ dP Security http://digitalparadox.org/ Get Dcrab's Services to audit your Web servers, scripts, networks, etc. Learn more at http://www.digitalparadox.org/services.ah Severity: Very High Title: DUportal Pro 3.4 has MANY S...
NPDS 4.8 5.0 - links.php?Query SQL Injection
NPDS 4.8 5.0 - links.php?Query SQL Injection source: https://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attack...
NPDS 4.8 < 5.0 - 'faq.php?categories' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks. This may result in the theft of...
NPDS 4.8 5.0 - faq.php?categories Cross-Site Scripting
NPDS 4.8 5.0 - faq.php?categories Cross-Site Scripting source: https://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL...
NPDS 4.8 < 5.0 - 'sdv_infos.php?sitename' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks. This may result in the theft of...
NPDS 4.8 5.0 - sdv_infos.php?sitename Cross-Site Scripting
NPDS 4.8 5.0 - sdvinfos.php?sitename Cross-Site Scripting source: https://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL...
NPDS 4.8 /5.0 - 'modules.php?Lettre' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks. This may result in the theft of...
NPDS 4.8 < 5.0 - 'reviews.php?title' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks. This may result in the theft of...
USN-124-2: Fixed packages for USN-124-1
USN-124-1 fixed several vulnerabilities of Firefox. After that update, several users experienced XML errors on various actions like adding bookmarks see https://bugzilla.ubuntu.com/showbug.cgi?id=10643. After installing these new packages and restarting the browser, these problems should be fixed...
CVE-2005-1487
Multiple SQL injection vulnerabilities in FishCart 3.1 allow remote attackers to execute arbitrary SQL commands via the 1 cartid parameter to upstnt.php or 2 psku parameter to display.php. NOTE: the vendor disputes this report, saying that they are forced SQL errors. The original researcher is...
GLSA-200505-03 : Ethereal: Numerous vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200505-03 Ethereal: Numerous vulnerabilities There are numerous vulnerabilities in versions of Ethereal prior to 0.10.11, including: The ANSI A and DHCP dissectors are vulnerable to format string vulnerabilities. The DISTCC, FCELS...
Mandrake Linux Security Advisory : squid (MDKSA-2005:078)
Squid 2.5, when processing the configuration file, parses empty Access Control Lists ACLs, including proxyauth ACLs without defined auth schemes, in a way that effectively removes arguments, which could allow remote attackers to bypass intended ACLs if the administrator ignores the parser warning...
Mandrake Linux Security Advisory : xli (MDKSA-2005:076)
A number of vulnerabilities have been found in the xli image viewer. Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a flaw in the handling of compressed images where shell meta-characters are not properly escaped CVE-2005-0638. It was also found that insufficient validation of...
litecommerceSQL.txt
This is a multi-part message in MIME format. ------=NextPart000000501C53B05.B7FB4460 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Dcrab 's Security Advisory Hsc Security Group http://www.hackerscenter.com/ dP Security http://digitalparadox.org/ Get...