ChurchInfo Multiple Vulnerabilities

---------------------------------- ChurchInfo Multiple Vulnerabilities ---------------------------------- ChurchInfo is affected by mutliple path disclosures and sql injections. Vulnerabilties -------------- 1 The "PersonID" parameter on the following pages are vulnerable to sql injection and pat...

[SA16291] jabberd "jid.c" Buffer Overflow Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

Kayako Live Response 2.0 - 'index.php' Calendar Feature Multiple SQL Injections

source: https://www.securityfocus.com/bid/14425/info Kayako LiveResponse is prone to multiple cross-site scripting, SQL injection, and HTML injection vulnerabilties. These issues are all related to input validation errors. The cross-site scripting and HTML injection vulnerabilities may allow for...

Kayako Live Response 2.0 - index.php Calendar Feature Multiple SQL Injections

Kayako Live Response 2.0 - index.php Calendar Feature Multiple SQL Injections source: https://www.securityfocus.com/bid/14425/info Kayako LiveResponse is prone to multiple cross-site scripting, SQL injection, and HTML injection vulnerabilties. These issues are all related to input validation...

CVE-2005-2399

PHP Surveyor 0.98 is affected by multiple vulnerabilities exposing SQL errors (remote) via missing parameters to browse.php, export.php, conditions.php, and spss.php. Connected sources also indicate possible SQL injection, path disclosure, and XSS in the PHP Surveyor suite, with exploitation deta...

CVE-2005-2399

PHP Surveyor 0.98 allows remote attackers to trigger SQL errors via missing parameters to 1 browse.php, 2 export.php, 3 conditions.php, or 4 spss.php...

CVE-2005-2370

CVE-2005-2370 refers to memory alignment errors in libgadu, exploited by processing an incoming message to trigger a denial of service on architectures such as SPARC. The vulnerability affects the libgadu-based components used by programs like ekg (before 1.6rc2) and Gaim (before 1.5.0), among ot...

CVE-2005-2370

Multiple "memory alignment errors" in libgadu, as used in ekg before 1.6rc2, Gaim before 1.5.0, and other packages, allows remote attackers to cause a denial of service bus error on certain architectures such as SPARC via an incoming message...

CVE-2005-2369

CVE-2005-2369 is a libgadu issue (used by ekg and centericq) with multiple integer signedness errors that can lead to remote denial of service or arbitrary code execution. Connected advisories (Debian DSA-813-1; Ubuntu USN-162-1; CentOS/Nessus entries) confirm the vulnerability and reference libg...

CVE-2005-2369

Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code...

CVE-2005-2369

Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code...

CVE-2005-2369

Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code...

CVE-2005-2370

Multiple "memory alignment errors" in libgadu, as used in ekg before 1.6rc2, Gaim before 1.5.0, and other packages, allows remote attackers to cause a denial of service bus error on certain architectures such as SPARC via an incoming message...

security flaw

Multiple "endianness errors" in libgadu in ekg before 1.6rc2 allow remote attackers to cause a denial of service invalid behavior in applications on big-endian systems...

security flaw

Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code...

libgadu -- multiple vulnerabilities

Wojtek Kaniewski reports: Multiple vulnerabilities have been found in libgadu, a library for handling Gadu-Gadu instant messaging protocol. It is a part of ekg, a Gadu-Gadu client, but is widely used in other clients. Also some of the user contributed scripts were found to behave in an insecure...

Multiple Vulnerabilities in PHP Surveyor

----------------------------------------------------------- Multiple Vulnerabilities in PHP Surveyor version 0.98 stable ------------------------------------------------------------ Summary: PHP Surveyor is vulnerable to many sql injections, cross site scriptings, and path disclosures. Details:...

PowerDNS -- LDAP backend fails to escape all queries

The LDAP backend in PowerDNS has issues with escaping queries which could cause connection errors. This would make it possible for a malicious user to temporarily blank domains. This is known to affect all releases prior to 2.9.18...

NetPanzer <= 0.8 Remote Denial of Service Exploit

Exploit for unknown platform in category dos / poc ================================================= NetPanzer include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid...

netPanzer 0.8 - Remote Denial of Service

netPanzer 0.8 - Remote Denial of Service / by Luigi Auriemma / include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error; switchWSAGetLastError case...