Lucene search
K

2657 matches found

Tenable Nessus
Tenable Nessus
added 2010/11/10 12:0 a.m.41 views

Mandriva Linux Security Advisory : mysql (MDVSA-2010:222)

Multiple vulnerabilities were discovered and corrected in mysql : - Joins involving a table with with a unique SET column could cause a server crash CVE-2010-3677. - Use of TEMPORARY InnoDB tables with nullable columns could cause a server crash CVE-2010-3680. - The server could crash if there we...

5CVSS5.5AI score0.12229EPSS
Exploits4References25
UbuntuCve
UbuntuCve
added 2010/11/05 12:0 a.m.31 views

CVE-2010-3835

MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service mysqld server crash by performing a user-variable assignment in a logical expression that is calculated and stored in a temporary table for GROUP BY, then causing the expression value to be...

4CVSS5.9AI score0.03391EPSS
Exploits0References3
Prion
Prion
added 2010/10/28 9:0 p.m.15 views

Authentication flaw

The TCP-to-ODBC gateway in IBM Tivoli Provisioning Manager for OS Deployment 7.1.1.3 does not require authentication for SQL statements, which allows remote attackers to modify, create, or read database records via a session on TCP port 2020. NOTE: the vendor disputes this issue, stating that the...

7.5CVSS7.9AI score0.03222EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/10/05 12:0 a.m.9 views

MySQL Community Server 5.1 < 5.1.51 Multiple Denial of Service Vulnerabilities

Binary data 5677.prm...

5CVSS7.3AI score0.03391EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2010/08/14 12:0 a.m.12 views

Fedora 12 : java-1.6.0-openjdk-1.6.0.0-40.b18.fc12 (2010-12758)

S6678385, RH551835: Fixes jvm crashes when window is resized. Produces the 'expected' behavior for full screen applications, when running the Metacity window manager. PR453, OJ100142: Fix policy evaluation to match the proprietary JDK. IcedTeaNPPlugin. RH524387: javax.net.ssl.SSLKeyException: RSA...

5.7AI score
Exploits0References1
Exploit DB
Exploit DB
added 2010/07/01 12:0 a.m.22 views

RM Downloader 3.1.3 (Windows 7) - Local ASLR + DEP Bypass (SEH)

!/usr/bin/perl Exploit Title: RM Downloader 3.1.3 Local SEH Exploit Win7 ASLR and DEP Bypass Date: July 1, 2010 Author: Node Software Link: http://www.mini-stream.net/downloads/RMDownloader.exe Version: RM Downloader 3.1.3.3.2010.06.26 Evaluation Tested on: Windows 7 Ultimate x64 ENG Notes: Only...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2010/03/19 6:53 p.m.10 views

Google Releases Skipfish Application Security Scanner

Google has released its own Web application security scanner, called Skipfish. The free scanner is designed to work within a variety of existing Web application frameworks and is built with an emphasis on speed and low false-positives, the company said. Skipfish enters a crowded field of Web...

1.2AI score
Exploits0References3
Metasploit
Metasploit
added 2010/02/01 2:12 a.m.13 views

HTTP File Same Name Directory Scanner

This module identifies the existence of files in a given directory path named as the same name of the directory. Only works if PATH is different than '/'. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

6.9AI score
Exploits0
myhack58
myhack58
added 2009/11/29 12:0 a.m.41 views

PHP vulnerability full solution-vulnerability warning-the black bar safety net

PHP web page security issues For PHP website mainly exist the following types of attacks: 1. Command injectionCommand Injection 2. eval injectionEval Injection 3. Client scripting attacksScript Insertion 4. Cross-site scripting attacksCross Site Scripting, XSS 5. SQL injectionattacksSQL injection...

0.4AI score
Exploits0
Debian
Debian
added 2009/09/11 5:38 p.m.15 views

[Backports-security-announce] Security update for devscripts

Adam D. Barratt uploaded new packages for devscripts which fixed the following security problem: CVE-2009-2946: When parsing watch files, uscan applied "mangle rules" by evaluating them as Perl code without any sanitisation. This could have lead to the execution of arbitrary code by users or...

9.3CVSS1.5AI score0.02882EPSS
Exploits1
myhack58
myhack58
added 2009/08/04 12:0 a.m.9 views

About the database the anti download the new strokes of the“# % of”a text analysis-vulnerability warning-the black bar safety net

Database this thing who don't know? As long as webmasters or play Black the all clear however, once a Y download, and that is no joke. The title phrase See the 7 on the X-Files a database the anti download the new strokes of the“%,”A text, looks like the author speaking of having problems. Purely...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2009/05/08 12:0 a.m.19 views

PHP Evaluation Replacement String

mberegireplace evaluate replacement string vulnerability by ryatwww.80vul.com when option parameter set e, matchs not be escaped. ex: phpinfo will be evaluated. mberegreplace if replacelen - i = 2 && fwd == 1 && p0 == '\' && p1 = '0' && p1 = 0 && n numregs if regs-begn = 0 && regs-begn endn &&...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2009/05/08 12:0 a.m.22 views

PHP mb_ereg(i)_replace() Evaluate Replacement String Vulnerability

No description provided by source. mberegireplace evaluate replacement string vulnerability by ryatwww.80vul.com when option parameter set e, matchs not be escaped. ex: ?php function hi80vul $str = '', phpinfo, ''; mberegreplace'^.$', 'hi80vul'\1'', $str, 'e'; ? phpinfo will be evaluated...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/05/07 12:0 a.m.18 views

PHP - mb_ereg(i)_replace() Evaluate Replacement String

PHP - mberegireplace Evaluate Replacement String mberegireplace evaluate replacement string vulnerability by ryatwww.80vul.com when option parameter set e, matchs not be escaped. ex: phpinfo will be evaluated. mberegreplace if replacelen - i = 2 && fwd == 1 && p0 == '\' && p1 = '0' && p1 = 0 && n...

0.1AI score
Exploits0
myhack58
myhack58
added 2008/11/17 12:0 a.m.38 views

DZ! sodb-2 0 0 8-1 3 EXP published-vulnerability warning-the black bar safety net

!/ usr/bin/php ? php / Discuz! 6. x/7. x SODB-2 0 0 8-1 3 Exp By www.80vul.com Notes the value of the variable, add your own modifications / $host = ‘www.80vul.com’; // Server domain or IP $path = ‘/discuz/’; // Where the program path $key = 0; // The above variable is edited, make will the value...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2008/10/13 5:55 a.m.34 views

Generic PHP Code Evaluation

Exploits things like It is likely that HTTP evasion options will break this exploit. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Generic PHP Code Evaluation', 'Description' = %q Exploits...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/09/20 12:0 a.m.29 views

Advanced Electron Forum <= 1.0.6 Remote Code Execution Vulnerability

Exploit for unknown platform in category web applications ==================================================================== Advanced Electron Forum = 1.0.6 Remote Code Execution Vulnerability ==================================================================== GulfTech Security Research...

7.1AI score
Exploits0
Snyk
Snyk
added 2008/05/16 12:54 p.m.2 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS. Integer overflow in residue partition value aka partvals evaluation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to execute arbitrary code via a crafted OGG file, which triggers a heap overflow...

6.8CVSS8.2AI score0.06321EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.17 views

Debian: Security Advisory (DSA-1030-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.13237EPSS
Exploits4References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.26 views

Debian Security Advisory DSA 1031-1 (cacti)

The remote host is missing an update to cacti announced via advisory DSA 1031-1. Several vulnerabilities have been discovered in libphp-adodb, the 'adodb' database abstraction layer for PHP, which is embedded in cacti, a frontend to rrdtool for monitoring systems and services. The Common...

7.5CVSS0.6AI score0.13237EPSS
Exploits4
Rows per page
Query Builder