9 matches found
EUVD-2005-1912
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2023-6931
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escalation. A...
EulerOS Virtualization 2.11.1 : kernel (EulerOS-SA-2024-1608)
"According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In the Linux kernel before 6.4.5, drivers/gpu/drm/drmatomic.c has a use-after-free during a race condition between a nonblocking...
Linux kernel buffer overflow vulnerability (CNVD-2023-10110752)
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a buffer overflow vulnerability that originates from a boundary error in readsize in perfevent in the Performance Events system component when handlin...
Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6385-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6385-1 advisory. It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread....
WWWeb Concepts Events System 1.0 LOGIN.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13859/info WWWeb Concepts Events System is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'login.asp' script before using it in a...
CVE-2005-1910
SQL injection vulnerability in login.asp for WWWeb Concepts Events System 1.0 allows remote attackers to execute arbitrary SQL commands via the password...
CVE-2005-1910
The CVE-2005-1910 issue affects WWWeb Concepts Events System 1.0, specifically the login.asp login path. The vulnerability is a SQL injection via the password parameter in login.asp, enabling remote attackers to execute arbitrary SQL commands and potentially gain unauthorized access or manipulate...
WWWeb Concepts Events System 1.0 - login.asp SQL Injection
WWWeb Concepts Events System 1.0 - login.asp SQL Injection source: https://www.securityfocus.com/bid/13859/info WWWeb Concepts Events System is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'login.asp'...