t3_dbtools_seditio_plugin_CSRF

====================================================================== Vulnerable software: T3 DB Tools Version 1.6 seditio database management plugin. Developed by : http://www.t3-design.com/t3-db-tools/ MD5 SUM: 8ab362601793e238f504783fd9953dd4 dbtools.rar...

'PHP Grade Book' Unauthenticated SQL Database Export (CVE-2012-1670)

'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to export the entire application database by...

Teampass <= v2.1.6 Arbitrary File Upload / Export decrypt passwords

Exploit for php platform in category web applications Vendor or Software Link: https://github.com/nilsteampassnet/TeamPass Version: connect; // Get all accounts $rows = $db-fetchallarray" SELECT i.id AS id, i.restrictedto AS restrictedto, i.perso AS perso, i.label AS label, i.description AS...

Landshop v0.9.2 - Multiple Web Vulnerabilities

Exploit for php platform in category web applications Title: ====== Landshop v0.9.2 - Multiple Web Vulnerabilities Introduction: ============= The SAMEDIA LandShop� is an innovative tool for the marketing, sale or rent of any kind of real estate through the internet. The LandShop� user interface ...

PHP Grade Book 1.9.4 SQL Database Export

'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to export the entire application database by...

PHP Grade Book 1.9.4 - SQL Database Export

PHP Grade Book 1.9.4 - SQL Database Export 'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to expor...

PHP Grade Book 1.9.4 Unauthenticated SQL Database Export

Exploit for php platform in category web applications 'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - email protected I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to...

PHP Grade Book 1.9.4 - SQL Database Export

'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to export the entire application database by...

[SECURITY] Fedora 16 Update: python-mwlib-0.13.5-1.fc16

mwlib provides a library for parsing MediaWiki articles and converting them to different output formats. mwlib is used by Wikipedia's "Print/export" featu re in order to generate PDF documents from Wikipedia articles...

LDAP Account Manager Pro v3.6 - Multiple Vulnerabilities

Document Title: =============== LDAP Account Manager Pro v3.6 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=458 Release Date: ============= 2012-03-01 Vulnerability Laboratory ID VL-ID: ==================================== 45...

CVE-2012-1028

Cross-site scripting XSS vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter...

CVE-2012-1028

Cross-site scripting XSS vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter...

Firefox Recovery Key.html is saved with unsafe permission — Mozilla

magicant starmen reported that if a user chooses to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users on Linux and OS X systems...

CVE-2012-0110

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK...

Buffer overflow

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK...

CVE-2012-0110

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK...

phpMyAdmin 3.4.9之前版本多个跨站脚本执行漏洞

BUGTRAQ ID: 51226 CVE ID: CVE-2011-4780 phpMyAdmin是一个用PHP编写的，可以通过web方式控制和操作MySQL数据库。 phpMyAdmin在libraries/displayexport.lib.php的实现上存在多个跨站脚本执行漏洞，通过特制的URL参数，攻击者可利用这些漏洞在服务器、数据库、表格的导出面板上造成XSS，可在受影响站点的用户浏览器中执行任意脚本代码，窃取Cookie身份验证凭证。 0 phpMyAdmin 3.4.x 厂商补丁： phpMyAdmin ----------...

[SECURITY] Fedora 16 Update: phpMyAdmin-3.4.9-1.fc16

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

[SECURITY] Fedora 15 Update: phpMyAdmin-3.4.9-1.fc15

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...