8688 matches found
PHP Grade Book 1.9.4 - SQL Database Export
'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to export the entire application database by...
[SECURITY] Fedora 16 Update: python-mwlib-0.13.5-1.fc16
mwlib provides a library for parsing MediaWiki articles and converting them to different output formats. mwlib is used by Wikipedia's "Print/export" featu re in order to generate PDF documents from Wikipedia articles...
LDAP Account Manager Pro v3.6 - Multiple Vulnerabilities
Document Title: =============== LDAP Account Manager Pro v3.6 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=458 Release Date: ============= 2012-03-01 Vulnerability Laboratory ID VL-ID: ==================================== 45...
CVE-2012-1028
Cross-site scripting XSS vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter...
CVE-2012-1028
Cross-site scripting XSS vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter...
Firefox Recovery Key.html is saved with unsafe permission — Mozilla
magicant starmen reported that if a user chooses to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users on Linux and OS X systems...
CVE-2012-0110
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK...
Buffer overflow
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK...
CVE-2012-0110
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK...
phpMyAdmin 3.4.9之前版本多个跨站脚本执行漏洞
BUGTRAQ ID: 51226 CVE ID: CVE-2011-4780 phpMyAdmin是一个用PHP编写的,可以通过web方式控制和操作MySQL数据库。 phpMyAdmin在libraries/displayexport.lib.php的实现上存在多个跨站脚本执行漏洞,通过特制的URL参数,攻击者可利用这些漏洞在服务器、数据库、表格的导出面板上造成XSS,可在受影响站点的用户浏览器中执行任意脚本代码,窃取Cookie身份验证凭证。 0 phpMyAdmin 3.4.x 厂商补丁: phpMyAdmin ----------...
[SECURITY] Fedora 16 Update: phpMyAdmin-3.4.9-1.fc16
phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...
[SECURITY] Fedora 15 Update: phpMyAdmin-3.4.9-1.fc15
phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...
Israeli Firm Denies Gear Sold To Iran Is For Surveillance
An Israeli technology firm says it it looking into accusations made in a published report by Bloomberg that its software was sold to Iran, even as it denies claims in the report that its technology can be used for surveillance. The Israeli firm Allot Communications issued a statement on Friday th...
CVE-2011-4780
Multiple cross-site scripting XSS vulnerabilities in libraries/displayexport.lib.php in phpMyAdmin 3.4.x before 3.4.9 allow remote attackers to inject arbitrary web script or HTML via crafted URL parameters, related to the export panels in the 1 server, 2 database, and 3 table sections...
CVE-2011-4780
Multiple cross-site scripting XSS vulnerabilities in libraries/displayexport.lib.php in phpMyAdmin 3.4.x before 3.4.9 allow remote attackers to inject arbitrary web script or HTML via crafted URL parameters, related to the export panels in the 1 server, 2 database, and 3 table sections...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in libraries/displayexport.lib.php in phpMyAdmin 3.4.x before 3.4.9 allow remote attackers to inject arbitrary web script or HTML via crafted URL parameters, related to the export panels in the 1 server, 2 database, and 3 table sections...
DEBIAN-CVE-2011-4780
Multiple cross-site scripting XSS vulnerabilities in libraries/displayexport.lib.php in phpMyAdmin 3.4.x before 3.4.9 allow remote attackers to inject arbitrary web script or HTML via crafted URL parameters, related to the export panels in the 1 server, 2 database, and 3 table sections...
XSS in export.
PMASA-2011-20 Announcement-ID: PMASA-2011-20 Date: 2011-12-21 Summary XSS in export. Description Using crafted url parameters, it was possible to produce XSS on the export panels in the server, database and table sections. Severity We consider these vulnerabilities to be non critical. Mitigation...
[SECURITY] Fedora 15 Update: phpMyAdmin-3.4.8-1.fc15
phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...