7 matches found
Mozilla多款产品 安全漏洞
Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A security bypass vulnerability exists in a number of Mozilla products, whic...
Exploit for Cross-site Scripting in Ourphp
PoC exploit for CVE-2023-30212, a Cross-Site Scripting XSS vul...
Lodging Reservation Management System SQL注入漏洞
Lodging Reservation Management System is an open source accommodation reservation management system that is vulnerable to attackers using SQL injection to bypass authentication via username and password fields to grant any user access to privileges...
MDT AutoSave SQL注入漏洞
MDT AutoSave is a software application. It provides an automated change management function. MDT AutoSave suffers from a SQL injection vulnerability that originates from an attacker being able to utilize SQL commands to create a new user on the system and update the user's privileges, granting th...
Mandrake Linux Security Advisory : MySQL (MDKSA-2005:070)
A vulnerability in MySQL would allow a user with grant privileges to a database with a name containing an underscore character '' to have the ability to grant privileges to other databases with similar names. This problem was previously discovered and fixed, but a new case where the problem still...
CVE-2004-0703
Unknown vulnerability in the administrative controls in Bugzilla 2.17.1 through 2.17.7 allows users with "grant membership" privileges to grant memberships to groups that the user does not control...
MySQL 3.22.27/3.22.29/3.23.8 - GRANT Global Password Changing
source: https://www.securityfocus.com/bid/926/info MySQL is a popular RDBMS used by many websites as a back-end. It is possible for users with GRANT access to change passwords for every user in the database including the mysql superuser. MySQL also ships with a default "test" account which has...