9654 matches found
CVE-2007-3599
vtiger CRM before 5.0.3 allows remote authenticated users to import and export the information for a contact even when they only have the View permission...
Fedora Core 5 : openoffice.org-2.0.2-5.22.2 (2007-606)
A heap overflow flaw was found in the RTF import filer. An attacker could create a carefully crafted RTF file that could cause OpenOffice.org to crash or possibly execute arbitrary code if the file was opened by a victim. CVE-2007-0245 All users of OpenOffice.org are advised to upgrade to these...
Use the telnet method export, import, Forum mysql database-vulnerability warning-the black bar safety net
To 1. The method presented here is mainly applicable to VB and other forums. Use the TELNET method can be existing on the server database to export,then import this data to another server,use this method can achieve the Forum in two Server Migration; or the server existing on the forum moved to...
Modifications introduced into the table to create penetration KIS6 download-vulnerability warning-the black bar safety net
Article author: gyzy E. S. T it www.gyzy.org) Information source: evil octal information security team www.eviloctal.com) This article has been published in the hacker line of Defense of the 2 0 0 7 year 2 monthly. The author and the hacker line of Defense on the retention of copyright, reproduce...
CVE-2007-0323
Buffer overflow in the SetLanguage function in Research In Motion RIM TeamOn Import Object ActiveX control TOImport.dll allows remote attackers to execute arbitrary code via unspecified vectors...
Research In Motion TeamOn Import Object ActiveX control buffer overflow
Overview The Research In Motion TeamOn Import Object ActiveX control contains a buffer overflow, which could allow an attacker to execute arbitrary code on a vulnerable system. Description The Research In Motion TeamOn Import Object is an ActiveX control, which is provided by the file TOImport.dl...
DEBIAN-CVE-2007-1732
Cross-site scripting XSS vulnerability in an mt import in wp-admin/admin.php in WordPress 2.1.2 allows remote authenticated administrators to inject arbitrary web script or HTML via the demo parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
WordPress <= 2.1.2 - Cross Site Scripting
Because of this vulnerability in an mt import in wp-admin/admin.php, the authenticated administrators can inject arbitrary web script or HTML via the "demo" parameter Solution Update the WordPress to the latest available version at least 2.1.3...
CVE-2006-7147
PHP remote file inclusion vulnerability in includes/functionsmoduser.php in phpBB Import Tools Mod 0.1.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...
CVE-2006-7147
CVE-2006-7147 affects the phpBB Import Tools Mod 0.1.4 and earlier. The vulnerability is a PHP remote file inclusion via the phpbb_root_path parameter, allowing remote attackers to execute arbitrary PHP code. The root cause is insufficient sanitization of the phpbb_root_path input, enabling inclu...
DEBIAN-CVE-2007-1253
Eval injection vulnerability in the a kmzImportWithMesh.py Script for Blender 0.1.9h, as used in b Blender before 2.43, allows user-assisted remote attackers to execute arbitrary Python code by importing a crafted 1 KML or 2 KMZ file...
Open Conference Systems = 2.8.2 Remote File Inclusion
Open Conference Systems = 2.8.2 Remote File Inclusion Download Source : http://pkp.sfu.ca/ocs/download/ocs-1.1.3.tar.gz Found By : TrZiNDaN Location : TurkeY -- [email protected] file ; importxml.php bugs ; at -- importxml.php includeonce"$srcdir/patient.inc"; includeonce"$srcdir/acl.inc"; exmp...
b2evolution 1.8.5 - 1.9b (import-mt.php) Remote File Include Vulnerability
No description provided by source. Severity: High Title: b2evolution Remote File inclusion Vulnerability Date: 28.11.06 Author: tarkus tarkus at tiifp dot org Web: https://tiifp.org/tarkus Vendor: b2evolution http://b2evolution.net/ Affected Products: b2evolution 1.8.5 - 1.9 beta - - - - - - - - ...
B2Evolution Import-MT.PHP远程文件包含漏洞
B2Evolution是一款基于php的WEB应用程序。 B2Evolution不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'Import-MT.PHP'脚本对用户提交的'incpath'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 b2evolution b2evolution 1.8.5 b2evolution b2evolution 1.9 beta b2evolution b2evolution 1.9 http://b2evolution.net/index.html...
b2evolution 1.8.5 - 1.9b (import-mt.php) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ========================================================================== b2evolution 1.8.5 - 1.9b import-mt.php Remote File Include Vulnerability ========================================================================== Severity: High...
b2evolution 1.8.5 1.9b - import-mt.php Remote File Inclusion
b2evolution 1.8.5 1.9b - import-mt.php Remote File Inclusion Severity: High Title: b2evolution Remote File inclusion Vulnerability Date: 28.11.06 Author: tarkus tarkus at tiifp dot org Web: https://tiifp.org/tarkus Vendor: b2evolution http://b2evolution.net/ Affected Products: b2evolution 1.8.5 -...
b2evolution 1.8.5 < 1.9b - 'import-mt.php' Remote File Inclusion
Severity: High Title: b2evolution Remote File inclusion Vulnerability Date: 28.11.06 Author: tarkus tarkus at tiifp dot org Web: https://tiifp.org/tarkus Vendor: b2evolution http://b2evolution.net/ Affected Products: b2evolution 1.8.5 - 1.9 beta - - - - - - - - - - - - - - - - - - - - - - - - - -...
Debian DSA-1025-1 : dia - programming error
'infamous41md' discovered three buffer overflow errors in the xfig import code of dia, a diagram editor, that can lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Securit...
phpBB Import Tools Mod <= 0.1.4 Remote File Include Vulnerability
Title: phpBB Import Tools Mod = 0.1.4 phpbbrootpath Remote File Inclusion Author/Discovery: boecke Vulnerability Type: Remote File Inclusion Risk: High Risk Software Affected: phpBB Import Tools Mod = 0.1.4 Literally shouts to: str0ke and henrik Don't promote Google-ism! Vulnerable Code:...
phpBB Import Tools Mod <= 0.1.4 Remote File Include Vulnerability
No description provided by source. Title: phpBB Import Tools Mod = 0.1.4 phpbbrootpath Remote File Inclusion Author/Discovery: boecke Vulnerability Type: Remote File Inclusion Risk: High Risk Software Affected: phpBB Import Tools Mod = 0.1.4 Literally shouts to: str0ke and henrik Don't promote...