1032 matches found
DIY Web CMS SQL Injection / Cross Site Scripting
SQL and XSS in DIY Web CMS found by : p0pc0rn 22/2/2011 web : http://www.mydiyweb.com.my dork : intext:"powered by DiyWeb" SQL - Microsoft JET Database Engine error ----------------------------------------- http://site.com/template.asp?menuid=SQL http://site.com/viewcatalog.asp?id=SQL...
DIY Web CMS - Multiple Vulnerabilities
DIY Web CMS - Multiple Vulnerabilities SQL and XSS in DIY Web CMS found by : p0pc0rn 22/2/2011 web : http://www.mydiyweb.com.my dork : intext:"powered by DiyWeb" SQL - Microsoft JET Database Engine error ----------------------------------------- http://site.com/template.asp?menuid=SQL...
DIY Web CMS - Multiple Vulnerabilities
SQL and XSS in DIY Web CMS found by : p0pc0rn 22/2/2011 web : http://www.mydiyweb.com.my dork : intext:"powered by DiyWeb" SQL - Microsoft JET Database Engine error ----------------------------------------- http://site.com/template.asp?menuid=SQL http://site.com/viewcatalog.asp?id=SQL...
The modified mdb to asp the consequences-vulnerability warning-the black bar safety net
by:SuperHei·Lilo May be with the network security technology development., the administrator of the qualities are on the increase, when using access+asp system, not the database being downloaded to the mdb to asp or asa. The first does not say directly change the suffix, you can directly use the...
BBSxp 2 0 0 8 (Build: 8.0.4) Sql injection vulnerability-vulnerability warning-the black bar safety net
File:MoveThread. asp MoveThread. asp line 2-2 of 4 % if CookieUserName =empty then error"you have nota href=""javascript:BBSXPModal. Open 'Login. asp',3 8 0,1 7 0;""login/a" 'save the cookie log can be ThreadID=Request"ThreadID" ' Sql Injection Vulnerability If Not IsNumericThreadID then...
MS08-028: Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution (950749)
The remote host has a bug in its Microsoft Jet Database Engine 837001. An attacker may exploit one of these flaws to execute arbitrary code on the remote system. To exploit this flaw, an attacker would need the ability to craft a specially malformed database query and have this engine execute it....
CVE-2008-1092
Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026...
CVE-2008-1092
CVE-2008-1092 describes a buffer overflow in the Microsoft Jet Database Engine (msjet40.dll) prior to 4.0.9505.0 that allows remote code execution via a crafted Word file. The issue is associated with the Jet Engine and is stated to be the same as CVE-2007-6026 in sources; exploitation was report...
CVE-2008-1092
Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026...
VulnCheck KEV: CVE-2008-1092
Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026...
BBSxp 2 0 0 8 (Build: 8.0.4) Sql Injection Vulnerability-vulnerability warning-the black bar safety net
============================================ Starter http://www. nspcn. org, reprint please reserved here copyright ============================================ Vulnerability release:Tr4c3at1 2 6dotCom Impact version BBSxp 2 0 0 8 Build: 8.0.4other version not see Vulnerability file:MoveThread. a...
Microsoft Jet Engine MDB file ColumnName buffer overflow
Added: 11/23/2007 CVE: CVE-2007-6026 BID: 26468 OSVDB: 44880 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem A buffer overflow vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user opens...
Microsoft Jet Database Engine MDB File Parsing Remote Buffer Overflow Vulnerability
Microsoft Jet Database Engine MDB File Parsing Remote Buffer Overflow Vulnerability. CVE-2007-6026. Dos exploit for windows platform source: http://www.securityfocus.com/bid/26468/info Microsoft Jet Database Engine is prone to a buffer-overflow vulnerability because it fails to properly...
ASP Stats Generator <= 2.1.1 SQL Injection Vulnerabilities
No description provided by source. /------------------------------------------------ IHS Public advisory -------------------------------------------------/ ASP Stats Generator SQL-ASP injection - Code Excution ASP Stats Generator is a powerful website counter, completely written in ASP programmin...
Microsoft Jet Database Engine buffer overflow
Added: 03/24/2006 CVE: CVE-2005-0944 BID: 12960 OSVDB: 15187 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user ope...
Microsoft Jet Database Engine buffer overflow
Added: 03/24/2006 CVE: CVE-2005-0944 BID: 12960 OSVDB: 15187 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user ope...
Microsoft Jet Database Engine buffer overflow
Added: 03/24/2006 CVE: CVE-2005-0944 BID: 12960 OSVDB: 15187 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user ope...
Microsoft Jet Database Engine buffer overflow
Added: 03/24/2006 CVE: CVE-2005-0944 BID: 12960 OSVDB: 15187 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user ope...
Dragonfly Shopping Cart Multiple vulnerabilities
Dcrab 's Security Advisory http://icis.digitalparadox.org/dcrab http://www.hackerscenter.com/ Get Dcrab's Services to audit your Web servers, scripts, networks, etc or even code them. Learn more at http://www.dbtech.org Severity: High Title: Dragonfly Shopping Cart Multiple vulnerabilities Date:...
CVE-2004-0197
Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query...