Lucene search
K

1032 matches found

Packet Storm
Packet Storm
added 2011/02/22 12:0 a.m.28 views

DIY Web CMS SQL Injection / Cross Site Scripting

SQL and XSS in DIY Web CMS found by : p0pc0rn 22/2/2011 web : http://www.mydiyweb.com.my dork : intext:"powered by DiyWeb" SQL - Microsoft JET Database Engine error ----------------------------------------- http://site.com/template.asp?menuid=SQL http://site.com/viewcatalog.asp?id=SQL...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2011/02/22 12:0 a.m.16 views

DIY Web CMS - Multiple Vulnerabilities

DIY Web CMS - Multiple Vulnerabilities SQL and XSS in DIY Web CMS found by : p0pc0rn 22/2/2011 web : http://www.mydiyweb.com.my dork : intext:"powered by DiyWeb" SQL - Microsoft JET Database Engine error ----------------------------------------- http://site.com/template.asp?menuid=SQL...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2011/02/22 12:0 a.m.30 views

DIY Web CMS - Multiple Vulnerabilities

SQL and XSS in DIY Web CMS found by : p0pc0rn 22/2/2011 web : http://www.mydiyweb.com.my dork : intext:"powered by DiyWeb" SQL - Microsoft JET Database Engine error ----------------------------------------- http://site.com/template.asp?menuid=SQL http://site.com/viewcatalog.asp?id=SQL...

7AI score
Exploits0
myhack58
myhack58
added 2010/04/24 12:0 a.m.26 views

The modified mdb to asp the consequences-vulnerability warning-the black bar safety net

by:SuperHei·Lilo May be with the network security technology development., the administrator of the qualities are on the increase, when using access+asp system, not the database being downloaded to the mdb to asp or asa. The first does not say directly change the suffix, you can directly use the...

7.2AI score
Exploits0
myhack58
myhack58
added 2010/02/28 12:0 a.m.16 views

BBSxp 2 0 0 8 (Build: 8.0.4) Sql injection vulnerability-vulnerability warning-the black bar safety net

File:MoveThread. asp MoveThread. asp line 2-2 of 4 % if CookieUserName =empty then error"you have nota href=""javascript:BBSXPModal. Open 'Login. asp',3 8 0,1 7 0;""login/a" 'save the cookie log can be ThreadID=Request"ThreadID" ' Sql Injection Vulnerability If Not IsNumericThreadID then...

1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/05/13 12:0 a.m.53 views

MS08-028: Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution (950749)

The remote host has a bug in its Microsoft Jet Database Engine 837001. An attacker may exploit one of these flaws to execute arbitrary code on the remote system. To exploit this flaw, an attacker would need the ability to craft a specially malformed database query and have this engine execute it....

9.3CVSS6.1AI score0.34021EPSS
Exploits10References3
NVD
NVD
added 2008/03/25 4:44 p.m.24 views

CVE-2008-1092

Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026...

9.3CVSS7.4AI score0.25877EPSS
Exploits1References6
CVE
CVE
added 2008/03/25 4:0 p.m.63 views

CVE-2008-1092

CVE-2008-1092 describes a buffer overflow in the Microsoft Jet Database Engine (msjet40.dll) prior to 4.0.9505.0 that allows remote code execution via a crafted Word file. The issue is associated with the Jet Engine and is stated to be the same as CVE-2007-6026 in sources; exploitation was report...

9.3CVSS7.4AI score0.25877EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2008/03/25 4:0 p.m.28 views

CVE-2008-1092

Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026...

7.4AI score0.25877EPSS
Exploits1References6
VulnCheck KEV
VulnCheck KEV
added 2008/03/25 12:0 a.m.3 views

VulnCheck KEV: CVE-2008-1092

Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026...

9.3CVSS6.2AI score0.28268EPSS
Exploits6References1
myhack58
myhack58
added 2008/03/10 12:0 a.m.17 views

BBSxp 2 0 0 8 (Build: 8.0.4) Sql Injection Vulnerability-vulnerability warning-the black bar safety net

============================================ Starter http://www. nspcn. org, reprint please reserved here copyright ============================================ Vulnerability release:Tr4c3at1 2 6dotCom Impact version BBSxp 2 0 0 8 Build: 8.0.4other version not see Vulnerability file:MoveThread. a...

7.8AI score
Exploits0
Saint
Saint
added 2007/11/23 12:0 a.m.22 views

Microsoft Jet Engine MDB file ColumnName buffer overflow

Added: 11/23/2007 CVE: CVE-2007-6026 BID: 26468 OSVDB: 44880 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem A buffer overflow vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user opens...

9.3CVSS6.7AI score0.28268EPSS
Exploits6
Exploit DB
Exploit DB
added 2007/11/16 12:0 a.m.53 views

Microsoft Jet Database Engine MDB File Parsing Remote Buffer Overflow Vulnerability

Microsoft Jet Database Engine MDB File Parsing Remote Buffer Overflow Vulnerability. CVE-2007-6026. Dos exploit for windows platform source: http://www.securityfocus.com/bid/26468/info Microsoft Jet Database Engine is prone to a buffer-overflow vulnerability because it fails to properly...

9.3CVSS0.1AI score0.28268EPSS
Exploits6
seebug.org
seebug.org
added 2006/06/19 12:0 a.m.37 views

ASP Stats Generator <= 2.1.1 SQL Injection Vulnerabilities

No description provided by source. /------------------------------------------------ IHS Public advisory -------------------------------------------------/ ASP Stats Generator SQL-ASP injection - Code Excution ASP Stats Generator is a powerful website counter, completely written in ASP programmin...

7.1AI score
Exploits0
Saint
Saint
added 2006/03/24 12:0 a.m.34 views

Microsoft Jet Database Engine buffer overflow

Added: 03/24/2006 CVE: CVE-2005-0944 BID: 12960 OSVDB: 15187 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user ope...

7.5CVSS6.3AI score0.34021EPSS
Exploits4
Saint
Saint
added 2006/03/24 12:0 a.m.28 views

Microsoft Jet Database Engine buffer overflow

Added: 03/24/2006 CVE: CVE-2005-0944 BID: 12960 OSVDB: 15187 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user ope...

7.5CVSS6.3AI score0.34021EPSS
Exploits4
Saint
Saint
added 2006/03/24 12:0 a.m.21 views

Microsoft Jet Database Engine buffer overflow

Added: 03/24/2006 CVE: CVE-2005-0944 BID: 12960 OSVDB: 15187 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user ope...

7.5CVSS6.3AI score0.34021EPSS
Exploits4
Saint
Saint
added 2006/03/24 12:0 a.m.45 views

Microsoft Jet Database Engine buffer overflow

Added: 03/24/2006 CVE: CVE-2005-0944 BID: 12960 OSVDB: 15187 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user ope...

7.5CVSS6.3AI score0.34021EPSS
Exploits4
securityvulns
securityvulns
added 2005/07/13 12:0 a.m.30 views

Dragonfly Shopping Cart Multiple vulnerabilities

Dcrab 's Security Advisory http://icis.digitalparadox.org/dcrab http://www.hackerscenter.com/ Get Dcrab's Services to audit your Web servers, scripts, networks, etc or even code them. Learn more at http://www.dbtech.org Severity: High Title: Dragonfly Shopping Cart Multiple vulnerabilities Date:...

0.3AI score
Exploits0
NVD
NVD
added 2004/06/01 4:0 a.m.19 views

CVE-2004-0197

Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query...

7.5CVSS7.7AI score0.26263EPSS
Exploits0References6
Rows per page
Query Builder