45 matches found
CVE-2008-6648
CVE-2008-6648 describes a remote SQL injection in the Ktools PhotoStore web app. The vulnerability exists in the file crumbs.php (versions 3.4.3 and 3.5.2) and is exploitable via the query parameter gid to about_us.php . It may be related to CVE-2008-6647. The impact is the potential execution of...
CVE-2008-6649
CVE-2008-6649 : SQL injection in Ktools PhotoStore component manager/image_details_editor.php affects versions 2.5, 2.9.8, 3.1.0, and up to 3.5.2. The vulnerability allows remote attackers to execute arbitrary SQL commands via the id parameter. Public references (e.g., Exploit-DB, Secunia, OSVDB,...
CVE-2008-6649
SQL injection vulnerability in manager/imagedetailseditor.php in Ktools PhotoStore 2.5, 2.9.8, 3.1.0, and other versions through 3.5.2 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-6647
CVE-2008-6647 (and related CVE-2008-6648) maps to SQL injection vulnerabilities in Ktools PhotoStore 3.4.3 (gallery.php via gid) and, for 6648, crumbs.php via gid to about_us.php, with potential arbitrary SQL execution. Connected sources confirm affected files and parameters; no remediation detai...
CVE-2008-6647
SQL injection vulnerability in gallery.php in Ktools PhotoStore 3.4.3 allows remote attackers to execute arbitrary SQL commands via the gid parameter...
CVE-2008-6648
SQL injection vulnerability in crumbs.php in Ktools PhotoStore 3.4.3 and 3.5.2 allows remote attackers to execute arbitrary SQL commands via the gid parameter to aboutus.php. NOTE: this might be the same issue as CVE-2008-6647...
Gentoo Security Advisory GLSA 200512-11 (CenterICQ)
The remote host is missing updates announced in advisory GLSA 200512-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ktools PhotoStore 3.4.3 (gallery.php gid) SQL Injection Vulnerability
No description provided by source. Remote SQL Injection Vulnerability PhotoStore 3.4.3 gallery.php gid Script NAME : PhotoStore VERSION : 3.4.3 DOWNLOAD : http://www.ktools.net/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] D0rk :: n/a ; ExPlo!t For ADMIN INFO : ===...
Ktools PhotoStore <= 3.5.2 Multiple SQL Injection Vulnerabilities
No description provided by source. '/ -.- -------------------------oOO------OOo------------------------- | Ktools Photostore = v3.5.2 crumbs.php Remote SQL Injection | | works only with magic quotes = off | | coded by DNX | ----------------------------------------------------------------- !...
Ktools Photostore 3.5.2 - Multiple SQL Injections
Ktools Photostore 3.5.2 - Multiple SQL Injections '/ -.- -------------------------oOO------OOo------------------------- | Ktools Photostore = v3.5.2 crumbs.php Remote SQL Injection | | works only with magic quotes = off | | coded by DNX |...
Ktools PhotoStore <= 3.5.2 Multiple SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications ================================================================= Ktools PhotoStore = 3.5.2 Multiple SQL Injection Vulnerabilities ================================================================= '/ -.-...
Ktools Photostore 3.5.2 - Multiple SQL Injections
'/ -.- -------------------------oOO------OOo------------------------- | Ktools Photostore = v3.5.2 crumbs.php Remote SQL Injection | | works only with magic quotes = off | | coded by DNX | ----------------------------------------------------------------- ! Discovered.: DNX ! Vendor.....:...
Ktools PhotoStore <= 3.5.1 (gallery.php gid) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ======================================================================== Ktools PhotoStore...
Ktools Photostore 3.5.1 - gid SQL Injection
Ktools Photostore 3.5.1 - gid SQL Injection Remote SQL Injection Vulnerability PhotoStore 3.4.3 gallery.php gid Script NAME : PhotoStore VERSION : 3.4.3 DOWNLOAD : http://www.ktools.net/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] D0rk :: n/a ; ExPlo!t For ADMIN INFO : ===...
Ktools Photostore 3.5.1 - 'gid' SQL Injection
Remote SQL Injection Vulnerability PhotoStore 3.4.3 gallery.php gid Script NAME : PhotoStore VERSION : 3.4.3 DOWNLOAD : http://www.ktools.net/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] D0rk :: n/a ; ExPlo!t For ADMIN INFO : ===...
Debian Security Advisory DSA 1088-1 (centericq)
The remote host is missing an update to centericq announced via advisory DSA 1088-1. Mehdi Oudad and Kevin Fernandez discovered a buffer overflow in the ktools library which is used in centericq, a text-mode multi-protocol instant messenger client, which may lead local or remote attackers to...
Debian DSA-1088-1 : centericq - buffer overflow
Mehdi Oudad and Kevin Fernandez discovered a buffer overflow in the ktools library which is used in centericq, a text-mode multi-protocol instant messenger client, which may lead local or remote attackers to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
Debian DSA-1083-1 : motor - buffer overflow
Mehdi Oudad and Kevin Fernandez discovered a buffer overflow in the ktools library which is used in motor, an integrated development environment for C, C++ and Java, which may lead local attackers to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...
DSA-1088-1 centericq - buffer overflow
Bulletin has no description...
ktools library buffer overflow
VGETSTRING macro buffer overflow...