PeopleAggregator 1.2pre6-release-53 - Multiple Remote File Inclusions

PeopleAggregator 1.2pre6-release-53 - Multiple Remote File Inclusions PeopleAggregator 1.2pre6 Multiple Remote File Inclusion Vulnerabilities http://update.peopleaggregator.org/dist/peopleaggregator-1.2pre6-release-53.tar.gz DORK : "copyright 2006 Broadband Mechanics" POC :...

Authentication flaw

The login method in LoginModule implementations in Apache Geronimo 2.0 does not throw FailedLoginException for failed logins, which allows remote attackers to bypass authentication requirements, deploy arbitrary modules, and gain administrative access by sending a blank username and password with...

CVE-2007-4548

The login method in LoginModule implementations in Apache Geronimo 2.0 does not throw FailedLoginException for failed logins, which allows remote attackers to bypass authentication requirements, deploy arbitrary modules, and gain administrative access by sending a blank username and password with...

CVE-2007-4548

The login method in LoginModule implementations in Apache Geronimo 2.0 does not throw FailedLoginException for failed logins, which allows remote attackers to bypass authentication requirements, deploy arbitrary modules, and gain administrative access by sending a blank username and password with...

CVE-2007-4548

CVE-2007-4548 : Apache Geronimo 2.0’s LoginModule implementations do not throw FailedLoginException on failed logins, allowing remote authentication bypass and unauthorized module deployment/gain of admin access by sending a blank username/password via the deployment module. Related advisories (e...