774 matches found
Info Fisier 1.0 - SQL Injection
Info Fisier 1.0 - SQL Injection ==================================================================================== + Info Fisier 1.0 SQL Injection Vulnerability + Software : Info Fisier 1.0 + Author : AnGrY BoY + Contact : [email protected] & [email protected] + Home :...
SuSE9 Security Update : perl-Archive-Zip (YOU Patch Number 9462)
Mail virus scanners like amavis use perl-Archive-Zip to scan ZIP archives. A bug in the handling of files with manipulated size entires has been fixed that could leave malicious code in such files undetected. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin...
Ubuntu Update for firefox vulnerabilities USN-546-1
Ubuntu Update for Linux kernel vulnerabilities USN-546-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5461.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox vulnerabilities USN-546-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Buffer overflow
Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service segmentation fault via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers...
CVE-2007-0422
BEA WebLogic Server 9.0, 9.1, and 9.2 Gold, when running on Solaris 9, allows remote attackers to cause a denial of service server inaccessibility via manipulated socket connections...
Remote Include Vulnerability ====> in Dr.Jr7 Gallery 3.2 RC1
TitLe : Remote Include Vulnerability ==== in Dr.Jr7 Gallery 3.2 RC1 eXpLoIt : http://target/path/Galleryone/Gallery.php?pic=shell.txt By : R0t-KeY --- s33 u ;...
CVE-2005-2483
Eval injection vulnerability in Karrigell before 2.1.8 allows remote attackers to execute arbitrary Python code via modified arguments to a Karrigell services .ks script, which can reference functions from libraries that are used by that script...
SquirrelMail: Several XSS vulnerabilities
Background SquirrelMail is a webmail package written in PHP. It supports IMAP and SMTP protocols. Description SquirrelMail is vulnerable to several cross-site scripting issues, most reported by Martijn Brinkers. Impact By enticing a user to read a specially-crafted e-mail or using a manipulated...
CVE-2005-1365
Pico Server pServ 3.2 and earlier allows remote attackers to execute arbitrary commands via a URL with multiple leading "/" slash characters and ".." sequences...
Mandrake Linux Security Advisory : perl-Archive-Zip (MDKSA-2004:118)
Recently, it was noticed that several antivirus programs miss viruses that are contained in ZIP archives with manipulated directory data. The global archive directory of these ZIP file have been manipulated to indicate zero file sizes. Archive::Zip produces files of zero length when decompressing...
D-Forum 1 - header Remote File Inclusion
D-Forum 1 - header Remote File Inclusion source: https://www.securityfocus.com/bid/6879/info D-Forum is prone to an issue which may allow remote attackers to include files located on remote servers. This issue is present in the /includes/header.php3 and /includes/footer.php3 scripts. Under some...
D-Forum 1 - footer Remote File Inclusion
D-Forum 1 - footer Remote File Inclusion source: https://www.securityfocus.com/bid/6879/info D-Forum is prone to an issue which may allow remote attackers to include files located on remote servers. This issue is present in the /includes/header.php3 and /includes/footer.php3 scripts. Under some...
Nukebrowser 2.x - Remote File Inclusion
Nukebrowser 2.x - Remote File Inclusion source: https://www.securityfocus.com/bid/6731/info Nukebrowser is prone to an issue which may allow remote attackers to include files located on remote servers. This issue is present in the nukebrowser.php script file. Under some circumstances, it is...
CVE-2002-0902
Cross-site scripting vulnerability in phpBB 2.0.0 phpBB2 allows remote attackers to execute Javascript as other phpBB users by including a http:// and a double-quote " in the IMG tag, which bypasses phpBB's security check, terminates the src parameter of the resulting HTML IMG tag, and injects th...