16 matches found
EUVD-2011-2669
Malware in sbrugna...
VulnCheck KEV: CVE-2011-2688
SQL injection vulnerability in mysql/mysql-auth.pl in the modauthnzexternal module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field...
Moderate: Red Hat Security Advisory: Red Hat Mobile Application Platform 4.2.1 Security Update - SDKs and RPMs
Updated packages that provide Red Hat Mobile Application Platform 4.2.1, fixed several bugs, and added various enhancements that are now available from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring Syste...
Gentoo Security Advisory GLSA 201110-23 (mod_authnz_external)
The remote host is missing updates announced in advisory GLSA 201110-23. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 201110-23 (mod_authnz_external)
The remote host is missing updates announced in advisory GLSA 201110-23. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
[ GLSA 201110-23 ] Apache mod_authnz_external: SQL injection
Gentoo Linux Security Advisory GLSA 201110-23 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
GLSA-201110-23 : Apache mod_authnz_external: SQL injection
The remote host is affected by the vulnerability described in GLSA-201110-23 Apache modauthnzexternal: SQL injection mysql/mysql-auth.pl in modauthnzexternal does not properly sanitize input before using it in a SQL query. Impact : A remote attacker could exploit this vulnerability to inject...
Apache mod_authnz_external: SQL injection
Background modauthnzexternal is a tool for creating custom authentication backends for HTTP basic authentication. Description mysql/mysql-auth.pl in modauthnzexternal does not properly sanitize input before using it in an SQL query. Impact A remote attacker could exploit this vulnerability to...
CVE-2011-2688
SQL injection vulnerability in mysql/mysql-auth.pl in the modauthnzexternal module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field...
CVE-2011-2688
SQL injection vulnerability in mysql/mysql-auth.pl in the modauthnzexternal module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field...
CVE-2011-2688
SQL injection vulnerability in mysql/mysql-auth.pl in the modauthnzexternal module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field...
Sql injection
SQL injection vulnerability in mysql/mysql-auth.pl in the modauthnzexternal module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field...
CVE-2011-2688
SQL injection vulnerability in mysql/mysql-auth.pl in the modauthnzexternal module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field...
CVE-2011-2688
CVE-2011-2688 is an SQL injection in the Apache HTTP Server module mod_authnz_external (mysql/mysql-auth.pl) affecting 3.2.5 and earlier, allowing remote attackers to execute arbitrary SQL via the user field. Exploitation is described in multiple advisories; reported impact is remote SQL injectio...
CVE-2011-2688
SQL injection vulnerability in mysql/mysql-auth.pl in the modauthnzexternal module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field...
Apache mod_authnz_external module SQL injection
SQL injection via username...