990 matches found
WebStudio CMS (index.php pageid) Blind SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================== WebStudio CMS index.php pageid Blind SQL Injection Vulnerability ================================================================== Application: WebStudio CMS Bug Type:...
WebStudio CMS - Blind SQL Injection
WebStudio CMS - Blind SQL Injection Application: WebStudio CMS Vendor Name: BDigital Media Ltd Vendors Url: http://www.bdigital.biz Bug Type: WebStudio CMS pageid Blind SQL Injection Vulnerability Exploitation: Remote Severity: Critical Solution Status: Unpatched Introduction: WebStudio CMS is a...
[SECURITY] Fedora 7 Update: imlib2-1.3.0-4.fc7
Imlib 2 is a library that does image file loading and saving as well as rendering, manipulation, arbitrary polygon support, etc. It does ALL of these operations FAST. Imlib2 also tries to be highly intelligent about doing them, so writing naive programs can be done easily, without sacrificing...
sitexscms-traverserfi.txt
siteXS CMS 0.1.1 Directory Traversal Vulnerability,Arbitrary File Upload,Remote File Include Discovered by: e.wiZz! Site: madspot.org Mail: N/A :D Info: Thanks to ourBosnian presidentswe have 3,eh for stealing our money,so we dont have anythin' to eat. cheers In the wild....... / INTRO / Info:...
mambo-xssxsrf.txt
WwW.BugReport.ir AmnPardaz Security Research Team Title: Mambo Vulnerabilities Vendor: http://mamboserver.com Bugs: Path Disclosure, XSS , XSRF, DOS Vulnerable Version:4.6.3 prior versions also may be affected Exploitation: Remote with browser Fix Available: No! - Description: Mambo is an, open...
Default credentials
NMASINST in Novell Modular Authentication Service NMAS 3.1.2 and earlier on NetWare logs its invoking command line to NMASINST.LOG, which might allow local users to obtain the admin username and password by reading this file...
Solaris 8 (x86) : 125803-01
SunOS 5.8x86: Modular Debugger patch. Date this patch was last updated by Sun : Apr/06/07 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...
CVE-2006-6306
Format string vulnerability in Novell Modular Authentication Services NMAS in the Novell Client 4.91 SP2 and SP3 allows users with physical access to read stack and memory contents via format string specifiers in the Username field of the logon window...
CVE-2006-6306
Format string vulnerability in Novell Modular Authentication Services NMAS in the Novell Client 4.91 SP2 and SP3 allows users with physical access to read stack and memory contents via format string specifiers in the Username field of the logon window...
ASPNuke <= 0.80 (register.asp) Remote SQL Injection Vulnerability
Title : ASPNuke = 0.80 register.asp Remote SQL Injection Vulnerability Author : ajann S.Page : http://www.aspnuke.com D.Page : http://sourceforge.net/project/showfiles.php?groupid=92470 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ASP Nuke...
ASPNuke <= 0.80 (register.asp) Remote SQL Injection Vulnerability
Title : ASPNuke = 0.80 register.asp Remote SQL Injection Vulnerability Author : ajann S.Page : http://www.aspnuke.com D.Page : http://sourceforge.net/project/showfiles.php?groupid=92470 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ASP Nuke...
ASPNuke 0.80 - register.asp SQL Injection
ASPNuke 0.80 - register.asp SQL Injection Title : ASPNuke = 0.80 register.asp Remote SQL Injection Vulnerability Author : ajann S.Page : http://www.aspnuke.com D.Page : http://sourceforge.net/project/showfiles.php?groupid=92470...
ASPNuke <= 0.80 (register.asp) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================= ASPNuke = 0.80 register.asp Remote SQL Injection Vulnerability ================================================================= Title : ASPNuke = 0.80 register.asp Remote S...
Microsoft XML Core Services Information Disclosure Vulnerability
Description Microsoft XML Core Services is prone to an information-disclosure vulnerability. This vulnerability is caused by an error in how the affected component handles server redirects. An attacker can exploit this vulnerability by enticing a victim user into visiting a malicious web page...
Microsoft Windows Object Packager Remote Code Execution Vulnerability
Description The Microsoft Windows Object Packager is prone to a remote code-execution vulnerability. This issue is due to how the affected component handles file extensions. This vulnerability could let an attacker spoof dialogues, enticing a victim into installing a file that has been...
Microsoft Windows XML Core Services XSLT Buffer Overrun Vulnerability
Description Microsoft Windows is prone to a remotely exploitable buffer-overrun condition in the XSLT implementation of XML core services. An attacker can exploit this issue to execute arbitrary code on an unsuspecting victim's computer. This may facilitate a remote compromise. Technologies...
LibXfont, monolithic X.org: Multiple integer overflows
Background libXfont is the X.Org Xfont library, some parts are based on the FreeType code base. Description Several integer overflows have been found in the CID font parser. Impact A remote attacker could exploit this vulnerability by enticing a user to load a malicious font file resulting in the...
Code injection
Cisco IOS XR, when configured for Multi Protocol Label Switching MPLS and running on Cisco CRS-1 routers, allows remote attackers to cause a denial of service Modular Services Cards MSC crash or "MPLS packet handling problems" via certain MPLS packets, as identified by Cisco bug IDs 1 CSCsd15970...
CVE-2006-1928
Cisco IOS XR, when configured for Multi Protocol Label Switching MPLS and running on Cisco CRS-1 routers, allows remote attackers to cause a denial of service Modular Services Cards MSC crash or "MPLS packet handling problems" via certain MPLS packets, as identified by Cisco bug IDs 1 CSCsd15970...
[Full-disclosure] Cisco Security Advisory: Cisco IOS XR MPLS Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco IOS XR MPLS Vulnerabilities Advisory ID: cisco-sa-20060419-xr http://www.cisco.com/warp/public/707/cisco-sa-20060419-xr.shtml Revision 1.0 For Public Release 2006 April 19 1500 UTC GMT -...