SpiceWorks 6.0.00993 - Multiple Script Injection Vulnerabilities

!-- Title: Spiceworks 6.0.00993 Multiple Script Injection Vulnerabilities Vendor: Spiceworks Inc. Product web page: http://www.spiceworks.com Affected version: 6.0.00993 and 6.0.00966 Summary: The Spiceworks IT Desktop delivers nearly everything you need to simplify your IT job. Available in a...

CVE-2011-5174

Buffer overflow in Intel Trusted Execution Technology TXT SINIT Authenticated Code Modules ACM in Intel Q67 Express, C202, C204, C206 Chipsets, and Mobile Intel QM67, and QS67 Chipset before 2ndgeni5i7SINIT51.BIN Express; Intel Q57, 3450 Chipsets and Mobile Intel QM57 and QS57 Express Chipset...

CVE-2011-5174

Buffer overflow in Intel Trusted Execution Technology TXT SINIT Authenticated Code Modules ACM in Intel Q67 Express, C202, C204, C206 Chipsets, and Mobile Intel QM67, and QS67 Chipset before 2ndgeni5i7SINIT51.BIN Express; Intel Q57, 3450 Chipsets and Mobile Intel QM57 and QS57 Express Chipset...

Cisco Software Encryption Library Information Disclosure Vulnerability

Cisco software contains a vulnerability that could allow an unauthenticated, remote attacker to access sensitive information on a targeted system. The vulnerability is in the encryption library used by the vulnerable software. This library allows a portion of an encrypted packet to be sent...

Slackware Advisory SSA:2004-119-01 kernel security updates

The remote host is missing an update as announced via advisory SSA:2004-119-01. OpenVAS Vulnerability Test $Id: esoftslkssa200411901.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

CVE-2011-5111

Multiple SQL injection vulnerabilities in Kajian Website CMS Balitbang 3.x allow remote attackers to execute arbitrary SQL commands via the hal parameter to 1 the data module in alumni.php; or the 2 lihbuku, 3 artikel, 4 album, or 5 berita module in index.php...

CVE-2012-4260

Multiple SQL injection vulnerabilities in myCare2x allow remote attackers to execute arbitrary SQL commands via the 1 aktion or 2 callurl parameter to modules/patient/mycare2xpatinfo.php; 3 deptnr or 4 pid parameter to modules/importer/mycare2ximporter.php; 5 myOpsEintrag or 6 keyword parameter i...

Sql injection

Multiple SQL injection vulnerabilities in myCare2x allow remote attackers to execute arbitrary SQL commands via the 1 aktion or 2 callurl parameter to modules/patient/mycare2xpatinfo.php; 3 deptnr or 4 pid parameter to modules/importer/mycare2ximporter.php; 5 myOpsEintrag or 6 keyword parameter i...

Scientific Linux Security Update : kvm on SL5.x x86_64

A data structure field in kvmvcpuioctlx86getvcpuevents in QEMU-KVM was not initialized properly before being copied to user-space. A privileged host user with access to '/dev/kvm' could use this flaw to leak kernel stack memory to user-space. CVE-2010-4525 These updated packages also fix several...

Scientific Linux Security Update : openafs on SL5.x i386/x86_64

This release is corresponding with the first kernel security update with the new 2.6.18-92 kernel. We have build new kernel modules for all the kernels we have released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux...

Scientific Linux Security Update : openafs on SL5.x i386/x86_64

This release is corresponding with the kernel security update with the new 2.6.18-164 kernel. We have build new kernel modules for all the kernels we have released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'deprecatednasllevel.inc';...

Scientific Linux Security Update : openafs on SL5.x i386/x86_64

This release is corresponding with the SL 5.5 update. We have build new kernel modules for all the kernels we have released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

Scientific Linux Security Update : ndiswrapper on SL5.x i386/x86_64

This release is corresponding with the first kernel security update with the new 2.6.18-92 kernel. We have built new kernel modules for all the kernels we have released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux...

Scientific Linux Security Update : ndiswrapper on SL5.x i386/x86_64

This release is corresponding with the kernel security update with the new 2.6.18-164 kernel. We have build new kernel modules for all the kernels we have released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'deprecatednasllevel.inc';...

Potential remote code execution due to embedding of old django-piston

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/CONFCLOUD-46819. panel The exposed atlassian api for forummodules found under forummodules/atlassian/api uses an outdated version of...

Barracuda Application Validation Filter Bypass

Exploit for php platform in category web applications Barracuda Appliances - Validation Filter Bypass Vulnerability Details: ======== A filter bypass vulnerability is detected in the Barracuda Networks Appliances Applications. Remote attackers with privileged user accounts bypass the application...

DEBIAN-CVE-2011-3148

Stack-based buffer overflow in the assembleline function in modules/pamenv/pamenv.c in Linux-PAM aka pam before 1.1.5 allows local users to cause a denial of service crash and possibly execute arbitrary code via a long string of white spaces at the beginning of the /.pamenvironment file...

CVE-2012-3998

Multiple SQL injection vulnerabilities in Sticky Notes before 0.2.27052012.5 allow remote attackers to execute arbitrary SQL commands via the 1 paste id in admin/modules/modpastes.php or 2 show.php, 3 user id to admin/modules/modusers.php, 4 project to list.php, or 5 session id to show.php...

Check Point Abra Bypass / Command Execution

Exploit for php platform in category web applications Check Point Abra Vulnerabilities Vendor: Check Point Software Technologies Ltd Product web page: http://rus.checkpoint.com/products/abra/index.html; http://www.checkpoint.com/products/go/ Platforms: Windows XP, Vista, 7 32 bit Authors: Belov V...

Check Point Abra Bypass / Command Execution

Check Point Abra Vulnerabilities Vendor: Check Point Software Technologies Ltd Product web page: http://rus.checkpoint.com/products/abra/index.html; http://www.checkpoint.com/products/go/ Platforms: Windows XP, Vista, 7 32 bit Authors: Belov V., Komarov A. Group-IB Summary: Check Point Abra allow...