CVE-2005-4190

Multiple cross-site scripting XSS vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users to inject arbitrary web script or HTML via multiple vectors, as demonstrated by 1 the identity field, 2 Category and 3 Label search fields, 4 the Mobile Phone field, and ...

CVE-2005-3772

Multiple SQL injection vulnerabilities in Joomla! before 1.0.4 allow remote attackers to execute arbitrary SQL commands via the 1 Itemid variable in the Polls modules and 2 multiple unspecified methods in the mosDBTable class...

CVE-2003-1238

CVE-2003-1238 is a cross-site scripting (XSS) vulnerability in Nuked-Klan 1.3 beta and earlier. The flaw allows remote attackers to steal authentication cookies by injecting arbitrary HTML or script into the op parameter of the Team, News, and Liens modules. Affected component is the web applicat...

PHP-Nuke 7.8 Search Module - SQL Injection

PHP-Nuke 7.8 Search Module - SQL Injection !/usr/bin/perl -w use IO::Socket; if @ARGV new Proto = "tcp", PeerAddr = "$HOST", PeerPort = "80" || die " Connect FAILED\n"; print " Connected OK\n"; print " Sending exploit OK\n\n"; print $send "POST ".$GET." HTTP/1.0\n"; print $send "Host: ".%HOST."\n...

PHP-Nuke 7.8 Search Module - SQL Injection

!/usr/bin/perl -w use IO::Socket; if @ARGV new Proto = "tcp", PeerAddr = "$HOST", PeerPort = "80" || die " Connect FAILED\n"; print " Connected OK\n"; print " Sending exploit OK\n\n"; print $send "POST ".$GET." HTTP/1.0\n"; print $send "Host: ".%HOST."\n"; print $send "Referer:...

RHEL 4 : pam (RHSA-2005:805)

An updated pam package that fixes a security weakness is now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. PAM Pluggable Authentication Modules is a system security tool that allows system administrators t...

pam security update

CentOS Errata and Security Advisory CESA-2005:805 An updated pam package that fixes a security weakness is now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. PAM Pluggable Authentication Modules is a system...

Low: Red Hat Security Advisory: pam security update

An updated pam package that fixes a security weakness is now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. PAM Pluggable Authentication Modules is a system security tool that allows system administrators t...

phpnuke78sql.txt

PHPNuke 7.8 with all security fixes/patches "Downloads", "WebLinks" & "YourAccount" SQL INjection - remote commands execution poc exploit there are a lot of unsanitized vars in every module, as I can see, so if magicquotesgpc is Off - SQL INJECTION 1 you can go to "Your Account" and submit a...

PHP-Nuke 7.8 - SQL Injection / Remote Command Execution

?php 20.05 23/10/2005 ---phpnuke78xpl.php PHPNuke 7.8 with all security fixes/patches "Downloads","WebLinks" & "YourAccount" modules SQL Injection / remote commands execution exploit yet not tested 7.9, but OK... by rgod site: http://rgod.altervista.org make these changes in php.ini if you have...

CVE-2005-3109

The HFS and HFS+ hfsplus modules in Linux 2.6 allow attackers to cause a denial of service oops by using hfsplus to mount a filesystem that is not hfsplus...

Important: Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 3 Update 6

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 3. This is the sixth regular update. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles t...

PhpMyFAQ 1.5.1 multiple vulnerabilities

2.31 23/09/2005 PhpMyFaq 1.5.1 SQL injection / board takeover / user info disclosure / path disclosure remote code / commands execution software: site: http://www.phpmyfaq.de/ description: "phpMyFAQ is a multilingual, completely database-driven FAQ-system. It supports various databases to store a...

PHPNuke78.txt

NewAngels Advisory 7PHP Nuke sqlquery"SELECT active, view FROM ".$prefix."modules WHERE title='$name'"; The $name variable is not checked so you could inject malicious SQL Code. In an file which is included whe have the following code: $queryString = strtolower$SERVER'QUERYSTRING'; if...

PHP Nuke <= 7.8 Multiple SQL Injections

NewAngels Advisory 7PHP Nuke = 7.8 Multiple SQL Injections ============================================================================= Software: PHP Nuke 7.8 Type: SQL Injections Risk: High Date: Sep. 10 2005 Vendor: PHP-Nuke phpnuke.org Credit: ======= Robin 'onkelfisch' Verton from...

[NewAngels Advisory #5] Stylemotion WEB//NEWS 1.4 Vulnerabilities

NewAngels Advisory 5 Stylemotion WEB//NEWS 1.4 ============================================================================= Software: WEB//NEWS 1.4 Type: SQL Injections, Path Disclosure Risk: High Date: Sep. 1 2005 Vendor: Stylemotion Credit: ======= Robin 'onkelfisch' Verton...

CVE-2005-2811

Untrusted search path vulnerability in Net-SNMP 5.2.1.2 and earlier, on Gentoo Linux, installs certain Perl modules with an insecure DTRPATH, which could allow local users to gain privileges...

CVE-2005-2840

Multiple unknown vulnerabilities in MAXdev MD-Pro 1.0.72 and earlier have unknown impact and unspecified attack vectors, in one or more of the 1 Download, 2 Search, 3 Web links, 4 Blocks, 5 Messages, 6 News, 7 Comments, 8 Settings, 9 Stats or 10 subjects modules...

CVE-2005-2811

Untrusted search path vulnerability in Net-SNMP 5.2.1.2 and earlier, on Gentoo Linux, installs certain Perl modules with an insecure DTRPATH, which could allow local users to gain privileges...

CVE-2005-2811

CVE-2005-2811 describes an untrusted search path (DT_RPATH) vulnerability in Net-SNMP up to version 5.2.1.2 on Gentoo Linux, where certain Perl modules are installed with an insecure DT_RPATH. This could allow a local attacker (non-remote) to gain privileges by influencing the loaded libraries. T...