JiRo's FAQ Manager eXperience 1.0 - 'fID' SQL Injection

Script Name : JiRo´s FAQ Manager eXperience + Version : v 1.0 + Price : Single Website License 34.95 $ 2 Websites License 62.95 $ 5 Websites License 139.95 $ + Author : Underz0ne Crew + Home : http://www.underz0ne.net + Script In short : 'JiRos FAQ Management System is an essential element for...

JiRo?s FAQ Manager (read.asp fID) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= JiRo's FAQ Manager read.asp fID SQL Injection Vulnerability ============================================================= + Script Name : JiRo?s FAQ Manager eXperience + Version...

Battle Blog 1.25 - comment.asp SQL Injection

Battle Blog 1.25 - comment.asp SQL Injection ++ | hhh hhh aa ccccccc kk k EEEEEEEE RRRR TTTTTTTT NNN NN | | hhh hhh aa aa cc kk k E RR R ----------- TT NN N NN | | hhhhhhhh aaaaaaaa cc kkk EEEEEEE RR R ----------- TT NN N NN | | hhh hhh aa aa cc kk k E RR R TT NN NNN | | hhh hhh aa aa ccccccc kk ...

battleblog-sql.txt

++ | hhh hhh aa ccccccc kk k EEEEEEEE RRRR TTTTTTTT NNN NN | | hhh hhh aa aa cc kk k E RR R ----------- TT NN N NN | | hhhhhhhh aaaaaaaa cc kkk EEEEEEE RR R ----------- TT NN N NN | | hhh hhh aa aa cc kk k E RR R TT NN NNN | | hhh hhh aa aa ccccccc kk k EEEEEEE RR R TT NN NN | | | ++ + Script Nam...

postcardmentor-sql.txt

|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | | |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| Title :: Multiple SQL...

PostcardMentor - cat_fldAuto SQL Injection

PostcardMentor - catfldAuto SQL Injection |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...

PostcardMentor (step1.asp cat_fldAuto) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================== PostcardMentor step1.asp catfldAuto SQL Injection Vulnerability ==================================================================...

PostcardMentor (step1.asp cat_fldAuto) SQL Injection Vulnerability

No description provided by source. |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ \ | | \ \ /\ /\ \ \ \ /\ \L\ /\ /\ \ \ \ \ \ \ / /\ \L\ \ | |...

[SECURITY] Fedora 7 Update: gallery2-2.2.4-3.fc7

The base Gallery 2 installation - the equivalent of upstream's -minimal package. This package requires a database to be operational. Acceptable database backends include MySQL v 3.x, MySQL v 4.x, PostgreSQL v 7.x, PostgreSQL v 8.x, Oracle 9i, Oracle 10g, DB2, and MS SQL Server. All given package...

[SECURITY] Fedora 8 Update: gallery2-2.2.4-3.fc8

The base Gallery 2 installation - the equivalent of upstream's -minimal package. This package requires a database to be operational. Acceptable database backends include MySQL v 3.x, MySQL v 4.x, PostgreSQL v 7.x, PostgreSQL v 8.x, Oracle 9i, Oracle 10g, DB2, and MS SQL Server. All given package...

[SECURITY] Fedora 7 Update: gallery2-2.2.4-1.fc7

The base Gallery 2 installation - the equivalent of upstream's -minimal package. This package requires a database to be operational. Acceptable database backends include MySQL v 3.x, MySQL v 4.x, PostgreSQL v 7.x, PostgreSQL v 8.x, Oracle 9i, Oracle 10g, DB2, and MS SQL Server. All given package...

Kvaliitti WebDoc 3.0 CMS SQL Injection vulnerability

Found by: Jaakko "Chrysalid" Hartikainen 1. Info Kvaliitti WebDoc 3.0 CMS is a proprietary Finnish-made content management system developed by Kvaliitti Oy http://www.kvaliitti.fi. It is driven by MS SQL Server and ASP. 2. Abstract WebDoc 3.0 suffers from a flaw in input validation, which allows...

kvaliitti-sql.txt

Found by: Jaakko "Chrysalid" Hartikainen 1. Info Kvaliitti WebDoc 3.0 CMS is a proprietary Finnish-made content management system developed by Kvaliitti Oy http://www.kvaliitti.fi. It is driven by MS SQL Server and ASP. 2. Abstract WebDoc 3.0 suffers from a flaw in input validation, which allows...

SQL Injection in Cisco CallManager

SUMMARY ======= A SQL injection vulnerability exists in the Log On page of the web interface for Cisco CallManager AKA Unified Communications Manager. An unauthenticated attacker who is able to access the Log On page could exploit this vulnerability to run arbitrary SQL commands as the logged in...

Lyris ListManager MSDE Weak sa Password

The remote host appears to be running ListManager, a web-based commercial mailing list management application from Lyris. The version of ListManager on the remote host was installed using Microsoft SQL Server Desktop Engine MSDE for its database backend along with a weak password for the 'sa'...

CA BrightStor MS-SQL Server ARCserve Backup Agent Buffer Overflow (CAN-2005-1272)

...

MS-SQL Server Protocol - General Settings (CAN-2000-1209; CVE-2002-1123)

...

MS SQL Server 7 buffer overflow

No description provided...

Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_execresultset" extended procedure

Overview MS SQL Server contains an extended stored procedure with inappropriate permission settings. Description Microsoft SQL Server 7.0 and Microsoft SQL Server 2000 contain an extended stored procedure, xpexecresultset , that permits an unprivileged user of a database to gain administrative...

CVE-2002-0645

Technical details for CVE-2002-0645 are not publicly provided in the connected documents; the available sources reference the vulnerability at a high level. Monitor for updates from official advisories.