Sql injection

directory.php in AJchat 0.10 allows remote attackers to bypass input validation and conduct SQL injection attacks via a numeric parameter with a value matching the s parameter's hash value, which prevents the associated $GET"s" variable from being unset. NOTE: it could be argued that this...

Discloser 0.0.4-rc2 SQL Injection Vulnerability

Salvatore "drosophila" Fresta + Application: Discloser + Version: 0.0.4-rc2 + Website: http://discloser.sourceforge.net/ + Bugs: A SQL Injection + Exploitation: Remote + Date: 21 Feb 2004 + Discovered by: Salvatore Fresta aka drosophila + Author: Salvatore Fresta aka drosophila + E-mail:...

Discloser 0.0.4-rc2 (index.php more) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================ Discloser 0.0.4-rc2 index.php more SQL Injection Vulnerability ================================================================ Salvatore "drosophila" Fresta + Application:...

ruby: DoS vulnerability in BigDecimal

The BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent attackers to cause a denial of service application crash via a string argument that represents a large number, as demonstrated by an attempted conversion to the Float data type...

XRDP 0.4.1 - Remote Buffer Overflow (PoC)

XRDP 0.4.1 - Remote Buffer Overflow PoC / XRDP = 0.4.1 pre-auth remote PoC exploit. xrdp.sourceforge.net 01:59:56 root@crateria:/xrdp gcc -w -lssl -lX11 xrdp-poc.c -o xrdp-poc 02:00:29 root@crateria:/xrdp ./xrdp-poc 10.0.0.13 = Connected to 10.0.0.13 = Hit CTRL-C if the progress bar stops. Be...

SIP Username Enumerator (UDP)

Scan for numeric username/extensions using OPTIONS/REGISTER requests This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SIP Username Enumerator UDP', 'Description' = 'Scan for numeric...

Amaya Web Browser 11 (bdo tag) Remote Stack Overflow Exploit (vista)

No description provided by source. !/usr/bin/perl Amaya 11 bdo tag stack overflow author: Rob Carter [email protected] targets: windows vista sp1 modified the alpha-numeric shell-code from metasploit since the first 12 bytes didn't fall within the ASCII range of 0x01-0x7f. otherwise my payload...

OpenOffice.org < 3.2.0 'rtl_allocateMemory()' RCE Vulnerability - Linux

OpenOffice.org is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

OpenOffice < 3.2.0 'rtl_allocateMemory()' RCE Vulnerability - Windows

OpenOffice.Org is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenOffice rtl_allocateMemory() Remote Code Execution Vulnerability (Linux)

This host has OpenOffice.Org installed, which is prone to remote code execution vulnerability. OpenVAS Vulnerability Test $Id: secpodopenofficecodeexecvulnlin900043.nasl 7823 2017-11-20 08:54:04Z cfischer $ Description: OpenOffice rtlallocateMemory Remote Code Execution Vulnerability Authors:...

OpenOffice rtl_allocateMemory() Remote Code Execution Vulnerability (Windows)

This host has OpenOffice.Org installed, which is prone to remote code execution vulnerability. OpenVAS Vulnerability Test $Id: secpodopenofficecodeexecvulnwin900042.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: OpenOffice rtlallocateMemory Remote Code Execution Vulnerability Windows Authors:...

openoffice.org security update

CentOS Errata and Security Advisory CESA-2008:0835 Updated openoffice.org packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office...

Integer overflow

Integer overflow in the rtlallocateMemory function in sal/rtl/source/allocglobal.c in the memory allocator in OpenOffice.org OOo 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted document, related to...

RHEL 5 : openoffice.org (RHSA-2008:0835)

Updated openoffice.org packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that includes desktop applications, such...

openoffice.org: numeric truncation error in memory allocator (64bit)

Integer overflow in the rtlallocateMemory function in sal/rtl/source/allocglobal.c in the memory allocator in OpenOffice.org OOo 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted document, related to...

Important: Red Hat Security Advisory: openoffice.org security update

Updated openoffice.org packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that includes desktop applications, such...

Sql injection

SQL injection vulnerability in the Schema API in Drupal 6.x before 6.3 allows remote attackers to execute arbitrary SQL commands via vectors related to "an inappropriate placeholder for 'numeric' fields."...

CVE-2008-3223

SQL injection vulnerability in the Schema API in Drupal 6.x before 6.3 allows remote attackers to execute arbitrary SQL commands via vectors related to "an inappropriate placeholder for 'numeric' fields."...

Code injection

Soldner Secret Wars 33724 and earlier allows remote attackers to cause a denial of service CPU consumption via a packet with a large numeric value in a 0x80 data block...

CVE-2008-3135

Soldner Secret Wars 33724 and earlier allows remote attackers to cause a denial of service CPU consumption via a packet with a large numeric value in a 0x80 data block...