php: information leak vulnerability in var_export()

The varexport function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 flushes the output buffer to the user when certain fatal errors occur, even if displayerrors is off, which allows remote attackers to obtain sensitive information by causing the application to exceed limits for memory, execution...

chCounter <= 3.1.3 SQL Injection Vulnerability

Exploit for php platform in category web applications ============================================== chCounter = 3.1.3 SQL Injection Vulnerability ============================================== !/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias...

chCounter 3.1.3 - SQL Injection

chCounter 3.1.3 - SQL Injection !/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache...

chCounter 3.1.3 - SQL Injection

!/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache Requirements: - Downloads must be...

kernel: wireless: fix 64K kernel heap content leak via ioctl

The cfg80211wextgiwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctlstandardiwpoint function in net/wireless/wext-core.c, an...

FreeBSD : FreeBSD -- OPIE off-by-one stack overflow (768cfe70-ca40-11df-aade-0050568f000c)

A programming error in the OPIE library could allow an off-by-one buffer overflow to write a single zero byte beyond the end of an on-stack buffer. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...

Wiccle Web Builder CMS and iWiccle CMS Community Builder Multiple XSS Vulnerabilities

Wiccle Web Builder CMS and iWiccle CMS Community Builder Multiple Cross-Site Scripting Vulnerability. SecPod Technologies www.secpod.com Author Veerendra G.G SecPod ID: 1005 09/07/2010 Issue Discovered 09/10/2010 Vendor Notified 09/13/2010 Vendor Confirmed 09/14/2010 Fix Available Class: Cross-Si...

[SECURITY] Fedora 13 Update: tuxguitar-1.2-3.fc13

TuxGuitar is a guitar tablature editor with player support through midi. It can display scores and multitrack tabs. Various features TuxGuitar provides inc lude autoscrolling while playing, note duration management, bend/slide/vibrato/ hammer-on/pull-off effects, support for tuplets, time signatu...

[SECURITY] Fedora 12 Update: tuxguitar-1.2-3.fc12

TuxGuitar is a guitar tablature editor with player support through midi. It can display scores and multitrack tabs. Various features TuxGuitar provides inc lude autoscrolling while playing, note duration management, bend/slide/vibrato/ hammer-on/pull-off effects, support for tuplets, time signatu...

CVE-2010-1773

CVE-2010-1773 is an off-by-one vulnerability in WebKit’s WebCore: the toAlphabetic() routine in rendering/RenderListMarker.cpp contains an error in WebKit prior to r59950. This affects WebKit-based stacks (e.g., Chrome older than 5.0.375.70) and allows remote attackers to read sensitive informati...

Linux Kernel 2.6.27 &lt; 2.6.36 (RedHat x86-64) - &#039;compat&#039; Local Privilege Escalation

/ Ac1dB1tch3z Vs Linux Kernel x8664 0day Today is a sad day.. R.I.P. Tue, 29 Apr 2008 / Tue, 7 Sep 2010 a bit of history: MCASTMSFILTER Compat mode bug found... upon commit! 2 year life on this one author David L Stevens Tue, 29 Apr 2008 10:23:22 +0000 03:23 -0700 committer David S. Miller Tue, 2...

MyHobbySite 1.01 - SQL Injection Authentication Bypass

MyHobbySite 1.01 - SQL Injection Authentication Bypass Exploit Title: MyHobbySite 1.01 SQL injection, Bypass Authentication Vulnerability Date: 12-09-2010 Author: YuGj VN Email: [email protected] Software Link: http://www.myhobbysite.net/index.php?page=15 Version: v1.01 Bug Code: if...

Design/Logic Flaw

The cfg80211wextgiwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctlstandardiwpoint function in net/wireless/wext-core.c, an...

CVE-2010-2955

The cfg80211wextgiwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctlstandardiwpoint function in net/wireless/wext-core.c, an...

CVE-2010-2955

The CVE-2010-2955 issue affects the Linux kernel before 2.6.36-rc3-next-20100831, specifically the cfg80211_wext_giwessid function in net/wireless/wext-compat.c, which fails to initialize certain structure members. This enables a local attacker to exploit an off-by-one error in ioctl_standard_iw_...

Ghostscript Arbitrary Code Execution Vulnerability

This host is installed with Ghostscript and is prone to arbitrary code execution vulnerability. OpenVAS Vulnerability Test $Id: gbghostscriptcodeexecvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ Ghostscript Arbitrary Code Execution Vulnerability. Authors: Sooraj KS Copyright: Copyright c 2010...

Ghostscript Arbitrary Code Execution Vulnerability

Ghostscript is prone to an arbitrary code execution vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

CVE-2010-2955

The cfg80211wextgiwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctlstandardiwpoint function in net/wireless/wext-core.c, an...

smbind 0.4.7 - SQL Injection

smbind query"SELECT ID FROM users WHERE username = '" . $SESSION'username' ."' AND password = '" . md5$SESSION'password' . " ' "; Easy admin login Enter in username field: admin'; Enter in password field: anything Sql query will result like this: SELECT ID FROM users WHERE username = 'admin'; ' A...

smbind <= v.0.4.7 Sql Injection Vulnerability

Exploit for php platform in category web applications ============================================= smbind query"SELECT ID FROM users WHERE username = '" . $SESSION'username' ."' AND password = '" . md5$SESSION'password' . " ' "; Easy admin login Enter in username field: admin'; Enter in password...