5314 matches found
CVE-2008-4593
Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is disabled, allows physically proximate attackers to obtain sensitive information by performing an Emergency Call tap and then reading SMS messages on the device screen, aka Apple bug number 6267416...
Kure 0.6.3 - 'index.php' Local File Inclusion
Kure 0.6.3 index.php post,doc Local File Inclusion Vulnerability url: http://code.google.com/p/kure/downloads/list Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise MRG 1.0. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
kernel: fix off-by-one error in iov_iter_advance()
Off-by-one error in the ioviteradvance function in mm/filemap.c in the Linux kernel before 2.6.27-rc2 allows local users to cause a denial of service system crash via a certain sequence of file I/O operations with readv and writev, as demonstrated by testcases/kernel/fs/ftest/ftest03 from the Lin...
phpabook-lfi.txt
phpAbook ... 61: if isset$HTTPCOOKIEVARS"userInfo" && $HTTPCOOKIEVARS"userInfo" != "" $userArray = explode" ", $HTTPCOOKIEVARS"userInfo"; $userName = $userArray0; $userID = $userArray1; $userLang = $userArray2; include"include/lang/$userLang/inc.messages.php"; 67: x: INCLUDE exploit:...
phpAbook <= 0.8.8b (COOKIE) Local File Inclusion Vulnerability
No description provided by source. phpAbook = 0.8.8b COOKIE Local File Inclusion Vulnerability url: http://sourceforge.net/projects/phpabook/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. U...
FOSS Gallery Public <= 1.0 Arbitrary Upload / Information c99 Expoit
No description provided by source. FOSS Gallery Public = 1.0 Arbitrary Upload / Information c99 Expoit url: http://downloads.sourceforge.net/fossgallery/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educationa...
libpng off-by-one vulnerability
Overview A vulnerability exists in libpng that may allow a remote attacker to cause a denial of service. Description A vulnerability in the way libpng handles files that contain multiple zTXt chunks may cause a denial of service. This vulnerability is due to an off-by-one error introduced in the...
bmforum-sql.txt
Author: !DoktOR! Date found: 30.09.08 Product: BMForum Version: 5.6 URL: www.bmforum.com Vulnerability Class: SQL Injection Condition: magicquotesgpc = Off Exploit:...
BMForum 5.6 - tagname SQL Injection
BMForum 5.6 - tagname SQL Injection Author: !DoktOR! Date found: 30.09.08 Product: BMForum Version: 5.6 URL: www.bmforum.com Vulnerability Class: SQL Injection Condition: magicquotesgpc = Off Exploit:...
BMForum 5.6 (tagname) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ======================================================== BMForum 5.6 tagname Remote SQL Injection Vulnerability ======================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-...
nonamecms-sql.txt
Author: !DoktOR! Date found: 30.09.08 Product: NonameCMS Version: 1.0 URL: noname-cms.org Vulnerability Class: SQL Injection Condition: magicquotesgpc = Off Exploit 1:...
Noname CMS 1.0 - Multiple SQL Injections
Noname CMS 1.0 - Multiple SQL Injections Author: !DoktOR! Date found: 30.09.08 Product: NonameCMS Version: 1.0 URL: noname-cms.org Vulnerability Class: SQL Injection Condition: magicquotesgpc = Off Exploit 1:...
USN-648-1: nasm vulnerability
Philipp Thomas discovered that the ppscan function of nasm contained an off-by-one error. If a user or automated system were tricked into assembling a specially crafted ASM file, a remote attacker could execute arbitrary commands with user privileges...
joovili30-sql.txt
Joovili = 3.0 SQL Injection Vulnerability Author: !DoktOR! Date found: 27.08.08 Product: Joovili Version: 3.0 Price: $155 URL: www.joovili.com Download script: http://rapidshare.com/files/96178834/Joovili.Patch.3.0.12.Themes.WST.rar.html Vulnerability Class: SQL Injection Condition: magicquotesgp...
Joovili <= 3.0 Multiple SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications ===================================================== Joovili Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 Joovili = 3.0 SQL...
Joovili 3.0 - Multiple SQL Injections
Joovili 3.0 - Multiple SQL Injections Joovili = 3.0 SQL Injection Vulnerability Author: !DoktOR! Date found: 27.08.08 Product: Joovili Version: 3.0 Price: $155 URL: www.joovili.com Download script: http://rapidshare.com/files/96178834/Joovili.Patch.3.0.12.Themes.WST.rar.html Vulnerability Class:...
PromoteWeb MySQL - 'id' SQL Injection
=================================================================== PromoteWeb MySQL go.php id Remote SQL Injection Vulnerability =================================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...
Gentoo Security Advisory GLSA 200710-28 (qt)
The remote host is missing updates announced in advisory GLSA 200710-28. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200710-28 (qt)
The remote host is missing updates announced in advisory GLSA 200710-28. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...