EUVD-2009-3026

Malware in sbrugna...

Fedora Update for ocsinventory FEDORA-2011-15007

Check for the Version of ocsinventory OpenVAS Vulnerability Test Fedora Update for ocsinventory FEDORA-2011-15007 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

OCS Inventory NG 2.0.1 Persistent XSS (CVE-2011-4024)

OCS Inventory NG 2.0.1 Persistent XSS CVE-2011-4024 ------------------------------------------------------- Software : Open Computer and Software OCS Inventory NG Download : http://www.ocsinventory-ng.org/ Discovered by : Nicolas DEROUET nicolas.derouetgmailcom Discover : 2011-10-04...

OCS Inventory NG 2.0.1 Cross Site Scripting

OCS Inventory NG 2.0.1 Persistent XSS CVE-2011-4024 ------------------------------------------------------- Software : Open Computer and Software OCS Inventory NG Download : http://www.ocsinventory-ng.org/ Discovered by : Nicolas DEROUET nicolas.derouetgmailcom Discover : 2011-10-04 Published :...

OCS Inventory NG 2.0.1 - Persistent Cross-Site Scripting

OCS Inventory NG 2.0.1 - Persistent XSS CVE-2011-4024 ------------------------------------------------------- Software : Open Computer and Software OCS Inventory NG Download : http://www.ocsinventory-ng.org/ Discovered by : Nicolas DEROUET nicolas.derouetgmailcom Discover : 2011-10-04 Published :...

Fedora Update for ocsinventory-agent FEDORA-2010-16335

Check for the Version of ocsinventory-agent OpenVAS Vulnerability Test Fedora Update for ocsinventory-agent FEDORA-2010-16335 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

OCS Inventory NG Server <= 1.3b3 (login) Remote Authentication Bypass

OCS Inventory NG Server = 1.3b3 login Remote Authentication Bypass Software : Open Computer and Software OCS Inventory NG Download : http://www.ocsinventory-ng.org/ Discovered by : Nicolas DEROUET nicolas.derouetgmailcom Version : 1.03-beta3 and prior Impact : Critical Remote : Yes No...

OCS Inventory NG Server 1.3b3 Remote Authentication Bypass

OCS Inventory NG Server passwd != md5 $POST"pass" and 111 $row-passwd != $POST"pass" == Exploit == function inject document.getElementById'log'.action = document.getElementById'ocsreports'.value + 'index.php'; sql = "0' UNION SELECT id, accesslv...

CVE-2009-3042

SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...

CVE-2009-3042

CVE-2009-3042 describes a SQL injection in machine.php of Open Computer and Software (OCS) Inventory NG 1.02.1 via the systemid parameter, a vector different from CVE-2009-3040. Connected sources confirm OCS Inventory NG is affected by SQL injection vulnerabilities; no patch/version remediation d...

CVE-2009-1769

The web interface in Open Computer and Software Inventory Next Generation OCS Inventory NG 1.01 generates different error messages depending on whether a username is valid, which allows remote attackers to enumerate valid usernames...