Trove: potential leak of passwords into log files

The strutils.maskpassword function in the OpenStack Oslo utility library, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 does not properly mask passwords when logging commands, which allows local users to obtain passwords by reading the log...

MyioSoft Ajax Portal 3.0 - page SQL Injection

MyioSoft Ajax Portal 3.0 - page SQL Injection AjaxPortal 3.0 ajaxpbackend.php page Remote SQL Injection Vulnerability Bug found && Exploited by cOndemned Greetz: ZaBeaTy, d2, Beowulf, str0ke, Alfons Luja, 0in and others Proof of Concept :...

MyioSoft Ajax Portal 3.0 SQL Injection

AjaxPortal 3.0 ajaxpbackend.php page Remote SQL Injection Vulnerability Bug found && Exploited by cOndemned Greetz: ZaBeaTy, d2, Beowulf, str0ke, Alfons Luja, 0in and others Proof of Concept :...

PHP Ticket <= 0.71 (search.php) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Copyright C undefined1 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or at your option any...

Samba 1.9.19 - 'Password' Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/1816/info Samba is an open source software suite that provides seamless file and print services to SMB/CIFS clients. Certain older versions of Samba had a remotely exploitable buffer overflow vulnerability. This vulnerability was in the password functi...