EUVD-2005-4259

Malware in sbrugna...

Fedora 41 : php-bartlett-PHP-CompatInfo (2024-16a71b7cf5)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-16a71b7cf5 advisory. bartlett/php-compatinfo-db 6.12.0 - 2024-10-29 Added - db:show command is now able to display deprecations on all components - PHP 8.2.25 support - PHP 8.3.1...

Fedora 37 : weechat (2022-88252e4f80)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-88252e4f80 advisory. - add command /item to create custom bar items - add bar item spacer - add case conversion in evaluation of expressions with lower:string and upper:string -...

OPENSUSE-SU-2024:0276-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: - cacti 1.2.27: CVE-2024-34340: Authentication Bypass when using using older password hashes boo1224240 CVE-2024-25641: RCE vulnerability when importing packages boo1224229 CVE-2024-31459: RCE vulnerability when plugins include files...

OPENSUSE-SU-2024:0031-1 Security update for cacti, cacti-spine

This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.26: Fix: Errors when uptime OID is not present Fix: MySQL reconnect option is depreciated Fix: Spine does not check a host with no poller items Fix: Poller may report the wrong number of devices polled Feature: Allow...

Security update for nextcloud (important)

openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2021:1275-1 Rating: important References: 1190291 Cross-References: CVE-2021-32766 CVE-2021-32800 CVE-2021-32801 CVE-2021-32802 CVSS scores: CVE-2021-32800 NVD : 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N...

Security update for nextcloud (important)

openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2021:1255-1 Rating: important References: 1190291 Cross-References: CVE-2021-32766 CVE-2021-32800 CVE-2021-32801 CVE-2021-32802 CVSS scores: CVE-2021-32800 NVD : 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N...

lighttpd < 1.4.28 Insecure Temporary File Creation

According to its banner, the version of lighttpd running on the remote host is prior to 1.4.28. Therefore, it may be, affected by the following vulnerability : - The configuration file for the FastCGI PHP support for lighttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a...

PHP Support Tickets 1.3 Local File Inclusion Vulnerability

Exploit for php platform in category web applications PHP Support Tickets 1.3 Local File Inclusion Vulnerability Description ============ PHP Support Tickets; will allow a webmaster the ability to offer its user base a means to contact its personell through request vouchers...

PHP Support Tickets 1.3 Local File Inclusion

PHPSTicketsv1.3 File Inclusion Vulnerability ================================================ Discovered by NA, NAattutanota.com ======================================= Description ============ PHP Support Tickets; will allow a webmaster the ability to offer its user base a means to contact its...

PHP Support Tickets 1.3 SQL Injection

PHPSTicketsv1.3 SQL Injection Vulnerabilty ================================================ Discovered by NA, NAattutanota.com ======================================= Description ============ PHP Support Tickets; will allow a webmaster the ability to offer its user base a means to contact its...

ProFTPD mod_copy command execution

Added: 05/29/2015 CVE: CVE-2015-3306 BID: 74238 OSVDB: 120834 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem The modcopy extension, if enabled in ProFTPD, allows unauthenticated attackers to read and write arbitrary files using the SITE CPFR and SITE CPTO...

PHP Support Tickets 2.2 - Remote File Upload Vulnerability

No description provided by source. remote file upload script: PHPSupportTicketsv2.2 download from:http://www.phpsupporttickets.com/modules/phpsupporttickets.com/dist/free/PHPSupportTicketsv2.2.zip 1:www.site.com/path/index.php?page=register 2:New Ticket 3:upload php file shell...

Fedora 18 : php-pecl-radius-1.2.7-1.fc18 (2013-11998)

Version 1.2.7 - Fix a security issue in radiusgetvendorattr by enforcing checks of the VSA length field against the buffer size. Adam Version 1.2.6 - Support added for PHP 5.4 and 5.5. Johannes - Fixed bug 60885 Radius module causing Apache segmentation fault. Adam - Fixed a crash when calling...

CVE-2013-1427

The configuration file for the FastCGI PHP support for lighttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in /tmp, which allows local users to hijack the PHP control socket and perform unauthorized actions such as forcing the use of a different version of PHP...

PHP Support Tickets 1.9 Cross Site Scripting

Google dork: "PHP Support Tickets v1.9" inurl:index.php?action= "PHP Support Tickets v1.9" by "Triangle Solutions Ltd" allows XSS attack at index.php and some implementations also has a bad uploaded files validation allowing to upload a js with a jpg extension that could be using for bypassing XS...

T-dah Webmail 3.2.0 Cross Site Scripting

!/usr/bin/python ''' Exploit Title: T-dah Webmail Multiple Stored XSS issues. Date: 17/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://tdah.us/ Software Link:...

PHP Support Tickets Detection

This host is running PHP Support Tickets, a PHP5 / MySQL helpdesk system. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PHP Support Tickets Detection

This host is running PHP Support Tickets, a a PHP5 / MySQL helpdesk system. OpenVAS Vulnerability Test $Id: gbphpsupportticketsdetect.nasl 5840 2017-04-03 12:02:24Z cfi $ PHP Support Tickets Detection Authors: Michael Meyer Copyright: Copyright c 2011 Greenbone Networks GmbH This program is free...

PHP Support Tickets v2. 2 code implementation of defect and repair-vulnerability warning-the black bar safety net

Title: PHP Support Tickets v2. 2 Code Exec Author: brainpillow Developer website: www.phpsupporttickets.com Affected version: 2.2 Defect code analysis: /classes/GUI/abstract.GUI.php www.badguest.cn public function getPageName return eval'return PHPSTPAGENAME' . strtoupper$this-page . ';';...