6026 matches found
NIT-Warangal Dispensary Management System India 1.0 Database Disclosure
Exploit Title : NIT-Warangal Dispensary Management System India 1.0 Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 15/04/2019 Vendor Homepage : nitw.ac.in Software Download Link : github.com/NIT-Warangal/DispensaryMS/archive/master.zip Sofwa...
phpMyAdmin: Multiple vulnerabilities
Background phpMyAdmin is a web-based management tool for MySQL databases. Description Multiple vulnerabilities have been discovered in phpMyAdmin. Please review the CVE identifiers referenced below for details. Impact Please review the CVE identifiers referenced below for details. Workaround Ther...
OrangeScrum Project Management Software 1.6.1 Database Disclosure
Exploit Title : OrangeScrum Project Management Software 1.6.1 Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 12/04/2019 Vendor Homepage : orangescrum.com Software Download Link : orangescrum.org/free-download...
JobSkee Open Source JobBoard 1.1.3 Database Disclosure
Exploit Title : JobSkee Open Source JobBoard 1.1.3 Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 12/04/2019 Vendor Homepage : jobskee.com Software Download Link : jobskee.com/download.php Software Information Link :...
Themosis Framework BookStore 1.3.0 Database Disclosure
Exploit Title : Themosis Framework BookStore 1.3.0 Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 10/04/2019 Vendor Homepage : framework.themosis.com Software Download Link : github.com/themosis/bookstore/archive/master.zip Software...
NekoCMS 2.5 Database Disclosure
Exploit Title : NekoCMS 2.5 Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 10/04/2019 Vendor Homepage : osdn.net nekocms.osdn.jp Software Download Link : github.com/novhex/NekoCMS-v2.5/archive/master.zip Software Information Link :...
YiiCMS JetBrains PHPStorm 6.0.3 Database Disclosure
Exploit Title : YiiCMS JetBrains PHPStorm 6.0.3 Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 10/04/2019 Vendor Homepage : jetbrains.com - yiiframework.com Software Download Link : github.com/johannesMatevosyan/yii-cms/archive/master.zip...
WordPress portable-phpMyAdmin Plugin Authentication Bypass (CVE-2012-5469)
An authentication bypass vulnerability exists in WordPress portable-phpMyAdmin Plugin. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...
openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2019:0194-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Coders Survey 3.4.10 Database Disclosure
Exploit Title : Coders Survey 3.4.10 Database Disclosure Exploit Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 02/04/2019 Vendor Homepage : coders-survey.com Software Download Link : github.com/fortrabbit/coders-survey/archive/master.zip Software Information...
Shinobi Security Software 1.0 Database Disclosure
Exploit Title : Shinobi Security Software 1.0 Database Disclosure Exploit Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 02/04/2019 Vendor Homepage : shinobi.video Software Download Link : github.com/moeiscool/Shinobi/archive/master.zip Software Information Lin...
WordPress Ultimate Form Builder 1.0 Database Disclosure
Exploit Title : WordPress Ultimate Form Builder Plugins 1.0 Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 28/03/2019 Vendor Homepage : access-keys.com Software Information Link : codecanyon.net/item/ultimate-form-builder/14644208...
openSUSE Security Update : phpMyAdmin (openSUSE-2019-1009)
This update for phpMyAdmin fixes security issues and bugs. Security issues addressed in the 4.8.4 release bsc1119245 : - CVE-2018-19968: Local file inclusion through transformation feature - CVE-2018-19969: XSRF/CSRF vulnerability - CVE-2018-19970: XSS vulnerability in navigation tree This update...
openSUSE Security Update : phpMyAdmin (openSUSE-2019-490)
This update for phpMyAdmin fixes multiple issues. Security issues fixed : - CVE-2018-12613: File inclusion and remote code execution attack boo1098751 - CVE-2018-12581: XSS in Designer feature boo1098752 This update to version 4.8.2 also contains number of upstream bug fixes and improvements...
WordPress WP-Forum 1.7.8 Database Disclosure
Exploit Title : WordPress 2.0.2 WP-Forum Plugins 1.7.8 Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 27/03/2019 Vendor Homepage : wordpress.org Software Information Link :...
phpMyAdmin 4.x < 4.8.5 Multiple Vulnerabilities (PMASA-2019-1) (PMASA-2019-2)
According to its self-reported version number, the phpMyAdmin application hosted on the remote web server is 4.x prior to 4.8.5. It is, therefore, affected by at least one of the following vulnerabilities: - A SQL injection SQLi vulnerability exists in phpMyAdmin due to improper validation of...
openSUSE Security Update : phpMyAdmin (openSUSE-2019-643)
This update for phpMyAdmin to version 4.8.3 addresses multiple issues. Security issues fixed : - CVE-2018-15605: vulnerability in the file import feature allowed cross-site scripting via importing a specially crafted file PMASA-2018-5, boo1105726 This update also contains a number of upstream bug...
OPENSUSE-SU-2019:0194-1 Security update for phpMyAdmin
This update for phpMyAdmin to version 4.8.5 fixes the following issues: Security issues fixed: - CVE-2019-6799: Fixed an arbitrary file read vulnerability boo1123272 - CVE-2019-6798: Fixed a SQL injection in the designer interface boo1123271 Other changes: Fix rxport to SQL format not available F...
Xoops 1.0.2 PD-Links 1.0 Database Disclosure
Exploit Title : Xoops 1.0.2 PD-Links Modules 1.0 Krobi Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 03/03/2019 Vendor Homepage : xoops.org power-dreams.com Software Download Link : xoops.org/modules/repository/visit.php?cid=40&lid=1491...
Debian DLA-1692-1 : phpmyadmin security update
An information leak issue was discovered in phpMyAdmin. An attacker can read any file on the server that the web server's user can access. This is related to the mysql.allowlocalinfile PHP configuration. When the AllowArbitraryServer configuration setting is set to false default, the attacker nee...