68 matches found
Dell E-Lab Navigator Security Bypass Vulnerability
Dell E-Lab Navigator is an online query tool from Dell USA. A security bypass vulnerability exists in Dell E-Lab Navigator versions 3.1.9 and 3.2.0, which can be exploited by an attacker to manipulate the appearance of an e-mail message, potentially spoofing recipients and posing reputational and...
DEBIAN-CVE-2023-26552
mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when adding a decimal point. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...
UBUNTU-CVE-2023-26552
mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when adding a decimal point. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...
UBUNTU-CVE-2023-26554
mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when adding a '\0' character. An adversary may be able to attack a client ntpq process, but cannot attack ntpd...
Cloudera Hue 跨站脚本漏洞
Cloudera Hue is a mature open source SQL helper for querying any database and data warehouse.A cross-site scripting vulnerability exists in Cloudera Hue version 4.6.0. An attacker can exploit the vulnerability to conduct cross-site scripting attacks via the type parameter...
USN-4787-1 jq vulnerability
It was discovered that jq did not perform sufficient bounds checking, resulting in unbounded resource consumption. An attacker could use this vulnerability to cause a denial of service...
Why You Should Join Carbon Black at QueryCon 2019
Carbon Black Joining Trail of Bits to Support QueryCon 2019 We are excited to announce that Carbon Black will be joining with Trail of Bits and Kolide to sponsor QueryCon 2019. QueryCon is a conference dedicated to Osquery, an open source tool that allows users to query their devices like a...
Hashboy-Tool - A Hash Query Tool
Hashboy was redeveloped onhash-buster Author:Leiothrix How to install $git clone https://github.com/sf197/hashboy-tool $cd hashboy-tool $python3 hashboy.py How to use $ python3 hashboy.py / / / / / / / / / / / / / / / / / / / / // / / / // / // / // / // //,/// //.//, / // Author:Leiothrix...
Debian: Security Advisory (DSA-265)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Network Query Tool XSS
The remote host is using Network Query Tool. There is a bug in this software that makes it vulnerable to cross site scripting attacks. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2001-1495
networkquery.php in Network Query Tool 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the target parameter...
CVE-2001-1495
Technical details about CVE-2001-1495 are not publicly available in the provided documents; no explicit affected products, versions, or remediation are listed beyond the basic description. Monitor for updates.
CVE-2004-1963
nqt.php in Network Query Tool NQT 1.6 allows remote attackers to obtain sensitive information via a string in the portNum parameter, which reveals the full path in an error message...
CVE-2004-1964
The CVE-2004-1964 entry describes a Cross-site Scripting (XSS) vulnerability in Network Query Tool (NQT) 1.6, specifically in nqt.php where the portNum parameter can be abused to inject arbitrary web script or HTML. Affected component: Network Query Tool (NQT) 1.6; vulnerability type: XSS; root c...
CVE-2004-1963
CVE-2004-1963 discusses a vulnerability in Network Query Tool (NQT) 1.6 where the nqt.php handling of the portNum parameter leads to an error message that reveals the full filesystem path, potentially exposing sensitive information to remote attackers. The affected software is NQT; the vulnerable...
Network Query Tool Detection
Binary data 2743.prm...
[waraxe-2004-SA#024 - XSS and full path disclosure in Network Query Tool 1.6]
================================================================================ waraxe-2004-SA024 ================================================================================ XSS and full path disclosure in Network Query Tool 1.6...
CVE-2004-1964
Cross-site scripting XSS vulnerability in nqt.php in Network Query Tool NQT 1.6 allows remote attackers to inject arbitrary web script or HTML via the portNum parameter...
CVE-2003-0153
bonsai Mozilla CVS query tool leaks the absolute pathname of the tool in certain error messages generated by 1 cvslog.cgi, 2 cvsview2.cgi, or 3 multidiff.cgi...
CVE-2003-0154
Cross-site scripting vulnerabilities XSS in bonsai Mozilla CVS query tool allow remote attackers to execute arbitrary web script via 1 the file, root, or rev parameters to cvslog.cgi, 2 the file or root parameters to cvsblame.cgi, 3 various parameters to cvsquery.cgi, 4 the person parameter to...