EUVD-2007-0525

Malware in sbrugna...

CVE-2024-34914

The CVE-2024-34914 issue affects php-censor, specifically version 2.1.4 (fixed in 2.1.5). The underlying problem is a weak hashing algorithm used to generate the remember_key, enabling brute-force attempts to access accounts that have the Remember Me option enabled. Public sources (Red Hat, Verac...

PHP Censor 安全漏洞

PHP Censor is an open source, self-hosted, continuous integration server for PHP projects from PHP Censor Open Source. A security vulnerability exists in PHP Censor version v2.1.4, which stems from the use of a weak hash algorithm that allows an attacker to brute-force the Rememberkey value to ga...

Sql injection

SQL injection vulnerability in the isremembered function in class.login.php in Website Baker 2.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the REMEMBERKEY cookie parameter. NOTE: some of these details are obtained from third party information...

CVE-2007-0527

SQL injection vulnerability in the isremembered function in class.login.php in Website Baker 2.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the REMEMBERKEY cookie parameter. NOTE: some of these details are obtained from third party information...

Website Baker REMEMBER_KEY Cookie SQL Injection

The remote host is running Website Baker, a PHP-based content management system. The installed version of Website Baker fails to validate input to the 'REMEMBERKEY' cookie before using it in 'framework/class.login.php' to construct SQL queries. Provided PHP's 'magicquotesgpc' setting is disabled,...