307 matches found
H2 Database Console Remote Code Execution
Document Title =============== Unauthenticated RCE vuln in the H2 Database console: CVE-2022-23221. Product Description =============== The H2 Console Application The Console lets you access a SQL database using a browser interface. Homepage: http://www.h2database.com/html/quickstart.html Affecte...
Exploit for Out-of-bounds Write in Adobe Acrobat
CVE-2021-21017 Not another Adobe Reader Byte Order Mark bu...
CVE-2011-0082
The X.509 certificate validation functionality in Mozilla Firefox 4.0.x through 4.0.1 does not properly implement single-session security exceptions, which might make it easier for user-assisted remote attackers to spoof an SSL server via an untrusted certificate that triggers potentially unwante...
Solaris 7 8 9 sadmind RPC Command Execution
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
ASPX a word of the script the horse detailed analysis-vulnerability warning-the black bar safety net
Source: evil octal First recall before the ASP Word of the classic Trojan! %if request"nonamed""" then execute request"nonamed"% VBS execute is dynamic running the specified code and JSCRIPT also have the eval function can be achieved,that is ASP word the Trojan also has a version is the use of...
CVE-2004-0713
The remove method in a stateful Enterprise JavaBean EJB in BEA WebLogic Server and WebLogic Express version 8.1 through SP2, 7.0 through SP4, and 6.1 through SP6, does not properly check EJB permissions before unexporting a bean, which allows remote authenticated users to remove EJB objects from...
IBM cloudscape SQL Database (DB2J) vulnerable to remote command injection
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Illegalaccess.org security advisory ii/02-2004 www.illegalaccess.org IBM cloudscape SQL Database DB2J vulnerable to remote command injection Brief ===== Product : IBM cloudscape database Version : 5.1 Vendor : IBM Impact : Code injection, DoS,...