6 matches found
CVE-2026-36719
An information disclosure vulnerability in the /api/v1/user/info endpoint of AgentChat v2.3.0 allows unauthenticated attackers to obtain sensitive information, including SHA256 password hashes, via enumerating user IDs...
mysql: sha256_password authentication DoS via long password
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server : Security : Privileges. Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to...
mysql: sha256_password authentication DoS via hash with large rounds value
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server : Security : Privileges. Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...
mysql: sha256_password authentication DoS via hash with large rounds value
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server : Security : Privileges. Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...
ASPNukeSQL080.txt
!/usr/bin/perl -w SQL Injection Exploit for ASPNuke = 0.80 This exploit retrieve the username of the administrator of the board and his password crypted in SHA256 Related advisory: http://www.securityfocus.com/archive/1/403479/30/0/threaded Discovered and Coded by Alberto Trivero use LWP::Simple;...
ASPNuke 0.80 - 'comment_post.asp' SQL Injection
!/usr/bin/perl -w SQL Injection Exploit for ASPNuke = 0.80 This exploit retrieve the username of the administrator of the board and his password crypted in SHA256 Related advisory: http://www.securityfocus.com/archive/1/403479/30/0/threaded Discovered and Coded by Alberto Trivero use LWP::Simple;...