811 matches found
ExtCalendar 2.0b2 SQL Injection
Vulnerability ID: HTB22986 Reference: http://www.htbridge.ch/advisory/sqlinjectioninextcalendar2.html Product: ExtCalendar 2 Vendor: http://sourceforge.net/projects/extcal/ Vulnerable Version: 2.0b2 Vendor Notification: 05 May 2011 Vulnerability Type: SQL Injection Risk level: Medium Credit:...
ExtCalendar 2.0b2 (cal_search.php) SQL Injection Vulnerability
Exploit for php platform in category web applications Product: ExtCalendar 2 Vendor: http://sourceforge.net/projects/extcal/ Vulnerable Version: 2.0b2 Vendor Notification: 05 May 2011 Vulnerability Type: SQL Injection Risk level: Medium Credit: High-Tech Bridge SA Security Research Lab...
Calendarix 0.8.20080808 Cross Site Scripting / SQL Injection
============================= Vulnerability ID: HTB22974 Reference: http://www.htbridge.ch/advisory/multiplexssincalendarix.html Product: Calendarix Vendor: http://www.calendarix.com http://www.calendarix.com Vulnerable Version: 0.8.20080808 Vendor Notification: 26 April 2011 Vulnerability Type:...
WebsiteBaker 2.8.1 Path Disclosure / SQL Injection
=================================== Vulnerability ID: HTB22929 Reference: http://www.htbridge.ch/advisory/multiplepathdisclosureinwebsitebaker.html Product: WebsiteBaker Vendor: Website Baker Org http://www.websitebaker2.org/ Vulnerable Version: 2.8.1 Vendor Notification: 29 March 2011...
Gentoo Security Advisory GLSA 201101-07 (Prewikka)
The remote host is missing updates announced in advisory GLSA 201101-07. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Gentoo Security Advisory GLSA 201101-07 (Prewikka)
The remote host is missing updates announced in advisory GLSA 201101-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
GRAND Flash Album Gallery 0.55 SQL Injection / File Disclosure
=============================== Vulnerability ID: HTB22871 Reference: http://www.htbridge.ch/advisory/filecontentdisclosureingrandflashalbumgallerywordpressplugin.html Product: GRAND Flash Album Gallery wordpress plugin Vendor: Sergey Pasyuk http://codeasily.com/ Vulnerable Version: 0.55 Vendor...
HTB22859: SQL Injection in WP Forum wordpress plugin
Vulnerability ID: HTB22859 Reference: http://www.htbridge.ch/advisory/sqlinjectioninwpforumwordpressplugin1.html Product: WP Forum wordpress plugin Vendor: Fredrik Fahlstad http://www.fahlstad.se/ Vulnerable Version: 1.7.8 Vendor Notification: 15 February 2011 Vulnerability Type: SQL Injection Ri...
WordPress Plugin Comment Rating 2.9.23 - Multiple Vulnerabilities
WordPress Plugin Comment Rating 2.9.23 - Multiple Vulnerabilities Source: http://packetstormsecurity.org/files/view/98660/commentrating-sqldisclose.txt ================================= Vulnerability ID: HTB22842 Reference:...
HTB22839: SQL Injection in Z-Vote wordpress plugin
Vulnerability ID: HTB22839 Reference: http://www.htbridge.ch/advisory/sqlinjectioninzvotewordpressplugin.html Product: Z-Vote wordpress plugin Vendor: 140hours http://wordpress.org/extend/plugins/z-vote/ Vulnerable Version: 1.1 Vendor Notification: 08 February 2011 Vulnerability Type: SQL Injecti...
RedaxScript 0.3.2 - Multiple Vulnerabilities
RedaxScript 0.3.2 - Multiple Vulnerabilities ================================== Vulnerability ID: HTB22805 Reference: http://www.htbridge.ch/advisory/pathdisclosureinredaxscript.html Product: Redaxscript Vendor: http://redaxscript.com/ http://redaxscript.com/ Vulnerable Version: 0.3.2 Vendor...
Redaxscript 0.3.2 Path Disclosure / SQL Injection
================================== Vulnerability ID: HTB22805 Reference: http://www.htbridge.ch/advisory/pathdisclosureinredaxscript.html Product: Redaxscript Vendor: http://redaxscript.com/ http://redaxscript.com/ Vulnerable Version: 0.3.2 Vendor Notification: 18 January 2011 Vulnerability Type:...
SQL Injection in Pixie
Vulnerability ID: HTB22786 Reference: http://www.htbridge.ch/advisory/sqlinjectioninpixie1.html Product: Pixie Vendor: Lucid Crew http://www.getpixie.co.uk/ Vulnerable Version: 1.04 Vendor Notification: 06 January 2011 Vulnerability Type: SQL Injection Status: Awaiting Vendor Response Risk level:...
GLSA-201101-07 : Prewikka: password disclosure
The remote host is affected by the vulnerability described in GLSA-201101-07 Prewikka: password disclosure The permissions of the prewikka.conf file are set world readable. Impact : A local attacker could obtain the SQL database password used by Prewikka. Workaround : There is no known workaround...
LightNEasy 3.2.2 Multiple Vulnerabilities
Exploit for php platform in category web applications Product: LightNEasy Vendor: Fernando Baptista http://www.lightneasy.org/ Vulnerable Version: 3.2.2 Vendor Notification: 15 December 2010 Vulnerability Type: SQL Injection Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level:...
Injader CMS Multiple Vulnerabilities
Exploit for php platform in category web applications Vulnerability ID: HTB22745 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininjadercms1.html Product: Injader CMS Vendor: http://www.injader.com/ http://www.injader.com/ Vulnerable Version: 2.4.4 Vendor Notification: 07 December 20...
Hycus CMS - Multiple Vulnerabilities
Hycus CMS - Multiple Vulnerabilities Vulnerability ID: HTB22737 Reference: http://www.htbridge.ch/advisory/lfiinhycuscms.html Product: Hycus CMS Vendor: Hycus Web Development Team http://www.hycus.com/ Vulnerable Version: 1.0.3 Vendor Notification: 07 December 2010 Vulnerability Type: LFI Status:...
Etomite 1.1 Multiple Vulnerabilities
Exploit for php platform in category web applications ==================================== Etomite 1.1 Multiple Vulnerabilities ==================================== Product: Etomite Vendor: http://www.etomite.org/ http://www.etomite.org/ Vulnerable Version: 1.1 Vendor Notification: 18 November 20...
Fedora Update for mysql FEDORA-2010-15147
Check for the Version of mysql OpenVAS Vulnerability Test Fedora Update for mysql FEDORA-2010-15147 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
DynPG 4.2.0 - Multiple Vulnerabilities
Vulnerability ID: HTB22703 Reference: http://www.htbridge.ch/advisory/lfiindynpg.html Product: DynPG Vendor: dynpg.org http://www.dynpg.org/ Vulnerable Version: 4.2.0 Vendor Notification: 16 November 2010 Vulnerability Type: Local File Inclusion Status: Fixed by Vendor Risk level: Medium Credit:...