Design/Logic Flaw

Google Chrome before 4.1.249.1036 does not have the expected behavior for attempts to delete Web SQL Databases and clear the Strict Transport Security STS state, which has unspecified impact and attack vectors...

CVE-2010-1230

Removed by vendor...

CentOS 5 : mysql (CESA-2010:0109)

Updated mysql packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL serve...

Debian DSA-1900-1 : postgresql-7.4, postgresql-8.1, postgresql-8.3, postgresql-8.4 - several vulnerabilities

Several vulnerabilities have been discovered in PostgreSQL, a SQL database system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-3229 Authenticated users can shut down the backend server by re-LOAD-ing libraries in $libdir/plugins, if any librarie...

CentOS 4 : mysql (CESA-2010:0110)

Updated mysql packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server...

Symantec Altiris Notification Server 6.x Static Encryption Key

SUMMARY Symantecs Altiris Notification Server 6.0.x web console stores a static encryption key for encrypted credentials entered by the administrator. These credentials include ones used to enumerate the computers within a windows domain during discovery sessions allowing dissemination of Altiris...

Speed up,Butler BA SQL Server account Set Password of the PJ method-vulnerability warning-the black bar safety net

Generally refers to the use of SQL Server password authentication mode, the sa or admin user password forget. First, open the Registry Editor,“run”, enter regedit findHKEYLOCALMACHINE\\SOFTWARE\\MICROSOFT\\MSSQLSERVER\\MSSQLSERVER, This item which has a key value LoginMode, now the value is 1,...

DSA-1900-1 postgresql-7.4 postgresql-8.1 postgresql-8.3 - various problems

Bulletin has no description...

Moderate: Red Hat Security Advisory: mysql security and bug fix update

Updated mysql packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. It consists of...

YourTube 2.0 - Arbitrary Database Disclosure

YourTube 2.0 - Arbitrary Database Disclosure exploit : YourTube info : http://www.ac4p.com //= DORK: "powered by yourtube" //= found by: Security Code Team - thanks for sniper code and Qabandi -- //= our home: WwW.Sec-Code.com //= greats 4 our members in our home -- /// // - Upload this file to...

4images 1.7.7 Bypass / Cross Site Scripting

|| || | || o,7 || . o7 || q||| o\, : / / . =By: Qabandi =Email: iqaahotmail.fr From Kuwait, PEACE... =Vuln: 4images = 1.7.7 - filter bypass HTML injection/XSS =INFO: =BUY: =DORK: -=/:Conditions:=- --------------------------------------------------------------------------------- ; Magic quotes...

Fedora Core 10 FEDORA-2009-3761 (prewikka)

The remote host is missing an update to prewikka announced via advisory FEDORA-2009-3761. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

Fedora Core 10 FEDORA-2009-3761 (prewikka)

The remote host is missing an update to prewikka announced via advisory FEDORA-2009-3761. OpenVAS Vulnerability Test $Id: fcore20093761.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3761 prewikka Authors: Thomas Reinke Copyright: Copyright c 2009...

Fedora Core 9 FEDORA-2009-3789 (prewikka)

The remote host is missing an update to prewikka announced via advisory FEDORA-2009-3789. OpenVAS Vulnerability Test $Id: fcore20093789.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3789 prewikka Authors: Thomas Reinke Copyright: Copyright c 2009...

Fedora Core 9 FEDORA-2009-3789 (prewikka)

The remote host is missing an update to prewikka announced via advisory FEDORA-2009-3789. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

Fedora 9 : prewikka-0.9.14-2.fc9 (2009-3789)

The permissions on the prewikka.conf file are world readable and contain the sql database password used by prewikka. This update makes it readable just by the apache group. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

trim()vulnerability crack and protection+articles the whole story-vulnerability warning-the black bar safety net

With the following code: % dim name,title name=trimrequest. form"name" password=trimrequest. form"password" if name=""or password="" then response. redirect "error. asp? error=name&name=null" myDSN="DSN=test;uid=test;pwd=test" set cn=server. createobject"adodb. connection" cn. open myDSN...

EZ-Blog beta1 - Delete All Posts SQL Injection

EZ-Blog beta1 - Delete All Posts SQL Injection Salvatore "drosophila" Fresta Application: EZ-Blog http://sourceforge.net/projects/ez-blog/ Version: Beta 1 Bug: Multiple SQL Injection Exploitation: Remote Date: 1 Mar 2009 Discovered by: Salvatore "drosophila" Fresta Author: Salvatore "drosophila"...

Wordl Recipe 2.11 Cross Site Scripting

Armorize Technologies Security Advisory Armorize-ADV-2008-0001 Title: Multiple XSS Vulnerabilities in World Recipe 2.11 Date: 2008/12/15 Status: Full Class: Input Validation Error Bugtraq ID: N/A Category: Cross Site Scripting Language: ASP.NET C Description Armorize-ADV-2008-0001 discloses...

Multiple XSS Vulnerabilities in World Recipe 2.11

Armorize Technologies Security Advisory Armorize-ADV-2008-0001 Title: Multiple XSS Vulnerabilities in World Recipe 2.11 Date: 2008/12/15 Status: Full Class: Input Validation Error Bugtraq ID: N/A Category: Cross Site Scripting Language: ASP.NET C Description Armorize-ADV-2008-0001 discloses...