Lucene search
K

1306 matches found

OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.20 views

RT (Request Tracker) Multiple Vulnerabilities

This host is installed with Request Tracker and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbrtmultvuln.nasl 7019 2017-08-29 11:51:27Z teissa $ RT Request Tracker Multiple Vulnerabilities Authors: Sooraj KS Copyright: Copyright c 2011 Greenbone Networks GmbH,...

4CVSS0.5AI score0.01533EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/02/25 12:0 a.m.15 views

Request Tracker 3.x < 3.8.9 Security Bypass and Information Disclosure

According to its self-reported version number, the Best Practical Solutions Request Tracker RT running on the remote web server is a version prior to 3.8.9. It is, therefore, potentially affected by the following vulnerabilities : - If an individual with a valid account logs out of Request Tracke...

4CVSS5.9AI score0.01533EPSS
Exploits0References5
NVD
NVD
added 2011/02/14 10:0 p.m.11 views

CVE-2011-0987

The PMABookmarkget function in libraries/bookmark.lib.php in phpMyAdmin 2.11.x before 2.11.11.3, and 3.3.x before 3.3.9.2, does not properly restrict bookmark queries, which makes it easier for remote authenticated users to trigger another user's execution of a SQL query by creating a bookmark...

6.5CVSS6.6AI score0.02728EPSS
Exploits0References17
Debian CVE
Debian CVE
added 2011/02/14 9:0 p.m.26 views

CVE-2011-0987

The PMABookmarkget function in libraries/bookmark.lib.php in phpMyAdmin 2.11.x before 2.11.11.3, and 3.3.x before 3.3.9.2, does not properly restrict bookmark queries, which makes it easier for remote authenticated users to trigger another user's execution of a SQL query by creating a bookmark...

6.5CVSS6.7AI score0.02728EPSS
Exploits0
0day.today
0day.today
added 2011/01/18 12:0 a.m.24 views

Joomla Component com_allcinevid 1.0.0 Blind SQL Injection Vulnerability

Exploit for php platform in category web applications allCineVid Joomla Component 1.0.0 Blind SQL Injection Vulnerability Name allCineVid Vendor http://www.joomtraders.com Versions Affected 1.0.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2011/01/18 12:0 a.m.14 views

Joomla! Component allCineVid 1.0.0 - Blind SQL Injection

Joomla! Component allCineVid 1.0.0 - Blind SQL Injection http://adv.salvatorefresta.net/allCineVidJoomlaComponent1.0.0BlindSQLInjectionVulnerability-18012011.txt allCineVid Joomla Component 1.0.0 Blind SQL Injection Vulnerability Name allCineVid Vendor http://www.joomtraders.com Versions Affected...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2011/01/18 12:0 a.m.33 views

Joomla! Component allCineVid 1.0.0 - Blind SQL Injection

http://adv.salvatorefresta.net/allCineVidJoomlaComponent1.0.0BlindSQLInjectionVulnerability-18012011.txt allCineVid Joomla Component 1.0.0 Blind SQL Injection Vulnerability Name allCineVid Vendor http://www.joomtraders.com Versions Affected 1.0.0 Author Salvatore Fresta aka Drosophila Website...

7.4AI score
Exploits0
0day.today
0day.today
added 2011/01/16 12:0 a.m.17 views

Joomla Component 1.0.0 com_people SQL Injection Vulnerability

Exploit for php platform in category web applications People Joomla Component 1.0.0 SQL Injection Vulnerability Name People Vendor http://www.ptt-solution.com Versions Affected 1.0.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2011/01/14 12:0 a.m.13 views

Joomla! Component People 1.0.0 - SQL Injection

Joomla! Component People 1.0.0 - SQL Injection People Joomla Component 1.0.0 SQL Injection Vulnerability Name People Vendor http://www.ptt-solution.com Versions Affected 1.0.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Da...

0.1AI score
Exploits0
Saint
Saint
added 2011/01/04 12:0 a.m.25 views

SQL injection authentication bypass

Added: 01/04/2011 Background Structured Query Language SQL is the most common language understood by modern relational databases. Problem A web program uses input parameters within an SQL query in an unsafe manner. This could allow a remote attacker to manipulate the authentication query via a...

1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/12/29 12:0 a.m.18 views

HotWeb Rental SQL Injection

HotWeb Rentals "PageId" SQL Injection Vulnerability PRODUCT http://www.hotwebscripts.co.uk/ Input passed to the "PageId" parameter in default.asp is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. POC...

Exploits0
securityvulns
securityvulns
added 2010/12/29 12:0 a.m.60 views

Pre Jobo .NET &quot;Password&quot; SQL Injection Vulnerability

Pre Jobo .NET "Password" SQL Injection Vulnerability PRODUCT http://www.preprojects.com/jobo.asp Input passed to the "Password" form field in jobseeker/register the Post Your CV page is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by...

0.4AI score
Exploits0
0day.today
0day.today
added 2010/10/28 12:0 a.m.18 views

AlstraSoft E-Friends 4.96 Multiple Remote Vulnerabilities

Exploit for php platform in category web applications ========================================================= AlstraSoft E-Friends 4.96 Multiple Remote Vulnerabilities ========================================================= Name AlstraSoft E-Friends Vendor http://www.alstrasoft.com Versions...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2010/10/28 12:0 a.m.45 views

AlstraSoft E-Friends 4.96 Multiple Remote Vulnerabilities

AlstraSoft E-Friends 4.96 Multiple Remote Vulnerabilities Name AlstraSoft E-Friends Vendor http://www.alstrasoft.com Versions Affected 4.96 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-10-27 X. INDEX I. ABOUT THE...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2010/10/27 12:0 a.m.29 views

Alstrasoft e-Friends 4.96 - Multiple Vulnerabilities

AlstraSoft E-Friends 4.96 Multiple Remote Vulnerabilities Name AlstraSoft E-Friends Vendor http://www.alstrasoft.com Versions Affected 4.96 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-10-27 X. INDEX I. ABOUT THE...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2010/10/24 12:0 a.m.213 views

Aardvark Topsite XSS vulnerability

Hi, I found XSS on Aardvark Topsites PHP system. Dork: "Powered by Aardvark Topsites" "SQL Queries" XSS: sitepath/index.php?a=search&q=2220onmouseover3dalertString.fromCharCode88,83,8320par3d22 Can use POST to effect the "email", "title", "u" and "url" parameters either on the same way. Tested...

0.7AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2010/10/08 12:0 a.m.25 views

IBM Tivoli Provisioning Manager for OS Deployment TCP to ODBC Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary SQL queries on vulnerable installations of Tivoli Provisioning Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the TCP to ODBC gateway component which listens by default on TCP...

10CVSS7.9AI score
Exploits0References1
Exploit DB
Exploit DB
added 2010/09/30 12:0 a.m.31 views

Joomla! Component JE Guestbook 1.0 - Multiple Vulnerabilities

JE Guestbook 1.0 Joomla Component Multiple Remote Vulnerabilities Name JE Guestbook Vendor http://www.joomlaextensions.co.in Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-09-30 X. INDEX I. ABO...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2010/09/15 12:0 a.m.17 views

BugTracker.NET 'search.aspx' SQL Injection Vulnerability

The host is running BugTracker.NET and is prone to SQL injection vulnerability. OpenVAS Vulnerability Test $Id: gbbugtrackersqlinjvuln.nasl 5263 2017-02-10 13:45:51Z teissa $ BugTracker.NET 'search.aspx' SQL Injection Vulnerability Authors: Sooraj KS Copyright: Copyright c 2010 Greenbone Networks...

7.5CVSS7.2AI score0.01063EPSS
Exploits0References4
exploitpack
exploitpack
added 2010/08/10 12:0 a.m.17 views

Joomla! Component Teams - Multiple Blind SQL Injections

Joomla! Component Teams - Multiple Blind SQL Injections Teams 110281008091711 Joomla Component Multiple Blind SQL Injection Vulnerabilities Name Teams Vendor http://www.joomlamo.com Versions Affected 110281008091711 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net...

0.2AI score
Exploits0
Rows per page
Query Builder