PHP auctions - viewfaqs.php Blind SQL Injection

PHP auctions - viewfaqs.php Blind SQL Injection == Script: PHP auctions Version: n/a Link: http://phpauctions.info == Author: BorN To K!LL - h4ck3r Contact: [email protected] == 3xploit: /viewfaqs.php?cat=Blind-Injection 3xample: /viewfaqs.php?cat=2 and substringversion,1,1=4 // false ,,...

BetMore Site Suite 4 - bid Blind SQL Injection

BetMore Site Suite 4 - bid Blind SQL Injection == Script: BetMore Site Suite Version: 4 Link: http://products.epromptc.com/betmore/?pt=4&rfid=55 == Author: BorN To K!LL - h4ck3r Contact: [email protected] == 3xploit: /mainxa.php?lngx=true-value&x=true-value&xid=true-value&bid=Blind-Injection ==...

E-Xoopport Samsara 3.1 (eCal Module) - Blind SQL Injection

!/usr/bin/perl 0-Day E-Xoopport - Samsara \r\n"; exit; my $host = $ARGV0; my $usr = $ARGV1; my $pwd = $ARGV2; my $anickde = $ARGV3; my $anick = '0x'.EncHex$anickde; print "! Logging In...\r\n"; my %postdata = uname = "$usr", pass = "$pwd", op = "login" ; my $cookies = HTTP::Cookies-...

WebAsys - Blind SQL Injection

".$res; if!pregmatch"/Subquery returns/", $result $res .= chr$j; break; echo $out;...

CVE-2010-1987

Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service memory consumption, out-of-bounds read, and application crash via JavaScript code that appends long strings to the content of a P element, and performs certain other string concatenation and substring...

Null pointer dereference

Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service NULL pointer dereference and application crash or possibly execute arbitrary code via JavaScript code that performs certain string concatenation and substring operations, a different vulnerability than...

CVE-2010-1988

Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service NULL pointer dereference and application crash or possibly execute arbitrary code via JavaScript code that performs certain string concatenation and substring operations, a different vulnerability than...

postgresql: substring() negative length argument buffer overflow

The bitsubstr function in backend/utils/adt/varbit.c in PostgreSQL 8.0.23, 8.1.11, and 8.3.8 allows remote authenticated users to cause a denial of service daemon crash or have unspecified other impact via vectors involving a negative integer in the third argument, as demonstrated by a SELECT...

postgresql: substring() negative length argument buffer overflow

The bitsubstr function in backend/utils/adt/varbit.c in PostgreSQL 8.0.23, 8.1.11, and 8.3.8 allows remote authenticated users to cause a denial of service daemon crash or have unspecified other impact via vectors involving a negative integer in the third argument, as demonstrated by a SELECT...

postgresql: substring() negative length argument buffer overflow

The bitsubstr function in backend/utils/adt/varbit.c in PostgreSQL 8.0.23, 8.1.11, and 8.3.8 allows remote authenticated users to cause a denial of service daemon crash or have unspecified other impact via vectors involving a negative integer in the third argument, as demonstrated by a SELECT...

Ubuntu Update for PostgreSQL vulnerability USN-933-1

Ubuntu Update for Linux kernel vulnerabilities USN-933-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9331.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for PostgreSQL vulnerability USN-933-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

PostgreSQL DoS

Crash on substring function in SQL...

[USN-933-1] PostgreSQL vulnerability

=========================================================== Ubuntu Security Notice USN-933-1 April 28, 2010 postgresql-8.1, postgresql-8.3, postgresql-8.4 vulnerability CVE-2010-0442 =========================================================== A security issue affects the following Ubuntu releases...

Joomla! Component Media Mall Factory 1.0.4 - Blind SQL Injection

Joomla! Component Media Mall Factory 1.0.4 - Blind SQL Injection =========================================================================================================== o Joomla Component Media Mall Factory Blind SQLi Vulnerability Software : commediamall version 1.0.4 Vendor :...

phpscripte24 Vor und Rückwärts Auktions System - Blind SQL Injection

phpscripte24 Vor und Rückwärts Auktions System - Blind SQL Injection ----------------------------Information------------------------------------------------ +Name : phpscripte24 Vor und Rückwärts Auktions System Blind SQL Injection auktion.php +Autor : Easy Laster +Date : 02.04.2010 +Script :...

Profi Einzelgebots Auktions System - Blind SQL Injection

----------------------------Information------------------------------------------------ +Name : Profi Einzelgebots Auktions System = Blind SQL Injection Vulnerability +Autor : Easy Laster +Date : 01.04.2010 +Script : Profi Einzelgebots Auktions System +Price : 399.99€ +Language : PHP +Discovered ...

DEBIAN-CVE-2010-1194

The matchcomponent function in smtp-tls.c in libESMTP 1.0.3.r1, and possibly other versions including 1.0.4, treats two strings as equal if one is a substring of the other, which allows remote attackers to spoof trusted certificates via a crafted subjectAltName...

PostNuke FormExpress Module - Blind SQL Injection

PostNuke FormExpress Module - Blind SQL Injection Date: 17/03/2010 Software Link: http://sourceforge.net/projects/pn-formexpress/ Version: 0.3.2 PostNuke ContentExpress Module Blind Sql Injection Reported by Sharif University of Technology CSIRT Vulnerability Analysis and Penetration Testing Grou...

CVE-2003-1578

Sun ONE aka iPlanet Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote attackers to hide HTTP requests from the log-preview functionality by accompanying the requests with crafted DNS responses specifying a domain name beginning...

Joomla Component Com_Joomclip (cat) SQL injection

No description provided by source. 0000000000000000000000000000000000 000000000000000000000 00000000000000000000000000000000000 0000000000000000 00000000000000000000000000000000 + Joomla Component ComJoomclip cat SQL injection + Author : 599eme Man + Contact : [email protected]...