2238 matches found
[SECURITY] Fedora 20 Update: dokuwiki-0-0.24.20140929c.fc20
DokuWiki is a standards compliant, simple to use Wiki, mainly aimed at crea ting documentation of any kind. It has a simple but powerful syntax which makes sure the datafiles remain readable outside the Wiki and eases the creation of structured texts. All data is stored in plain text files no...
Microsoft XML Signature HMAC Truncation Bypass (MS10-041) - Ver2 (CVE-2009-0217)
The Microsoft .NET Framework is a component of the Microsoft Windows operating system that enables building and running software applications and Web services. A tampering vulnerability exists in the Microsoft .NET Framework that could allow an attacker to tamper with signed XML content without...
通达oa2013又一奇葩注入DBA
简要描述: 无语了。。。 详细说明: 官网demo登录试用: http://www.day900.com/ 发现这个: http://www.day900.com/general/crm/apps/crm/include/search.php?ENTITY=crmmarketing&PAGESIZE=10&CURPAGE=&ORDERFIELD=&ORDERTYPE=&USERVIEW=1706 payload:ENTITY=crmmarketing' 返回这个: 请联系管理员 错误1064: You have an error in your SQL syntax; check the...
openssl: ASN.1 structure reuse memory corruption
An out-of-bounds write flaw was found in the way OpenSSL reused certain ASN.1 structures. A remote attacker could possibly use a specially crafted ASN.1 structure that, when parsed by an application, would cause that application to crash...
Vulnerability analysis: a Markdown parser's persistent XSS Vulnerability, CVE-2 0 1 4-5 1 4 4-a vulnerability warning-the black bar safety net
What is the Markdown? a Markdown is a lightweight markup language, the popularity has got GitHub and Stack Overflow broad support, as ordinary people we can also easily get started. Use markdown to write articles very much like those trivial HTML tag can be behind without the tube. The last 5...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This ID is frequently used as an example of the 2014 CVE-ID syntax change, which allows more than 4 digits in the sequence number. Notes: See references...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This ID is frequently used as an example of the 2014 CVE-ID syntax change, which allows more than 4 digits in the sequence number. Notes: See references...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This ID is frequently used as an example of the 2014 CVE-ID syntax change, which allows more than 4 digits in the sequence number. Notes: See references...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This ID is frequently used as an example of the 2014 CVE-ID syntax change, which allows more than 4 digits in the sequence number. Notes: See references...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This ID is frequently used as an example of the 2014 CVE-ID syntax change, which allows more than 4 digits in the sequence number. Notes: See references...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This ID is frequently used as an example of the 2014 CVE-ID syntax change, which allows more than 4 digits in the sequence number. Notes: See references...
CVE-2014-9999
CVE-2014-9999 entry is rejected and not used as an active vulnerability per the initial description.
CVE-2014-99999
CVE-2014-99999 entry is rejected/not used and does not represent an active vulnerability.
CVE-2014-54321
CVE-2014-54321 entry is rejected/not used per the description; this CVE ID is not an active vulnerability entry.
CVE-2014-100000
CVE-2014-100000 is rejected/not used per the Initial Description.
CVE-2014-999999
This CVE entry is rejected/not used and does not represent an active vulnerability.
CVE-2014-456132
CVE-2014-456132 entry is rejected/not used and does not represent an active vulnerability.
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9445, CVE-2014-9581, CVE-2014-9582. Reason: This candidate is not authorized for use because it is part of the 2014 CVE-ID ID-Syntax protection block, which protects against accidental truncation of CVE IDs with sequence...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9456. Reason: This candidate is not authorized for use because it is part of the 2014 CVE-ID ID-Syntax protection block, which protects against accidental truncation of CVE IDs with sequence numbers containing more than 4...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9580. Reason: This candidate is not authorized for use because it is part of the 2014 CVE-ID ID-Syntax protection block, which protects against accidental truncation of CVE IDs with sequence numbers containing more than 4...