2203 matches found
[SECURITY] Fedora 11 Update: monodevelop-2.0-5.fc11
This package provides MonoDevelop, a full-featured IDE for Mono with syntax colouring, code completion, debugging, project management and support for C sharp, Visual Basic.NET, Java, Boo, Nemerle and MSIL...
Absolute breakthrough in the firewall-vulnerability warning-the black bar safety net
Author: dangguai27 | For readers: vulnerability analysts, programmers, intrusion lovers Pre-knowledge: multiplexing Port, C language basic syntax Script kiddies: how to overflow get the safe, secluded Shell is everyone always in the discussion of the problem, because now the firewall and various...
SQL query result set for injecting the effects and use-vulnerability and early warning-the black bar safety net
For injection purposes, the error message is extremely important. The so-called error message refers to and the correct page different results back, the master is very attention to this point, which injection point the precise judgment is essential. The ask discussed under several categories of...
Wordpress Plugin WP-Syntax <= 0.9.1 Remote Command Execution
No description provided by source. ====================================================================== Wordpress plugin WP-Syntax = 0.9.1 Remote Code Execution ====================================================================== This vulnerability was originally discovered by Raz0r on...
WordPress WP-Syntax插件远程PHP代码执行漏洞
BUGTRAQ ID: 36040 CVECAN ID: CVE-2009-2852 WordPress是一款免费的论坛Blog系统。 WP-Syntax是wordpress使用的用于高亮显示代码的插件。该插件的wp-syntax/test/index.php模块没有正确地过滤对testfilter所传送的参数便在calluserfuncarray调用中使用: function applyfilters$tag, $string global $testfilter; if !isset$testfilter$tag return $string;...
WordPress WP-Syntax 0.9.1 Command Execution
====================================================================== Wordpress plugin WP-Syntax $functions if isnull$functions continue; foreach$functions as $function $string = calluserfuncarray$function, array$string; return $string; ... Global variable testfilter is not defined, so...
WordPress WP-Syntax Plugin <= 0.9.1 - Remote Command Execution
In general, WP-Syntax plugin is the most popular plugin for WordPress to provide clean syntax highlighting for embedding source code within pages or posts. It uses the library, called GeShi, that implements all the functionality to review the syntax for each language HTML-code. The vulnerability ...
WordPress Plugin WP-Syntax 0.9.1 - Remote Command Execution
WordPress Plugin WP-Syntax 0.9.1 - Remote Command Execution ============================================================ Wordpress Plugin WP-Syntax Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0...
WordPress Plugin WP-Syntax 0.9.1 - Remote Command Execution
============================================================ Wordpress Plugin WP-Syntax Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com +...
Code injection
WP-Syntax plugin 0.9.1 and earlier for Wordpress, with registerglobals enabled, allows remote attackers to execute arbitrary PHP code via the testfilterwphead array parameter to test/index.php, which is used in a call to the calluserfuncarray function...
CVE-2009-2852
WP-Syntax plugin 0.9.1 and earlier for Wordpress, with registerglobals enabled, allows remote attackers to execute arbitrary PHP code via the testfilterwphead array parameter to test/index.php, which is used in a call to the calluserfuncarray function...
CVE-2009-2852
CVE-2009-2852 (WP-Syntax) affects WordPress WP-Syntax plugin versions
WordPress WP-Syntax 0.9.1 Command Execution
============================================================ Wordpress Plugin WP-Syntax Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com +...
Wordpress Plugin WP-Syntax <= 0.9.1 Remote Command Execution PoC
No description provided by source. ============================================================ Wordpress Plugin WP-Syntax = 0.9.1 Remote Command Execution ============================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /...
Wordpress Plugin WP-Syntax <= 0.9.1 Remote Command Execution PoC
Exploit for unknown platform in category web applications ================================================================ Wordpress Plugin WP-Syntax Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0...
Fedora 11 : viewvc-1.1.2-2.fc11 (2009-8507)
CHANGES in 1.1.2: - security fix: validate the 'view' parameter to avoid XSS attack - security fix: avoid printing illegal parameter names and values - add optional support for character encoding detection issue 400 - fix username case handling in svnauthz module issue 419 - fix cvsdbadmin/svnadm...
libxml, libxml2 security update
CentOS Errata and Security Advisory CESA-2009:1206 Updated libxml and libxml2 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. libxml is a...
openSUSE Security Update : MozillaFirefox (MozillaFirefox-381)
The Mozilla Firefox browser was updated to version 3.0.5, fixing various security issues and stability problems. The following security issues were fixed : MFSA 2008-69 / CVE-2008-5513: Mozilla security researcher mozbugra4 reported vulnerabilities in the session-restore feature by which content...
openSUSE Security Update : mozilla-xulrunner190 (mozilla-xulrunner190-382)
The Mozilla XULRunner engine was updated to version 1.9.0.5. The following security issues were fixed : MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher mozbugra4 reported that an XBL binding, when attached to an unloaded document, can be used to violate the same-origin...
openSUSE Security Update : mozilla-xulrunner181 (mozilla-xulrunner181-383)
The Mozilla XULRunner 1.8.1 engine received backports for security problems in 1.9.0.5. The following security issues were fixed : MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher mozbugra4 reported that an XBL binding, when attached to an unloaded document, can be used t...