8 matches found
SIMPLE.ERP SQL注入漏洞
SIMPLE.ERP is an e-commerce platform from SIMPLE Inc. SIMPLE.ERP [email protected]之前版本存在SQL注入漏洞 The vulnerability stems from a SQL injection vulnerability in the Warehouse Document Filter form, which could lead to table deletion...
CVE-2024-8773
SIMPLE.ERP client is vulnerable to MS SQL protocol downgrade request from a server side, what could lead to an unencrypted communication vulnerable to data interception and modification. This issue affect SIMPLE.ERP from 6.20 to 6.30. Only the 6.30 version received a patch [email protected], which make ...
Security Bulletin: A security vulnerability has been identified in IBM Tivoli Monitoring shipped with Tivoli Business Service Manager (CVE-2016-2183)
Summary IBM Tivoli Monitoring via the monitoring agent is shipped as a component of Tivoli Business Service Manager. Information about a security vulnerability affecting IBM Tivoli Monitoring has been published in a security bulletin. Vulnerability Details Please consult the Security Bulletin: IB...
212cafeBoard Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/22167/info 212cafeBoard is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...
[SECURITY] [DSA 2851-1] drupal6 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2851-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso February 02, 2014 http://www.debian.org/security/faq -...
SA-CORE-2014-001 - Drupal core - Multiple vulnerabilities
Multiple vulnerabilities were fixed in the supported Drupal core versions 6 and 7. Impersonation OpenID module - Drupal 6 and 7 - Highly critical A vulnerability was found in the OpenID module that allows a malicious user to log in as other users on the site, including administrators, and hijack...
212cafeboard-sql.txt
Hello Vulnerable : ----------- 212cafeBoard Version: ------- 6.30 Beta Vendor: ------ http://www.212cafe.com Description: ----------- Sql injection 212cafeBoard v6.30 Beta : http://site/Board/read.php?id=INJECT SQL CODE Path: ----- I try to contact the developer but never receiver a response...
XSS in 212cafeBoard ( Verision 0.08 & 6.30 Beta )
Hello Vulnerable : 212cafeBoard Version: 0.08 Beta 6.30 Beta Web : http://www.212cafe.com i found XSS 212cafeBoard v6.30 Beta : http://www.example.com/Board/list3.php?user=XSS For Example , you can put : http://www.example.com/board/list3.php?user='scriptalertdocument.cookie;/script...