18 matches found
EUVD-2002-0549
Malware in sbrugna...
IBM Informix Web Datablade 4.1x Page Request SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4496/info Informix is an enterprise database distributed and maintained by IBM. The Web Datablade Module for Informix SQL, dynamically generates HTML content based on Database data. Web Datablade is available for Apache,...
ibm informix web datablade 3.x/4.1 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3575/info Informix is an enterprise database distributed and maintained by IBM. The Web Datablade Module for Informix SQL is used to provide wbBinaries for storing large binary resources such as images, sounds, etc. The W...
CVE-2002-0554
webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers to bypass user access levels or read arbitrary files via a SQL injection attack in an HTTP request...
CVE-2002-0555
IBM Informix Web DataBlade 4.12 unescapes user input even if escaped, enabling remote attackers to execute SQL code in a web form. Root cause is improper input handling that bypasses developer escaping. Public details in connected records confirm the affected product and behavior; no remediation ...
CVE-2002-0554
The CVE-2002-0554 issue affects IBM Informix Web DataBlade 4.12, where a SQL injection in an HTTP request allows remote attackers to bypass user access levels or read arbitrary files. This is documented in NVD/NVD-linked records; no explicit exploit details or remediation are provided in the conn...
CVE-2002-0555
IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted to escape it...
SQL, PERL, HTML injection in IBM Informix Web DataBlade
There are multiple ways for SQL query modification and to execute user-supplied perl file...
IBM Informix Web DataBlade: Local root by design
IBM Informix Web DataBlade: Local root by design By Simon Lodal, Denmark Vendor status: Notified months ago, said they would be working on updates, never heard anything. Software: Web DataBlade 4.12, IDS 9.20/9.21, Linux 2.2/2.4, SunOS 5.7 OS, IDS and WDB versions seem to be irrelevant. Impact: A...
IBM Informix Web DataBlade: SQL injection
IBM Informix Web DataBlade: SQL injection By Simon Lodal, Denmark Vendor status: Notified months ago, said they would be working on updates, never heard anything. Software: Web DataBlade 4.12, IDS 9.20/9.21, Linux 2.2/2.4, SunOS 5.7 OS, IDS and WDB versions seem to be irrelevant. Impact: SQL code...
IBM Informix Web DataBlade: Auto-decoding HTML entities
IBM Informix Web DataBlade: Auto-decoding HTML entities By Simon Lodal, Denmark Vendor status: Notified months ago, said they would be working on updates, never heard anything. Software: Web DataBlade 4.12, IDS 9.20/9.21, Linux 2.2/2.4, SunOS 5.7 OS, IDS and WDB versions seem to be irrelevant...
IBM Informix Web Datablade 4.1x - Page Request SQL Injection
source: https://www.securityfocus.com/bid/4496/info Informix is an enterprise database distributed and maintained by IBM. The Web Datablade Module for Informix SQL, dynamically generates HTML content based on Database data. Web Datablade is available for Apache, IIS, and Netscape web servers, and...
IBM Informix Web Datablade 4.1x - Page Request SQL Injection
IBM Informix Web Datablade 4.1x - Page Request SQL Injection source: https://www.securityfocus.com/bid/4496/info Informix is an enterprise database distributed and maintained by IBM. The Web Datablade Module for Informix SQL, dynamically generates HTML content based on Database data. Web Datablad...
CVE-2001-0924
Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. dot dot in the LO parameter...
CVE-2001-0924
CVE-2001-0924 describes a directory traversal vulnerability in the Informix SQL Web DataBlade CGI (LO parameter) that allows remote attackers to read arbitrary files on the affected system. The issue arises from improper handling of the .. (dot dot) path traversal in the LO parameter of the ifx C...
Informix SQL Web DataBlade Module Traversal Arbitrary File Access
The Web DataBlade modules for Informix SQL allows an attacker to read arbitrary files on the remote system by sending a specially crafted request using '../' characters. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription...
CVE-2001-0924
Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. dot dot in the LO parameter...
ibm informix Web Datablade 3.x/4.1 - Directory Traversal
source: https://www.securityfocus.com/bid/3575/info Informix is an enterprise database distributed and maintained by IBM. The Web Datablade Module for Informix SQL is used to provide wbBinaries for storing large binary resources such as images, sounds, etc. The Web Datablade Module for Informix S...