|
|
Colapse all |
Post message
Autentificator <=2.01 SQL Injection Vulnerability 2006-09-02 sirdarckcat gmail com Discovered by Sirdarckcat from elhacker.net ------------------------------------------------------------------------ ------------ Autentificator v2.01 SQL Injection http://www.hotscripts.com/Detailed/15291.html ------------------------------------------------------------------------ ---------- [ more ] [ reply ] PHP-Revista Multiple vulnerabilities 2006-09-02 sirdarckcat gmail com Discovered by Sirdarckcat from elhacker.net ------------------------------------------------------------------------ ------------ Revista 1.1.2 http://php-revista.sourceforge.org ------------------------------------------------------------------------ ------------ Revista is a simple spanis [ more ] [ reply ] Sql injections in e107 [Admin section] 2006-09-01 Omid (omid hackers ir) Hi, There are several sql injections in e107 0.7.5 admin section : I) The "linkopentype", "linkrender" and "link_class" parameters are passed to "db_Insert()" function without checking : File /e107_admin/links.php, Line 496 : >> $sql->db_Insert("links", "0, '$link_name', '$link_url', '$link_descri [ more ] [ reply ] Sql injection in SMF [Admin section] 2006-09-01 Omid (omid hackers ir) Hi, There is a sql injection in SMF 1.1 RC3, in admin section : When an administrator is going to add a new board, the "cur_cat" parameter is not checked properly : File /Sources/ManageBoards.php, Line 609 : :: // Create a new board... :: if (isset($_POST['add'])) :: { :: // New boards by default [ more ] [ reply ] µforum v0.4c (members.dat) MD5 Passwd Hash Disclosure Poc 2006-09-01 gmdarkfig gmail com #!/usr/bin/perl # # Affected.scr..: µforum v0.4c # Poc.ID........: 08060901 # Type..........: Member's passwords are stored in .dat file no protected by a .htaccess file # Risk.level....: Medium # Vendor.Status.: Unpatched # Src.download..: comscripts.com/scripts/php.forum.1568.html # Poc.li [ more ] [ reply ] [Informix] Is Telelogic's Synergy integrated Informix server also vulnerable? 2006-09-01 Sec Anon (sec_anon hotmail com) Hi all, Well we have read David's Litchfield's paper on how insecure and easy cracking unpatched versions of Informix is. But how about the OEM vendors like Telelogic with their Synergy product range? Telelogic's Synergy Change and CM are enterprise products for Change Management control whic [ more ] [ reply ] [ MDKSA-2006:160 ] - Updated xorg-x11/XFree86 packages fix potential vulnerabilities 2006-09-01 security mandriva com ISS BlackICE PC Protection Insufficient validation of arguments of NtOpenSection Vulnerability 2006-09-01 David Matousek (david matousec com) Hello, I would like to inform you about a vulnerability in BlackICE PC Protection driver found by Matousec - Transparent security. Description: Hooking SSDT functions requires extra caution. SSDT function handlers are executed in the kernel mode but their callers are executed in the user mode. [ more ] [ reply ] [SECURITY] [DSA 1165-1] New capi4hylafax packages fix arbitrary command execution 2006-09-01 joey infodrom org (Martin Schulze) Re: ZoneX 1.0.3 - Publishers Gold Edition Remote File Inclusion Vulnerability 2006-08-30 maric_sasa yahoo com This vulnerability is not that dangerous because, firstly, if you want to exploit it, you must have exact file tree and correct name of the malicious script because that variable is never used alone but always in concatanation with script name and generic extension and, secondly, if site has regist [ more ] [ reply ] [ISR] - IBM eGatherer ActiveX Code Execution PoC 2006-08-29 Francisco Amato (famato infobyte com ar) ModuleBased CMS alfa 1 Multiple Remote File Inclusion 2006-08-29 amir scorpino yahoo com (1 replies) +ModuleBased CMS(MBCMS) multiple remote file Inclusion +discripton:MBCMS (ModuleBased CMS) is a new CMS designed for ease of use and customability. It is designed +for PHP/MySQL and it is easy to write new modules or templates to suit a particular website. +version:alfa 1 +vendor site:http://sou [ more ] [ reply ] Re: ModuleBased CMS alfa 1 Multiple Remote File Inclusion 2006-09-02 Carsten Eilers (ceilers-lists gmx de) rPSA-2006-0162-1 kernel 2006-08-31 rPath Update Announcements (announce-noreply rpath com) rPath Security Advisory: 2006-0162-1 Published: 2006-08-31 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local Root Deterministic Privilege Escalation Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.17.11-1-0.1 References: http://www.cve.mitre.org/cgi- [ more ] [ reply ] Re: Re: BlackBoard Multiple Vulnerabilities (XSS) 2006-08-28 Pr070n gmail com A simple student account and you can execute the XSS. You will put the code onto the discussion board in a post form. There is why Blackboard released first a patch and then an upgrade. Those vulnerabilities were found around the first semester of 2006. So there wasn't version 7.0 at that time. [ more ] [ reply ] Compression Plus and Tumblweed EMF Stack Overflow 2006-08-31 Michael Hale Ligh (michael ligh mnin org) The Compression Plus library is designed to handle de/compression of popular archiving formats such as ARC, ARK, PAK, ARJ, CAB, GZ, LBR, TAR, TAZ, TGZ, Z, ZIP, and ZOO. The code fails to properly validate input while processing specially crafted ZOO files, which results in a stack-based buffer overf [ more ] [ reply ] [ MDKSA-2006:158 ] - Updated MySQL packages fix DoS vuln, initscript bug 2006-08-31 security mandriva com [SECURITY] [DSA 1164-1] New sendmail packages fix denial of service 2006-08-31 joey infodrom org (Martin Schulze) Lyris ListManager 8.95: Add arbitrary administrator to arbitrary list 2006-08-31 Design Properly (designsoftwareproperly yahoo com) Advisory: Lyris ListManager 8.95: Add arbitrary administrator to arbitrary list Release Date: 2006-08-30 Application: Lyris ListManager 8.95 Risk: Depends upon your use and business context Vendor site: http://www.lyris.com/ Overview of Product: "Lyris ListManager is the world's most popular so [ more ] [ reply ] rPSA-2006-0161-1 libmusicbrainz 2006-08-30 rPath Update Announcements (announce-noreply rpath com) rPath Security Advisory: 2006-0161-1 Published: 2006-08-30 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect User Deterministic Unauthorized Access Updated Versions: libmusicbrainz=/conary.rpath.com@rpl:devel//1/2.1.4-0.1-1 References: http://www.cve.mitre.or [ more ] [ reply ] New NT4/Windows botnet reported 2006-08-31 Juha-Matti Laurio (juha-matti laurio netti fi) ISC Diary has new entry published recently entitled as "NT botnet submitted": http://isc.sans.org/diary.php?storyid=1657 After the release they changed the name to "botnet submitted" to describe the situation better. The affected library of August's MS06-040, Netapi32.dll, is included to NT4.0 inst [ more ] [ reply ] |
|
Privacy Statement |
------------------------------------------------------------------------
------------
ssLinks v1.22 Multiple SQL Injection Vulnerabilities
http://scripts.incutio.com/sslinks/
------------------------------------------------------------------------
--
[ more ] [ reply ]