|
|
Colapse all |
Post message
Template Seller Pro 3.25 2005-11-15 r verton gmail com AlstraSoft Template Seller Pro 3.25 =================================== Software: AlstraSoft Template Seller Pro 3.25 Severity: Arbitrary code execution, SQL Injection(s) Risk: High Author: Robin Verton <r.verton (at) gmail (dot) com [email concealed]> Date: Nov. 15 2005 Vendor: www.alstrasoft.com Descr [ more ] [ reply ] Re: Midicart sql injection 2005-11-15 exoduks securityfocus com, "[at]" securityfocus com,gmail com securityfocus com Three years and ten months without a patch 2005-11-15 David Litchfield (davidl ngssoftware com) Whilst looking over old Oracle bugs I discovered that a _fully_ _patched_ 8.1.7.4 Oracle server is still vulnerable to the old extproc flaw [http://www.ngssoftware.com/advisories/oraplsextproc.txt]; this flaw, when exploited, allows a remote attacker without a userID and password to take control of [ more ] [ reply ] [FS-05-02] Multiple vulnerabilities in phpMyAdmin 2005-11-15 Toni Koivunen (toni koivunen fitsec com) ======================================================================== ======= _________________________________________ Security Advisory _________________________________________ http://www.fitsec.com/advisories/FS-05-02.txt _________________________________________ Severity: Low/Medium Ti [ more ] [ reply ] [FLSA-2005:123013] Updated xchat package fixes security issue 2005-11-15 Marc Deslauriers (marcdeslauriers videotron ca) [SECURITY] [DSA 897-1] New phpsysinfo packages fix several vulnerabilities 2005-11-15 joey infodrom org (Martin Schulze) [PHPADSNEW-SA-2005-002] phpAdsNew and phpPgAds 2.0.7 fix multiple vulnerabilities 2005-11-15 Matteo Beccati (matteo beccati com) ======================================================================== phpAdsNew / phpPgAds security advisory PHPADSNEW-SA-2005-002 ------------------------------------------------------------------------ Advisory ID: PHPADSNEW-SA-2005-002 Date: 2005-Nov-15 Security risk: highly critical Applicati [ more ] [ reply ] [FLSA-2005:158801] Updated bzip2 packages fix security issues 2005-11-15 Marc Deslauriers (marcdeslauriers videotron ca) [ GLSA 200511-12 ] Scorched 3D: Multiple vulnerabilities 2005-11-15 Thierry Carrez (koon gentoo org) [SECURITY] [DSA 896-1] New ftpd-ssl packages fix arbitrary code execution 2005-11-15 joey infodrom org (Martin Schulze) [FLSA-2005:152794] Updated rp-pppoe package fixes security issue 2005-11-15 Marc Deslauriers (marcdeslauriers videotron ca) (1 replies) --------------------------------------------------------------------- Fedora Legacy Update Advisory Synopsis: Updated rp-pppoe package fixes security issue Advisory ID: FLSA:152794 Issue date: 2005-11-14 Product: Red Hat Linux, Fedora Core Keywords: [ more ] [ reply ] Re: [FLSA-2005:152794] Updated rp-pppoe package fixes security issue 2005-11-15 David F. Skoll (devnull roaringpenguin com) Affiliate Network Pro v7.2 SQL Injections, Arbitrary code execution, XSS 2005-11-15 r verton gmail com Affiliate Network Pro v7.2 SQL Injections, Arbitrary code execution, XSS ======================================================================== Software: Affiliate Network Pro v7.2 Severity: SQL Injection(s), Arbitrary code execution, XSS Risk: High Author: Robin Verton <r.verton@gm [ more ] [ reply ] [xfocus-AD-051115]Multiple antivirus failed to scan malicous filename bypass vulnerability 2005-11-15 alert7 (at) xfocus (dot) org [email concealed] (alert7 xfocus org) (1 replies) [xfocus-AD-051115]Multiple antivirus failed to scan malicous filename bypass vulnerability discoverer by killer (at) xfocus (dot) org [email concealed] class: design error Threat level: medium Vulnerable anti-virus Engine: Kaspersky Antivirus Symantec AntiVirus F-Prot Antivirus ClamWin Antivirus Avast An [ more ] [ reply ] Re: [xfocus-AD-051115]Multiple antivirus failed to scan malicous filename bypass vulnerability 2005-11-15 Thierry Zoller (Thierry Zoller lu) PHPWCMS - Directory traversal vulnerability,CSS attack 2005-11-15 Stefan Lochbihler (steve01 chello at) RE: List of Security-oriented Fairs/Events/Conferences? 2005-11-14 Jeremy Epstein (jeremy epstein webmethods com) If you're looking for research conferences, IEEE's Security & Privacy group has the best list around at http://www.ieee-security.org/Calendar/cipher-hypercalendar.html (they also have some trade shows & other stuff). > -----Original Message----- > From: Rainer Duffner [mailto:rainer (at) ultra-secure (dot) de [email concealed] [ more ] [ reply ] RE: [ADVISORY] CISCO ASA Failover DoS Vulnerability 2005-11-14 Randy Ivener (rivener) (rivener cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Response ============== This is Cisco PSIRT's response to the statements made by Amin Tora in his message: [ADVISORY] CISCO ASA Failover DoS Vulnerability, posted on November 14, 2005. The original email is available at http://www.securityfocus [ more ] [ reply ] Multible Sql injections in Wizz Forum 2005-11-12 s2b hotmail com Hello,, Multible Sql injections in Wizz Forum ,, Discovered by : HACKERS PAL Thanks For :: DeviL-00 - Abducter(Abducter_Minds) - almaster -=-=-=-=-=-=-=-=-=-=-=-=-=-=- file : ForumAuthDetails.php ForumAuthDetails.php?AuthID=-4654'%20union%20select%20password,userid,pa ssword,userid,5,6,7,"http:/ [ more ] [ reply ] [SECURITY] [DSA 894-1] New AbiWord packages fix arbitrary code execution 2005-11-14 joey infodrom org (Martin Schulze) Midicart sql injection 2005-11-12 crazy frog crazy frog (i m crazy frog gmail com) Midicart sql injection ================== product description(from site):- ================== MidiCart is a Try-Before-You-Buy Shopping Cart Software, that provides all you need to create, operate, and maintain a professional Internet shop. MidiCart ASP and PHP Shopping Cart is extremely easy to us [ more ] [ reply ] 1-2-All Broadcast E-mail Software vulnerable to a classic SQL admin 2005-11-11 bhs_team yahoo com 1-2-All Broadcast E-mail Software ( POC ) Supplying the following is sufficient to gain access to the admin control panel: Target : http://www.example.com/[12allTarget]/admin/index.php Username: ' or 1=1 /* Password: (Nothing)(Blank) Report By : POPO >From>IRAN> www.Babol-Hackers.com bhs_team@ [ more ] [ reply ] Re: New Bug KESM in GoogleTalk 2005-11-11 Cory Altheide (cory google com) > From: natalylopez380 (at) hotmail (dot) com [email concealed] > To: bugtraq (at) securityfocus (dot) com [email concealed] > Subject: New Bug KESM in GoogleTalk > > Hi!! My name is Nataly Lopez, I'm a 17 years old girl living in > Venezuela; I have always loved computer security because that's also > my father's work. > Well, the reason for me to post th [ more ] [ reply ] phpBB 2.0.18 SQL Query problem 2005-11-11 max jestsuper pl (1 replies) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [phpBB 2.0.18 SQL Query problem cXIb8O3.19] Author: Maksymilian Arciemowicz (cXIb8O3) Date: 11.11.2005 from securityreason.com TEAM - --- 0.Description --- phpBB is a high powered, fully scalable, and highly customizable Open Source bulletin boar d pa [ more ] [ reply ] |
|
Privacy Statement |
No? Are you sure? For example can you see path.
Good script have limits for inputs like vb.
phpbb don't have.
result:
Fatal error: Allowed memory size of 8388608 bytes exhausted (tried to allocate 1746401 byt
es) in /www/2018/phpBB2/includes
[ more ] [ reply ]