Aggregator

A vulnerability was found in Intel VirusScan Enterprise Linux up to 2.0.3. It has been rated as critical. This issue affects some unknown processing of the file NailsConfig.html. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2016-8025. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

pwnable.tw start

A vulnerability was found in Blabsoft Bopup Communication Server 3.2.26.5460. It has been rated as very critical. Affected by this issue is some unknown functionality. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2009-2227. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Zen Cart up to 1.2.0d. Affected is an unknown function of the file admin/sqlpatch.php. The manipulation of the argument query_string leads to sql injection. This vulnerability is traded as CVE-2009-2254. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Zen Cart up to 1.2.0d and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/record_company.php. The manipulation of the argument record_company_image leads to improper authentication. This vulnerability is known as CVE-2009-2255. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in RS-CMS 2.1. Affected by this issue is some unknown functionality of the file rscms_mod_newsview.php of the component rscms_mod_newsview.php. The manipulation of the argument key leads to sql injection. This vulnerability is handled as CVE-2009-2209. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in MyBB. This issue affects some unknown processing. The manipulation of the argument birthdayprivacy leads to sql injection. The identification of this vulnerability is CVE-2009-2230. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Dependency Walker Rewrite

A vulnerability classified as problematic has been found in Kasseler CMS. This affects an unknown part of the file engine.php. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2009-2228. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in Kasseler CMS 1.3.5. This vulnerability affects unknown code of the file engine.php. The manipulation of the argument file leads to path traversal. This vulnerability was named CVE-2009-2229. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Campware.org Campsite 3.3.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin-files/ad.php. The manipulation of the argument GLOBALS[g_campsiteDir] leads to path traversal. This vulnerability is known as CVE-2009-2183. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Gravy-media Media Photo Host 1.0.8. It has been rated as problematic. Affected by this issue is some unknown functionality of the file forcedownload.php. The manipulation of the argument file leads to path traversal. This vulnerability is handled as CVE-2009-2184. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Campware.org Campsite 3.3.0. It has been classified as critical. Affected is an unknown function of the file ad_popup.php. The manipulation of the argument GLOBALS[g_campsiteDir] leads to code injection. This vulnerability is traded as CVE-2009-2182. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

DXPLOIT Defaced the Website of MIKROSMAR

A Threat Actor Claims to have Leaked the Data of Ert Cycle

A vulnerability, which was classified as problematic, has been found in W2b phpDatingClub 3.7. Affected by this issue is some unknown functionality of the file website.php. The manipulation of the argument page leads to cross site scripting. This vulnerability is handled as CVE-2009-2178. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in W2b phpDatingClub 3.7. This affects an unknown part of the file search.php. The manipulation of the argument sform[day] leads to sql injection. This vulnerability is uniquely identified as CVE-2009-2179. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Pc4arb Pc4 Uploader up to 10.0 and classified as problematic. This vulnerability affects unknown code of the file upfiles/index.php of the component Uploader. The manipulation of the argument file leads to path traversal. This vulnerability was named CVE-2009-2180. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in AWScripts Gallery Search Engine 1.5 and classified as critical. Affected by this issue is some unknown functionality of the file AWScripts.com of the component Admin Interface. The manipulation leads to improper authentication. This vulnerability is handled as CVE-2009-2233. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Mid.as MIDAS 1.43. Affected is an unknown function. The manipulation leads to improper authentication. This vulnerability is traded as CVE-2009-2231. It is possible to launch the attack remotely. Furthermore, there is an exploit available.