py membres software vulnerabilities
vulnerabilities.aspcode.net
Searching py membres software vulnerabilities
secure.php in PY-Membres 4.2 and earlier allows
authentication
|
PY-Membres
|
attackers
|
parameter
|
securephp
|
setting
|
adminpy
|
earlier
|
remote
|
allows
|
bypass
|
secure.php in PY-Membres 4.2 and earlier allows remote attackers to bypass authentication by setting the adminpy parameter.
SQL injection vulnerability in pass_done.php fo
vulnerability
|
pass_donephp
|
PY-Membres
|
arbitrary
|
attackers
|
injection
|
parameter
|
execute
|
earlier
|
queries
|
allows
|
remote
|
email
|
SQL
|
via
|
SQL injection vulnerability in pass_done.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter.
Internet Explorer 6.x on Windows XP SP2 allows
ADODBConnection
|
ADODBrecordset
|
demonstrated
|
interpreted
|
arbitrary
|
draggable
|
attackers
|
Internet
|
document
|
Explorer
|
Windows
|
execute
|
remote
|
allows
|
Local
|
using
|
write
|
Help
|
HTML
|
Zone
|
type
|
such
|
file
|
code
|
hta
|
SP2
|
ppt
|
pdf
|
css
|
xml
|
doc
|
cdf
|
Internet Explorer 6.x on Windows XP SP2 allows remote attackers to execute arbitrary code, as demonstrated using a document with a draggable file type such as .xml, .doc, .py, .cdf, .css, .pdf, or .ppt, and using ADODB.Connection and ADODB.recordset to write to a .hta file that is interpreted in the Local Zone by HTML Help.
PY Software Active Webcam WebServer (webcam.exe
WebServer
|
Software
|
Webcam
|
Active
|
PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote attackers to cause a denial of service via a request to a file on the floppy drive, as demonstrated using A:\a.txt.
PY Software Active Webcam WebServer (webcam.exe
WebServer
|
Software
|
Webcam
|
Active
|
PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote attackers to cause a denial of service (CPU consumption) via a direct request to Filelist.html.
PY Software Active Webcam WebServer (webcam.exe
WebServer
|
Software
|
Webcam
|
Active
|
PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote attackers to obtain the full path of the web server via a request for a non-existent filename, which leaks the full path in an error message.
PY Software Active Webcam WebServer (webcam.exe
WebServer
|
Software
|
Webcam
|
Active
|
PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote attackers to determine the existence of files via an HTTP request with a full pathname, which produces different messages whether the file exists or not.
PY Software Active Webcam WebServer (webcam.exe
WebServer
|
Software
|
Webcam
|
Active
|
PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote attackers to cause a denial of service (memory exhaustion and process crash) via a large number of HTTP requests.
The admin panel in Tr Forum 2.0 accepts a usern
/membres/modif_profilphp
|
/membres/change_mdpphp
|
authentication
|
authenticated
|
demonstrated
|
unauthorized
|
modifying
|
parameter
|
settings
|
username
|
changing
|
password
|
accepts
|
actions
|
perform
|
allows
|
remote
|
admin
|
Forum
|
panel
|
users
|
which
|
user
|
hash
|
via
|
The admin panel in Tr Forum 2.0 accepts a username and password hash for authentication, which allows remote authenticated users to perform unauthorized actions, as demonstrated by modifying user settings via the id parameter to /membres/modif_profil.php, and changing a password via /membres/change_mdp.php. NOTE: this can be leveraged with other Tr Forum vulnerabilities to allow unauthenticated attackers to gain privileges.
muforum (µforum) 0.4c stores membres/members.da
muforum
|
muforum (µforum) 0.4c stores membres/members.dat under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as usernames and password hashes.
PHP remote file inclusion vulnerability in memb
membres/membreManagerphp
|
vulnerability
|
inclusion
|
Framework
|
Library
|
Generic
|
remote
|
file
|
comm
|
PHP
|
PHP remote file inclusion vulnerability in membres/membreManager.php in PhP Generic Library & Framework for comm (g-neric) allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter.
Software vulnerabilities results 1 to 12 of 12
Page:
1