Searching user id software vulnerabilities

/usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does n

/usr/sbin/Mail | IRIX | SGI |

/usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users.


PHP-Nuke 4.4.1a allows remote attackers to modi

attackers | password | PHP-Nuke | guessing | address | obtain | user's | remote | allows | modify | email | user | 441a |

PHP-Nuke 4.4.1a allows remote attackers to modify a user's email address and obtain the password by guessing the user id (UID) and calling user.php with the saveuser operator.


geteuid in Itanium Architecture (IA) running on

Architecture | Itanium | geteuid |

geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effective user id, which could allow local users to gain privileges.


Merak Mail IceWarp Web Mail uses a static ident

identifier | privileges | extracting | attackers | sessions | session | forward | IceWarp | change | across | access | answer | static | remote | user's | Merak | allow | which | could | user | does | URLs | uses | gain | Mail | Web | not |

Merak Mail IceWarp Web Mail uses a static identifier as a user session ID that does not change across sessions, which could allow remote attackers with access to the ID to gain privileges as that user, e.g. by extracting the ID from the user's answer or forward URLs.


register.php for WoltLab Burning Board (wbboard

registerphp | Burning | WoltLab | Board |

register.php for WoltLab Burning Board (wbboard) 1.1.1 uses a small number of random values for the "code" parameter that is provided to action.php to approve a new registration, along with predictable new user ID's, which allows remote attackers to hijack new user accounts via a brute force attack on the new user ID and the code value.


user_profile.asp in PortalApp 2.2 allows local

user_profileasp | privileges | modifying | PortalApp | variable | user_id | allows | local | users | gain |

user_profile.asp in PortalApp 2.2 allows local users to gain privileges by modifying the user_id variable.


The key validation code in GnuPG before 1.2.2 d

validation | before | GnuPG | code | key |

The key validation code in GnuPG before 1.2.2 does not properly determine the validity of keys with multiple user IDs and assigns the greatest validity of the most valid user ID, which prevents GnuPG from warning the encrypting user when a user ID does not have a trusted path.


SQL injection vulnerability in page_header.php

page_headerphp | vulnerability | injection | phpBB | SQL |

SQL injection vulnerability in page_header.php in phpBB 2.0, 2.0.1 and 2.0.2 allows remote attackers to brute force user passwords and possibly gain unauthorized access to forums via the user_id parameter.


Session fixation vulnerability in Macromedia JR

vulnerability | information | pre-setting | Macromedia | attackers | sessions | fixation | Session | hijack | remote | allows | server | used | JRun | user |

Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the user session ID information used by the session server.


Multiple SQL injection vulnerabilities in ReciP

vulnerabilities | ReciPants | injection | Multiple | SQL |

Multiple SQL injection vulnerabilities in ReciPants 1.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) user id, (2) recipe id, (3) category id, and (4) other ID number fields.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in ReciPants 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) user id, (2) recipe id, (3) category id, and (4) other ID number fields.


Cross-site scripting (XSS) vulnerability in che

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in check_user_id.php in ZeroBoard 4.1pl4 and earlier allows remote attackers to inject arbitrary web script or HTML via the user_id parameter.


management.php in Realnode Emilda 1.2.2 and ear

managementphp | Realnode | Emilda |

management.php in Realnode Emilda 1.2.2 and earlier allows remote attackers to perform actions as other users by modifying the user_id parameter.


Mantis before 0.19.3 caches the User ID longer

before | Mantis |

Mantis before 0.19.3 caches the User ID longer than necessary, which has unknown impact and attack vectors.


Multiple "potential" SQL injection vulnerabilit

vulnerabilities | "potential" | injection | myBloggie | Multiple | SQL |

Multiple "potential" SQL injection vulnerabilities in myBloggie 2.1.3 beta might allow remote attackers to execute arbitrary SQL commands via (1) the category parameter in add.php, (2) the cat_desc parameter in addcat.php, (3) the level and user parameters in adduser.php, (4) the post_id parameter in del.php, (5) the cat_id parameter in delcat.php, (6) the comment_id parameter in delcomment.php, (7) the id parameter in deluser.php, (8) the post_id and category parameter in edit.php, (9) the cat_id and cat_desc parameters in editcat.php, and (10) the id, level, and user parameters in edituser.php. NOTE: the username/login.php vector is already identified by CVE-2005-2838.


UserProfile.cs in Ultraapps Issue Manager befor

authenticated | administrator | UserProfilecs | privileges | modifying | Ultraapps | original | Manager | allows | before | remote | Issue | users | gain |

UserProfile.cs in Ultraapps Issue Manager before 2.1 allows remote authenticated users to gain administrator privileges by modifying the original (1) p_User_user_id and (2) User_user_id parameters to UserProfile.aspx, then modifying the password field.


wp-admin/user-edit.php in WordPress before 2.0.

wp-admin/user-editphp | WordPress | before |

wp-admin/user-edit.php in WordPress before 2.0.5 allows remote authenticated users to read the metadata of an arbitrary user via a modified user_id parameter.


Multiple SQL injection vulnerabilities in phpx

vulnerabilities | injection | Multiple | phpx | SQL |

Multiple SQL injection vulnerabilities in phpx 3.5.15 allow remote attackers to execute arbitrary SQL commands via the (1) image_id or (2) cat_id parameter to (a) gallery.php; the (3) news_id parameter to (b) news.php or (c) print.php; (4) the news_cat_id parameter to news.php; the (5) cat_id, (6) topic_id, or (7) post_id parameter to (d) forums.php; or (8) the user_id parameter to (e) users.php.


Visual truncation vulnerability in Windows Priv

vulnerability | truncation | Privacy | Windows | Visual | Tray |

Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 allows user-assisted remote attackers to install a key listed under the wrong user ID, and possibly cause the user to encrypt a victim's correspondence with this attacker-supplied key, via a key ID composed of the attacker's user ID, space characters, an invalid WinPT message, additional space characters, and the victim's user ID.


Admin.php in Olate Download (od) 3.4.1 uses an

Download | Adminphp | Olate |

Admin.php in Olate Download (od) 3.4.1 uses an MD5 hash of the admin username, user id, and group id, to compose the OD3_AutoLogin authentication cookie, which makes it easier for remote attackers to guess the cookie and access the Admin area.


Software vulnerabilities results 1 to 20 of 2820     
Page: 12345...142