An SQL injection vulnerability exists in Mosaic Commerce, which allows an attacker to gain access to the admin username and password hash. This is done by sending a maliciously crafted HTTP request to the category.php page, with the cid parameter set to a malicious SQL statement.
CafeEngine is prone to multiple SQL injection vulnerabilities because it fails to properly sanitize user-supplied data before using it in an SQL query. An attacker can exploit these issues to manipulate SQL queries, disclose sensitive information, modify data, and potentially compromise the application and server.
A buffer overflow vulnerability exists in the PlainTextPassword property of the FFB6CC68-702D-4FE2-A8E7-4DE23835F0D2 ActiveX control. The vulnerability is caused due to a boundary error when handling a specially crafted argument passed to the PlainTextPassword property. This can be exploited to cause a stack-based buffer overflow by e.g. supplying a long string of data as argument. Successful exploitation may allow execution of arbitrary code.
A remote SQL injection vulnerability exists in myEvent 1.6. An attacker can exploit this vulnerability to inject arbitrary SQL commands in the application by sending a specially crafted HTTP request to the vulnerable script. This can allow the attacker to gain access to the application database and potentially gain access to sensitive information.
The vulnerability exists due to insufficient sanitization of user-supplied input in the 'sortby' parameter of the 'hits.php' script. A remote attacker can send a specially crafted HTTP request with a malicious 'X-Forwarded-For' header to bypass the IP block and execute arbitrary SQL commands in the application's database.
A vulnerability in the AstroSPACES profile.php script allows an attacker to inject arbitrary SQL commands. This can be exploited to gain access to the database and extract sensitive information such as usernames and passwords. The vulnerability is due to insufficient sanitization of user-supplied input to the 'id' parameter in the 'profile.php' script.
This exploit is related to the MS08-066 bulletin and is a k-plugin for Kartoffel. It exploits a flaw patched in the recent MS08-066 bulletin. Researchers interested in digging a little bit more into this flaw can take a look at afd!AfdGetRemoteAddress and/or check the blog post at http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx
VLC media player is vulnerable to a memory corruption vulnerability, which can be exploited by malicious remote attackers to compromise a user's system, by providing a specially crafted XSPF playlist file. The vulnerability exists because the VLC ('demux/playlist/xspf.c') library does not properly perform bounds-checking on an 'identifier' tag from an XSPF file before using it to index an array on the heap. This can be exploited to overwrite an arbitrary memory address in the context of the VLC media player process, and eventually get arbitrary code execution by opening a specially crafted file.
A SQL injection vulnerability exists in the success_story.php script of the PHP MY DATING application. An attacker can exploit this vulnerability to gain access to the database, including the version and database name, as well as the admin ID and password. This is done by sending a specially crafted HTTP request containing malicious SQL code to the vulnerable script.
This exploit is for Titan FTP server v6.26 build 630. It is a remote DoS exploit which is done on the 'SITE WHO' command. It requires the hostname, username and password to be provided as arguments. The exploit is coded in windows-1252 and uses a socket connection to connect to the hostname on port 21. It then sends the username and password and then sends the 'SITE WHO' command which causes the server to crash.