Siemens S55 is affected by an SMS confirmation message bypass vulnerability. This issue is due to a race condition error that allows a malicious programmer to send SMS messages from unsuspecting cellular telephone user's telephones while obscuring the confirmation request. This issue may allow a malicious programmer to develop an application that can send SMS messages without the cellular telephone user's knowledge.
Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues may be exploited to execute arbitrary code with root privileges.
Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues may be exploited to execute arbitrary code with root privileges.
Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues may be exploited to execute arbitrary code with root privileges.
OpenBB is affected by a private message disclosure vulnerability due to a design error that fails to validate user credentials. This vulnerability allows an attacker to read arbitrary private messages posted to the bulletin board, compromising confidentiality.
The PHP-Nuke Video Gallery module is affected by multiple SQL injection vulnerabilities. These vulnerabilities arise due to the application's failure to properly sanitize user-supplied input before using it in an SQL query. An attacker can exploit these issues to manipulate query logic, potentially gaining unauthorized access to sensitive information like the administrator password hash or corrupting the database data. It may also be possible to exploit latent vulnerabilities in the underlying database implementation.
OpenBB is affected by multiple input validation vulnerabilities. These vulnerabilities allow for SQL injection attacks and cross-site scripting (XSS) attacks. The SQL injection vulnerabilities can lead to unauthorized access to sensitive information and potential database corruption. The XSS vulnerabilities can be exploited to steal authentication credentials and perform other attacks.
Modular Site Management System (MSMS) is prone to an information disclosure issue that could allow an attacker to gain access to a server's configuration information. The vulnerability exists in version 0.2.1, but other versions may also be affected.
The vulnerabilities in Protector System for PHP-Nuke allow for cross-site scripting attacks and SQL injection attacks. These vulnerabilities can be exploited to reveal sensitive information, hijack user accounts, manipulate content, and attack the underlying database.
These vulnerabilities in Protector System module for PHP-Nuke can be exploited to reveal sensitive information, allow for account hijacking, content manipulation, and attacks against the underlying database.
Services By CQR