by admin Nov 3, 2025
The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form variable.
by admin Nov 3, 2025
The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed.
by admin Nov 3, 2025
After an unattended installation of Windows NT 4.0, an installation file could include sensitive information such as the local Administrator password.
by admin Nov 3, 2025
The Bluestone Sapphire web server allows session hijacking via easily guessable session IDs.
by admin Nov 3, 2025
The Sybase PowerDynamo personal web server allows attackers to read arbitrary files through a .. (dot dot) attack.
