CVE-2005-2012
published 2005-06-20CVE-2005-2012: Multiple SQL injection vulnerabilities in login in paFAQ 1.0 Beta 4 allow remote attackers to execute arbitrary SQL commands and bypass authentication via the…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.19%
64.0th percentile
Multiple SQL injection vulnerabilities in login in paFAQ 1.0 Beta 4 allow remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) id parameters.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| php_arena | pafaq | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat2.1LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-538j-p5p8-25h2: Multiple SQL injection vulnerabilities in login in paFAQ 1
ghsa_unreviewed·2022-05-01
CVE-2005-2012 [HIGH] GHSA-538j-p5p8-25h2: Multiple SQL injection vulnerabilities in login in paFAQ 1
Multiple SQL injection vulnerabilities in login in paFAQ 1.0 Beta 4 allow remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) id parameters.
Red Hat
kernel: denial of service due to AMD Erratum #121
vendor_redhat·2012-06-12·CVSS 2.1
CVE-2012-2934 [LOW] kernel: denial of service due to AMD Erratum #121
kernel: denial of service due to AMD Erratum #121
Xen 4.0, and 4.1, when running a 64-bit PV guest on "older" AMD CPUs, does not properly protect against a certain AMD processor bug, which allows local guest OS users to cause a denial of service (host hang) via sequential execution of instructions across a non-canonical boundary, a different vulnerability than CVE-2012-0217.
Statement: This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6, and Red Hat Enterprise MRG, as those versions have a guard page between the end of the user-mode accessible virtual address space and the beginning of the non-canonical area due to CVE-2005-1764 fix.
This issue did affect the versions of Xen hypervisor as shipped with Red Hat Enterprise Linux 5. A k
No detection rules found.
Exploit-DB
SkinCrafter3 vs2005 3.8.1.0 - Multiple ActiveX Buffer Overflows
exploitdb·2015-01-05
CVE-2012-2271 SkinCrafter3 vs2005 3.8.1.0 - Multiple ActiveX Buffer Overflows
SkinCrafter3 vs2005 3.8.1.0 - Multiple ActiveX Buffer Overflows
---
ActiveX Buffer Overflow in SkinCrafter3_vs2005
Affected version=3.8.1.0
Vendor Homepage:http://skincrafter.com/
Software Link:skincrafter.com/downloads/SkinCrafter_Demo_2005_2008_x86.zip
The vulnerability lies in the COM component used by the product SkinCrafter3_vs2005.dll.
Description: Skin Crafter is a software that is used to create custom skins for different windows applications.
SkinCrafter is compatible with Windows XP / Vista / 7 / 8 and earlier versions.
Vulnerability tested on Windows Xp Sp3 (EN),with IE6
Author: metacom
Vulnerability discovered:04.01.2015
junk1 = "";
while(junk1.length
################################################################################
ActiveX Buffer Overflow in SkinCrafter
Exploit-DB
SkinCrafter ActiveX Control 3.0 - Local Buffer Overflow
exploitdb·2012-05-17·CVSS 10.0
CVE-2012-2271 [CRITICAL] SkinCrafter ActiveX Control 3.0 - Local Buffer Overflow
SkinCrafter ActiveX Control 3.0 - Local Buffer Overflow
---
# Software : SkinCrafter from NMSoft Technologies
# Version : SkinCrafter version 3.0
# Title : Buffer overflow in skincrafter3_vs2005.dll of skinCrafter vs3.0
# Link : http://www.skincrafter.com/downloads/SkinCrafter_Demo_2005_2008_x86.zip
# Date : May 17, 2012
# Tested on : XP SP2
# The vulnerability lies in the COM component used by the product SkinCrafter
# from DMSoft Technologies(http://www.dmsofttech.com/projects.html). This COM
# component, SkinCrafter3_vs2005.dll, implememnts a function InitLicenKeys,
# whose parameter is not checked for the bounds, hence leading to the
# overflow condition
====
POC:
====
Exploit !!!!!!!!!!!!!!!!!!!!!!!!!
'Exploit title: Buffer overflow in skincrafter3_vs2005.dll of skinCrafter vs
Exploit-DB
PBLang Bulletin Board System - Local File Inclusion
exploitdb·2012-03-13
CVE-2005-2892 PBLang Bulletin Board System - Local File Inclusion
PBLang Bulletin Board System - Local File Inclusion
---
||\\ || || || |-\\ //-| ____ ________ __________
|| \\ || || || | |\\ //| | | \ | ______| |_______/ /
|| \\ || || || | | \\ // | | | _ \ | | / /
|| \\ || || || | | \\ // | | | |_) | | |______ /\`'__\ / /
|| \\ || || || | | \\ // | | | _ < | ______| \ \ \/ / /
|| \\ || ||_______|| | | \\// | | | |_) | | |______ \ \_\ / /
|| \\|| |_________| |_| |_| |_____/ |________| \/_/ /_/
# Exploit Title: [PBLang local file include vulnerability]
# Google Dork: ["Software PBLang 4.67.16.a"]
# Date: [12/03/2012]
# Author: ~Pseudo: [Number 7];
~ Twitter:[@TunisianSeven];
~ Blog: [http://tunisianseven.blogspot.com/]
# Software Link: [http://garr.dl.sourceforge.net/project/pblang/Full%20versions/PBLang%204.67.16.a%20no%20graphics/PBLang-4.67.16.a-nog
Exploit-DB
PAFaq - Administrator 'Username' SQL Injection
exploitdb·2005-06-20
CVE-2005-2012 PAFaq - Administrator 'Username' SQL Injection
PAFaq - Administrator 'Username' SQL Injection
---
source: https://www.securityfocus.com/bid/14003/info
paFaq is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query.
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
http://www.example.com/pafaq/admin/index.php?act=login&username='%20UNION%20SELECT%20id,name,'3858f62230ac3c915f300c664312c63f',email,notify,permissions,session%20FROM%20pafaq_admins%20WHERE%201/*&password=foobar
No writeups or analysis indexed.
2005-06-20
Published