[CLOSE] OSVDB ID : 21128 - Disclosed: 2005-11-28

Description:

r0t has reported some vulnerabilities in K-Search, which can be exploited by malicious users to conduct SQL injection attacks. Input passed to the "id", "stat", and "source" parameters in "index.php" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. 1. Input passed to the "term" parameter in "index.php" isn't properly sanitised before being used in a SQL query.This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. examples: /index.php?term=%23%25%23term%23%25%23&sm =Mekl%E7t&source=1&req=search /index.php?term=%28%27r0t+checker%27%29&sm =Mekl%E7t&source=1&req=search 2. Input passed to the many parameters in "index.php" isn't properly sanitised before being used in a SQL query (Below examples).This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. examples: /index.php?req=edit&id=[SQL] /index.php?req=view&act=stat_all&stat=[SQL] /index.php?req=view&act=status&id=1&stat=[SQL] /index.php?req=view&act=status&id=[SQL] /index.php?req=delsite&id=[SQL] /index.php?req=search&source=[SQL] 3. Into "/index.php?req=add" , upload image parameters isn't properly sanitised before being used in a SQL query. Attacker can get full instalisation path.

[CLOSE] OSVDB ID : 21127 - Disclosed: 2005-11-28

Description:

K-Search contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'id', 'stat' and 'source' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 65806 - Disclosed: 2010-06-22

Description:

K-Search contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'term' parameter upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 68182 - Disclosed: 2010-09-11

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 55759 - Disclosed: 2009-06-29

Description:

K2 Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'category' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 68699 - Disclosed: 2010-10-10

Description:

K2Editor is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening certain text files from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 80457 - Disclosed: 2012-03-19

Description:

K7 AntiVirus contains a flaw related to the anti-virus / anti-malware scanning functionality. The issue is triggered when a context-dependent attacker sends a malformed RAR file with an initial MZ sequence. This type of file will not be handled properly by the software and may allow an attacker to bypass the scanning allowing for the delivery of malware.

[CLOSE] OSVDB ID : 80404 - Disclosed: 2012-03-19

Description:

K7 Antivirus contains a flaw related to the anti-virus / anti-malware scanning functionality. This may allow a context-dependent attacker to use a specially crafted TAR file in order to bypass the scanning functionality, allowing for the delivery of malware.

[CLOSE] OSVDB ID : 80496 - Disclosed: 2012-03-19

Description:

K7 AntiVirus contains a flaw related to the anti-virus / anti-malware scanning functionality. The issue is triggered when a context-dependent attacker sends a malformed TGZ (.tar.gz) file. This type of file will not be handled properly by the software and may allow an attacker to bypass the scanning allowing for the delivery of malware.

[CLOSE] OSVDB ID : 50764 - Disclosed: 2008-12-09

Description:

(Description Provided by CVE) : K7AntiVirus 7.10.541 and possibly 7.10.454, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit.

[CLOSE] OSVDB ID : 77240 - Disclosed: 2007-01-10

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 75823 - Disclosed: 2011-01-28

Description:

(Description Provided by CVE) : ka-Map 1.0-20070205 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by test.php and certain other files.

[CLOSE] OSVDB ID : 9897 - Disclosed: 1999-02-19

Description:

(Description Provided by CVE) : Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges.

[CLOSE] OSVDB ID : 79654 - Disclosed: 2012-02-23

Description:

Kadu contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via SMS or user status messages before returning it for the viewing of a user in the chat history. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 23220 - Disclosed: 2006-02-15

Description:

(Description Provided by CVE) : Kadu 0.4.3 allows remote attackers to cause a denial of service (application crash) via a large number of image send requests.

[CLOSE] OSVDB ID : 21215 - Disclosed: 2005-11-28

Description:

(Description Provided by CVE) : Kadu 0.4.2 and 0.5.0pre allows remote attackers to cause a denial of service (crash or generated traffic) via a malformed message, possibly with incomplete information.

[CLOSE] OSVDB ID : 60024 - Disclosed: 2002-03-05

Description:

(Description Provided by CVE) : Format string vulnerability in Kaffe OpenVM 1.0.6 and earlier allows local users to execute arbitrary code, when a java.lang.NoClassDefFoundError is thrown, via format specifiers in the forName attribute.

[CLOSE] OSVDB ID : 11197 - Disclosed: 2004-10-25

Description:

(Description Provided by CVE) : Buffer overflow in the http_open function in Kaffeine before 0.5, whose code is also used in gxine before 0.3.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long Content-Type header for a Real Audio Media (.ram) playlist file.

[CLOSE] OSVDB ID : 5959 - Disclosed: 2004-05-03

Description:

Kaffeine's Mozilla plugin contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the plugin not properly sanitizing URLs. If an attacker provides a specially crafted URL using backticks, they can embed shell commands that will be executed by the victim.

[CLOSE] OSVDB ID : 24377 - Disclosed: 2006-04-04

Description:

(Description Provided by CVE) : Buffer overflow in playlistimport.cpp in Kaffeine Player 0.4.2 through 0.7.1 allows user-assisted attackers to execute arbitrary code via long HTTP request headers when Kaffeine is "fetching remote playlists", which triggers the overflow in the http_peek function.

[CLOSE] OSVDB ID : 50876 - Disclosed: 2008-12-21

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in lib/image_upload.php in KafooeyBlog 1.55b allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file.

[CLOSE] OSVDB ID : 30349 - Disclosed: 2006-11-13

Description:

(Description Provided by CVE) : Kahua before 0.7, when running multiple applications under a single supervisor, grants application access on the basis of username instead of username and database name, which allows remote authenticated users to obtain unauthorized access if different databases assign the same username to different user accounts.

[CLOSE] OSVDB ID : 71068 - Disclosed: 2011-01-27

Description:

KaiBB contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the /admin/core/account.php script does not require multiple steps or explicit confirmation for sensitive transactions for account manipulation. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 76604 - Disclosed: 2011-10-19

Description:

KaiBB contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'Referer' HTTP header upon submission to the acp/index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 69346 - Disclosed: 2010-10-21

Description:

KaiBB allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to e.g. add an arbitrary forum or assign a user administrative privileges by tricking an administrative user into visiting a malicious web site.

[CLOSE] OSVDB ID : 76606 - Disclosed: 2011-10-19

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 80318 - Disclosed: 2011-10-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 76605 - Disclosed: 2011-10-19

Description:

KaiBB contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'checkbox' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 71885 - Disclosed: 2010-12-23

Description:

KaiBB contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker passes malformed input to the index.php script via the 'f' parameter, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 70210 - Disclosed: 2010-12-23

Description:

KaiBB contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php not properly sanitizing user-supplied input to the 'user' and 'term' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.