CVE-2005-0622

RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to view the PHP source code via an HTTP GET request for a filename with a trailing 1 . dot or 2 space...

CVE-2005-0622

RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to view the PHP source code via an HTTP GET request for a filename with a trailing 1 . dot or 2 space...

RaidenHTTPD < 1.1.34 Multiple Remote Vulnerabilities

The remote host is running RaidenHTTPD 1.1.33 or older. Ther are various flaws in the remote version of this server which may allow an attacker to disclose the source code of any PHP file hosted on the remote server, or to execute arbitrary code on the remote with the privileges of the remote...

Blazix Trailing Character JSP Source Disclosure

The remote host is running the Blazix web server, a web server written in Java. The installed version of Blazix discloses the source code of its JSP pages by requesting the pages while appending a plus sign or a backslash to its name. An attacker may use this flaw to get the source code of your...

lighttpd script source code leak

It's possible to retrieve CGI script source code...

CVE-2005-0425

Affected product/versions: IBM WebSphere Application Server 5.0, 5.1, and 6.0 running on Windows. Vulnerability: An information-disclosure flaw where requesting a JSP file with a crafted URL causes the file-serving servlet to process the request instead of the JSP engine, exposing the JSP source ...

Sympa < 4.1.3 src/queue.c Remote Buffer Overflow

Binary data 2614.prm...

[SA14274] IBM WebSphere Application Server JSP Source Code Disclosure

TITLE: IBM WebSphere Application Server JSP Source Code Disclosure SECUNIA ADVISORY ID: SA14274 VERIFY ADVISORY: http://secunia.com/advisories/14274/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: IBM WebSphere Application Server 6.x...

IBM WebSphere Java Server Pages &#40;JSP&#41; source code leak

No description provided...

CVE-2005-0286

eMotion MediaPartner Web Server 5.0 and 5.1 allows remote attackers to obtain sensitive information via an HTTP request for a .bhtml file that contains a 1 . dot or 2 + plus sign at the end, which returns the source code for that file...

SUSE-SA:2005:002: php4, mod_php4

The remote host is missing the patch for the advisory SUSE-SA:2005:002 php4, modphp4. PHP is a well known, widely-used scripting language often used within web server setups. Stefan Esser and Marcus Boerger found several buffer overflow problems in the unserializer functions of PHP CVE-2004-1019...

Linux Kernel 2.4 uselib() Privilege Elevation Exploit

Exploit for linux platform in category local exploits ===================================================== Linux Kernel 2.4 uselib Privilege Elevation Exploit ===================================================== / Linux kernel 2.4 uselib privilege elevation exploit. original exploit source from...

[SA13718] b2evolution &quot;title&quot; SQL Injection Vulnerability

TITLE: b2evolution "title" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA13718 VERIFY ADVISORY: http://secunia.com/advisories/13718/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: b2evolution 0.x http://secunia.com/product/2126/ DESCRIPTION: r0ut3r ha...

CVE-2004-2661

Soft3304 04WebServer before 1.41 does not properly check file names, which allows remote attackers to obtain sensitive information CGI source code...

Apache on Mac OS X HFS+ Arbitrary File Source Disclosure

The remote host seems to be running Mac OS X or Mac OS X Server. There is a flaw in the remote web server that allows an attacker to obtain the source code of any given file on the remote web server by reading it through its data fork directly. An attacker may exploit this flaw to obtain the sour...

MiniShare Remote Buffer Overflow Exploit (c source)

Exploit for unknown platform in category remote exploits =================================================== MiniShare Remote Buffer Overflow Exploit c source =================================================== / email protected:/Exploits/minishare$ ./mini-exploit 10.20.30.2 MiniShare remote buff...

win xp/2000/2003 Download File and Exec 241 bytes

win xp/2000/2003 Download File and Exec 241 bytes. Shellcode exploit for win32 platform / ----------------------------------------------------------------------- downloadurlv31.c - Download file and exec shellcode for Overflow exploit Copyright C 2000-2004 HUC All Rights Reserved. Author : lion :...

Multiple Macromedia JRun bugs

DoS, source code leakage, session hijacking, crossite scripting, buffer overflow...

Macromedia JRun Server contains an information disclosure vulnerability

Overview An information disclosure vulnerability exists in the Macromedia JRun that may allow an attacker to view the source code of files in the web root directory. Description Macromedia JRun is an application server that works with most popular web servers such as Apache and IIS. Macromedia...

Debian DSA-170-1 : tomcat4 - source code disclosure

A security vulnerability has been found in all Tomcat 4.x releases. This problem allows an attacker to use a specially crafted URL to return the unprocessed source code of a JSP page, or, under special circumstances, a static resource which would otherwise have been protected by security...