9763 matches found
CVE-2003-1178
CVE-2003-1178 affects Advanced Poll 2.0.2. It exposes a vulnerability in comments.php where the (1) id, (2) template_set, or (3) action parameter can cause evaluated PHP code to run, allowing remote code execution. Impact is consistent with arbitrary PHP execution (no authentication required as p...
PHP Advanced Transfer Manager < 1.22 Arbitrary File Upload
Binary data 2886.prm...
Advanced Guestbook 2.3.1
There is an SQL Injection in Advanced Guestbook 2.3.1 For Example: http://www.yourdomain.com/yourguestbookdirectory/index.php?entry=' or http://www.yourdomain.com/yourguestbookdirectory/index.php?entry=27 Yours, SpyHat...
Advanced Guestbook 2.3.12.4 - index.php?Entry SQL Injection
Advanced Guestbook 2.3.12.4 - index.php?Entry SQL Injection source: https://www.securityfocus.com/bid/13548/info Advanced Guestbook is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allo...
Advanced Guestbook 2.3.1/2.4 - 'index.php?Entry' SQL Injection
source: https://www.securityfocus.com/bid/13548/info Advanced Guestbook is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or modif...
PHP Advanced Transfer Manager <= 1.21 Multiple Vulnerabilities
The version of PHP Advanced Transfer Manager installed on the remote host allows authenticated users to upload arbitrary files and then run them subject to the privileges of the web server user. It also allows unauthenticated users to read arbitrary files on the remote host and possibly even run...
PHP Advanced Transfer Manager 1.21 - Arbitrary File Upload
PHP Advanced Transfer Manager 1.21 - Arbitrary File Upload source: https://www.securityfocus.com/bid/13542/info PHP Advanced Transfer Manager is prone to a vulnerability regarding the uploading of arbitrary files. If successfully exploited, an attacker can execute arbitrary script code on a...
PHP Advanced Transfer Manager v1.21
oooo...oooo.oooooooo8.ooooooooooo .8888o..88.888........88..888..88 .88.888o88..888oooooo.....888 .88...8888.........888....888 o88o....88.o88oooo888....o888o Network security team nst.void.ru Title: PHP Advanced Transfer Manager v1.21 Bug found by: nst Date: 06.05.2005 Owner: phpatm.free.fr...
PHP Advanced Transfer Manager 1.21 - Arbitrary File Upload
source: https://www.securityfocus.com/bid/13542/info PHP Advanced Transfer Manager is prone to a vulnerability regarding the uploading of arbitrary files. If successfully exploited, an attacker can execute arbitrary script code on a vulnerable server. This can lead to unauthorized access in the...
MS Windows (WINS) Remote Buffer Overflow Exploit (v.3)
No description provided by source. / Windows Internet Name Service WINS Remote Heap Buffer Overflow ------------------------------------ ------------------------------------ Advisory credits: ---------------- Nicolas Waisman of Immunity Inc. www.immunitysec.com Advisory link: ----------------...
CVE-2001-1423
The CVE-2001-1423 entry describes a privilege-escalation vulnerability in Advanced Poll prior to version 1.61 when using a flat-file database. The issue arises when an attacker can set the logged_in parameter to gain elevated privileges remotely. Documented impacts indicate partial confidentialit...
CVE-2001-1423
Advanced Poll before 1.61, when using a flat file database, allows remote attackers to gain privileges by setting the loggedin parameter...
[Full-Disclosure] Crashes and socket unreacheable in Armagetron Advanced 0.2.7.0
Luigi Auriemma Application: Armagetron http://armagetron.sourceforge.net Armagetron Advanced http://armagetronad.sourceforge.net Versions: Armagetron = 0.2.6.0 Armagetron Advanced = 0.2.7.0 Platforms: multiplatform Windows, Linux and others Bugs: A crash caused by big descriptor ID B crash caused...
PT-2005-1444 · Armagetron · Armagetron +1
Name of the Vulnerable Software and Affected Versions: Armagetron versions 0.2.6.0 and earlier Armagetron Advanced versions 0.2.7.0 and earlier Description: The issue allows remote attackers to cause a denial of service, resulting in an application crash. This can be achieved by sending a packet...
Armagetron Advanced <= 0.2.7.0 Server Crash Exploit
Exploit for unknown platform in category dos / poc =================================================== Armagetron Advanced include include include ifdef WIN32 include / inserted win32.h /str0ke / / Header file used for manage errors in Windows It support socket and errno too this header replace t...
Armagetron Advanced 0.2.7.0 - Server Crash
Armagetron Advanced 0.2.7.0 - Server Crash / by Luigi Auriemma / include include include include ifdef WIN32 include / inserted win32.h /str0ke / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void...
Armagetron Advanced <= 0.2.7.0 Server Crash Exploit
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h ifdef WIN32 include winsock.h / inserted win32.h /str0ke / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous...
Armagetron Advanced 0.2.7.0 - Server Crash
/ by Luigi Auriemma / include include include include ifdef WIN32 include / inserted win32.h /str0ke / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error; switchWSAGetLastError ca...
AWStats configdir Remote Command Execution Exploit (perl code)
Exploit for cgi platform in category web applications ============================================================== AWStats configdir Remote Command Execution Exploit perl code ============================================================== !/usr/bin/perl ---GHC---------------------------------...
AWStats configdir Remote Command Execution Exploit (perl code)
No description provided by source. !/usr/bin/perl ---GHC--------------------------------- Remote command execution exploit Product: Advanced Web Statistics 6.0 - 6.2 URL:http://awstats.sourceforge.net Greets & respects to our friends: 1dt.w0lf and all rst.void.ru Special greets 2 d0G4 & cr0n for...