30 matches found
Hootoo HT-05 - Remote Code Execution (Metasploit)
Hootoo HT-05 - Remote Code Execution Metasploit require 'msf/core' require 'net/http' require "uri" class MetasploitModule 'Hotoo HT-05 remote shell exploit', 'Description' = %q This module tries to open a door in the device by exploiting the RemoteCodeExecution by creating a backdoor inside the...
Hootoo HT-05 - Remote Code Execution Exploit
require 'msf/core' require 'net/http' require "uri" class MetasploitModule 'Hootoo HT-05 remote shell exploit', 'Description' = %q This module tries to open a door in the device by exploiting the RemoteCodeExecution by creating a backdoor inside the device This exploit was written by Andrei Manol...
Hootoo HT-05 - Remote Code Execution (Metasploit)
require 'msf/core' require 'net/http' require "uri" class MetasploitModule 'Hotoo HT-05 remote shell exploit', 'Description' = %q This module tries to open a door in the device by exploiting the RemoteCodeExecution by creating a backdoor inside the device This exploit was written by Andrei Manole...
Static HTTP Server 1.0 - Local Overflow (SEH)
Static HTTP Server 1.0 - Local Overflow SEH !/usr/bin/env python import os TitleStatic HTTP Server SEH Overflow - HTTP Config - httptiplist Discovered and ReportedJune 2013 Discovered/Exploited ByJacob Holcomb/Gimppy, Security Analyst @ Independent Security Evaluators...
SA-CONTRIB-2012-071 - Glossify - Cross Site Scripting (XSS) - Unsupported
CVE: CVE-2012-2309 This module generates internal node to node, node to taxonomy or node to external URL links crosslinks automatically - ideal for SEO of your site's pages and partner pages. This module does not protect against an Cross Site Scripting XSS attack. The vulnerability is mitigated b...
Pligg Installation File XSS Vulnerability
Title: Pligg Installation File XSS Vulnerability Vendor: Pligg Product: Pligg CMS Tested Version: 1.0.4 Threat Class: XSS Severity: Medium Remote: yes Local: no Discovered By: Andrei Rimsa Alvares ===== Description ===== Pligg is prone to a XSS vulnerability in the installation file:...
Devana v1.6.6 SQL Injection vulnerability
Exploit for php platform in category web applications ========================================= Devana v1.6.6 SQL Injection vulnerability ========================================= Exploit Title: Devana SQL Injection vulnerability Date: 28.03.2010 Author: Valentin Category: webapps/0day Version:...
Devana - SQL Injection
Devana - SQL Injection Exploit Title: Devana SQL Injection vulnerability Date: 28.03.2010 Author: Valentin Category: webapps/0day Version: Tested on: Debian lenny, Apache2, MySQL5 CVE : Code : :: General information :: Devana SQL injection vulnerability detected :: by Valentin Hoebel ::...
GLSA-200708-10 : MySQL: Denial of Service and information leakage
The remote host is affected by the vulnerability described in GLSA-200708-10 MySQL: Denial of Service and information leakage Dormando reported a vulnerability within the handling of password packets in the connection protocol CVE-2007-3780. Andrei Elkin also found that the 'CREATE TABLE LIKE'...
GLSA-200501-37 : GraphicsMagick: PSD decoding heap overflow
The remote host is affected by the vulnerability described in GLSA-200501-37 GraphicsMagick: PSD decoding heap overflow Andrei Nigmatulin discovered that handling a Photoshop Document PSD file with more than 24 layers in ImageMagick could trigger a heap overflow GLSA 200501-26. GraphicsMagick is...