625 matches found
Microsoft Step-by-Step Interactive Training bookmark buffer overflow
Added: 05/04/2007 CVE: CVE-2006-3448 BID: 22484 OSVDB: 31883 Background Microsoft Step-by-Step Interactive Training is the engine used by various training programs. Problem A buffer overflow vulnerability in Microsoft Step-by-Step Interactive Training allows command execution when a specially...
CVE-2007-1621
PHP remote file inclusion vulnerability in templates/head.php in Active PHP Bookmark Notes APB 0.2.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the APBSETTINGStemplatepath parameter. NOTE: this issue might be related to CVE-2003-1254...
Remote file inclusion
PHP remote file inclusion vulnerability in templates/head.php in Active PHP Bookmark Notes APB 0.2.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the APBSETTINGStemplatepath parameter. NOTE: this issue might be related to CVE-2003-1254...
CVE-2007-1621
PHP remote file inclusion vulnerability in templates/head.php in Active PHP Bookmark Notes APB 0.2.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the APBSETTINGStemplatepath parameter. NOTE: this issue might be related to CVE-2003-1254...
Active PHP Bookmark Notes <= 0.2.5 Remote File Inclusion Exploit
No description provided by source. !/usr/bin/perl Active PHP Bookmark Notes 0.2.5 = Remote File Inclusion Exploit Download S: http://sourceforge.net/projects/apbn/ Discovered & Coded by: GloDM = Mahmoodali perl GloD.pl target cmd shell location cmd shell variable cmd shell example:...
Active PHP Bookmark Notes 0.2.5 - Remote File Inclusion
Active PHP Bookmark Notes 0.2.5 - Remote File Inclusion !/usr/bin/perl Active PHP Bookmark Notes 0.2.5 cmd shell example: Ex: http://localhost/apbn/templates/head.php?APBSETTINGStemplatepath=http://localhost/tryag.txt Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group use LWP::UserAgent;...
Active PHP Bookmark Notes <= 0.2.5 Remote File Inclusion Exploit
Exploit for unknown platform in category web applications ================================================================ Active PHP Bookmark Notes cmd shell example: Ex: http://localhost/apbn/templates/head.php?APBSETTINGStemplatepath=http://localhost/tryag.txt Greetz To: Tryag-Team &...
Active PHP Bookmark Notes 0.2.5 - Remote File Inclusion
!/usr/bin/perl Active PHP Bookmark Notes 0.2.5 cmd shell example: Ex: http://localhost/apbn/templates/head.php?APBSETTINGStemplatepath=http://localhost/tryag.txt Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group use LWP::UserAgent; $Path = $ARGV0; $Pathtocmd = $ARGV1; $cmdv = $ARGV2;...
Quicksilver Social Bookmark information leak
User login and pasword are logged to Console.log file...
[Full-disclosure] Firefox bookmark cross-domain surfing vulnerability
There is an interesting vulnerability in how Firefox handles bookmarks. The flaw allows the attacker to steal credentials from commonly used browser start sites for Firefox, Google is the seldom changed default; that means exposure of GMail authentication cookies, etc. The problem: it is relative...
Microsoft Step-by-Step Interactive Training buffer overflow
Buffer overflow on bokmarks files handling .cbl, .cbm, .cbo...
Online BookMarks Multiple SQL Injection/XSS Vulnerabilities
3/12/06 Vigilon Advisory http://www.vigilon.com/vg-onlinebookmarks-3-12-2006.txt ------------------------------------------------------- Application: OnLine Bookmarks Web Site: http://www.frech.ch/online-bookmarks/ Versions: 0.6.12 Platform: linux, windows, freebsd, sun Bug: Cross Site Scripting...
Phil's Bookmark script admin By-pass
google dork : "Phil's Bookmark" and lasth path add to "admin.php?edit=item id" example: www.site.com/bookmarks/admin.php?edit=1 www.ayyildiz.org...
Phils Bookmark Script - admin.php Authentication Bypass
Phils Bookmark Script - admin.php Authentication Bypass source: https://www.securityfocus.com/bid/17878/info Phil's Bookmark script is prone to an authentication-bypass vulnerability. The issue occurs because the affected script fails to prompt for authentication credentials. An attacker can...
Phil's Bookmark Script - 'admin.php' Authentication Bypass
source: https://www.securityfocus.com/bid/17878/info Phil's Bookmark script is prone to an authentication-bypass vulnerability. The issue occurs because the affected script fails to prompt for authentication credentials. An attacker can exploit this issue to bypass authentication and gain admin...
JVN#28011334 Opera bookmark function vulnerability
Impact An user cannot start Opera Web Browser because it crashes during startup. Solution Products Affected Opera for Windows, earlier than version 8.51 Opera for MacOS, earlier than version 8.51...
CVE-2005-1212
Buffer overflow in Microsoft Step-by-Step Interactive Training orun32.exe allows remote attackers to execute arbitrary code via a bookmark link file .cbo, cbl, or .cbm extension with a long User field...
Microsoft Step-By-Step Interactive Training Bookmark Link Buffer Overflow Vulnerability
Description Microsoft Step-By-Step Interactive Training is prone to a buffer overflow vulnerability. This is due to a boundary condition error related to validation of data in bookmark link files. As bookmark link files may originate from an external source, this issue may be remotely exploitable...
CVE-2005-0150
Firefox before 1.0 allows the user to store a 1 javascript: or 2 data: URLs as a Livefeed bookmark, then executes it in the security context of the currently loaded page when the user later accesses the bookmark, which could allow remote attackers to execute arbitrary code...
CVE-2005-1045
OpenText FirstClass 8.0 client does not properly sanitize strings before passing them to the Windows ShellExecute API, which allows remote attackers to execute arbitrary commands via a UNC path in a bookmark...