CVE-2012-0364

Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allow remote attackers to replace the configuration file via an upload request to an unspecified URL, aka Bug ID CSCtw55495...

Interspire Shopping Cart Insecure Permissions

========= Product: Interspire Shopping Cart ========= Problem: config/config.php MUST be httpd-readable inter-domain read access permitted, which is a problem on shared hosting ========= About product: What is Interspire Shopping Cart? Interspire Shopping Cart is the most feature rich, all-in-one...

ImageMagick: configuration files read from $CWD may allow arbitrary code execution

Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCOREINSTALLEDSUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory...

UNIX Gather .fetchmailrc Credentials

Post Module to obtain credentials saved for IMAP, POP and other mail retrieval protocols in fetchmail's .fetchmailrc This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'UNIX Gather .fetchmailrc...

[SECURITY] Fedora 16 Update: sudo-1.8.3p1-2.fc16

Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...

Pragyan CMS 3.0 - Remote File Disclosure

Title Pragyan CMS v 3.0 = Remote File Disclosure Author Or4nG.M4n Download http://space.dl.sourceforge.net/project/pragyan/pragyan/3.0/PragyanCMS-v3.0-beta.tar.bz2 vuln download.lib.php line 16 vuln index.php line 234 $GET'fileget' exploit...

WordPress Plugin Mailing List - Arbitrary File Download

WordPress Plugin Mailing List - Arbitrary File Download Exploit Title: Mailing List plugin for Wordpress Arbitrary file download Version: 1.4.2 Date: 2011-12-19 Author: 6Scan http://6scan.com security team Software Link: http://wordpress.org/extend/plugins/mailz/ Official fix: This advisory is...

WordPress Plugin Mailing List - Arbitrary File Download

Exploit Title: Mailing List plugin for Wordpress Arbitrary file download Version: 1.4.2 Date: 2011-12-19 Author: 6Scan http://6scan.com security team Software Link: http://wordpress.org/extend/plugins/mailz/ Official fix: This advisory is released after the vendor http://www.zingiri.com was...

Cross site scripting

Cross-site scripting XSS vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP formerly Aladdin HASP SRM run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies 7T IGSS 7 and other products, when Firefox 2.0 ...

CVE-2011-3339

Cross-site scripting XSS vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP formerly Aladdin HASP SRM run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies 7T IGSS 7 and other products, when Firefox 2.0 ...

CVE-2011-0291

The BlackBerry PlayBook service on the Research In Motion RIM BlackBerry PlayBook tablet with software before 1.0.8.6067 allows local users to gain privileges via a crafted configuration file in a backup archive...

Design/Logic Flaw

The BlackBerry PlayBook service on the Research In Motion RIM BlackBerry PlayBook tablet with software before 1.0.8.6067 allows local users to gain privileges via a crafted configuration file in a backup archive...

CVE-2011-0291

The BlackBerry PlayBook service on the Research In Motion RIM BlackBerry PlayBook tablet with software before 1.0.8.6067 allows local users to gain privileges via a crafted configuration file in a backup archive...

Fedora Update for phpldapadmin FEDORA-2011-14986

Check for the Version of phpldapadmin OpenVAS Vulnerability Test Fedora Update for phpldapadmin FEDORA-2011-14986 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

dede 0day exploit tips-vulnerability warning-the black bar safety net

By: the zafe Encountered can write non-executable, the executable is not writable by the station maybe used on the dede:phpcopy'../data/common.inc.php','../data/cache/test.txt';/dede:php 然后 去 xxx.com/data/cache/test.txt 看 数据库 信息 If is a root then happy. If you are a regular user, first see what a...

Torsocks 1.2 Released - Socks friendly ssh and irssi with Tor

Torsocks 1.2 Released - Socks friendly ssh and irssi with Tor Torsocks is an application for Linux, BSD and Mac OSX that allows you to use network applications such as ssh and irssi with Tor. Torsocks allows you to use most socks-friendly applications in a safe way with Tor. It ensures that DNS...

GTA SA-MP server.cfg Buffer Overflow

$Id: gtasamp.rb 14076 2011-10-26 22:16:26Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

The Mystery of Duqu: Part Two

Our investigation and research of Duqu malware continues. In our previous report, we made two points: there are more drivers than it was previously thought; it is possible that there are additional modules. Besides those key points, we concluded that unlike the massive Stuxnet infections, Duqu...

GTA SA-MP - 'server.cfg' Local Buffer Overflow (Metasploit)

$Id: gtasamp.rb 14076 2011-10-26 22:16:26Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

The Mystery of Duqu

First of all, we feel it necessary to clarify some of the confusion surrounding the files and their names related to this incident. To get a full understanding of the situation you only need to know that we’re talking about just two malicious programs here at a minimum – the main module and a...