Bloggeruniverse 'editcomments.php' SQL Injection Vulnerability

Bloggeruniverse is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GTA SA-MP server.cfg - Local Buffer Overflow

GTA SA-MP server.cfg Local Buffer Overflow Vulnerability 0day Date: 9-26-11 Author: SilentDream Software Link: http://team.sa-mp.com/files/samp03csvrR2-2win32.zip Tested on: XP SP3, Windows 7 Thanks to: corelanc0d3r & team, Metasploit, Exploit-db. No PPRs found app compiled with safeseh on, so th...

GTA SA-MP server.cfg Local Buffer Overflow Vulnerability

Exploit for windows platform in category local exploits GTA SA-MP server.cfg Local Buffer Overflow Vulnerability 0day Date: 9-26-11 Author: SilentDream Software Link: http://team.sa-mp.com/files/samp03csvrR2-2win32.zip Tested on: XP SP3, Windows 7 Thanks to: corelanc0d3r & team, Metasploit,...

KnFTP 1.0.0 Server - Multiple Buffer Overflows (PoC) (SEH)

KnFTP 1.0.0 Server - Multiple Buffer Overflows PoC SEH !/usr/bin/python Title: KnFTP Server Buffer Overflow Exploit DoS PoC From: The eh?-Team || The Great White Fuzz we're not sure yet Found by: loneferret kinda Bug that made me fuzz this app by Blake: http://www.exploit-db.com/exploits/17819/...

iBrowser Plugin v1.4.1 (lang) Local File Inclusion Vulnerability

Summary iBrowser is an image browser plugin for WYSIWYG editors like tinyMCE, SPAW, htmlAREA, Xinha and FCKeditor developed by net4visions. It allows image browsing, resizing on upload, directory management and more with the integration of the phpThumb image library. Description iBrowser suffers...

ScadaTEC ScadaPhone <= v5.3.11.1230 Stack Buffer Overflow

Exploit for windows platform in category local exploits $Id: scadaphonezip.rb 13728 2011-09-13 20:10:28Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...

Free MP3 CD Ripper 1.1 Local Buffer Overflow

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

FreeFloat FTP Server Multiple Remote Buffer Overflows

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

F-Secure (Multiple Products) - ActiveX HeapSpray Overwrite (SEH)

Exploit Title: F-Secure Multiple Products ActiveX Remote SEH Overwrite VulnerabilityHeap Spray Discovered Date: 24/05/2011 Author: 41.w4r10r Version: Multiple Tested on : Windows XP SP2 Eng, IE 6,7,8 Exploit-DB Notes: moved to 'local' since you have to run it as a "trusted site". Or run as local...

http-awstatstotals-exec NSE Script

Exploits a remote code execution vulnerability in Awstats Totals 1.0 up to 1.14 and possibly other products based on it CVE: 2008-3922. This vulnerability can be exploited through the GET variable sort. The script queries the web server with the command payload encoded using PHP's chr function:...

Apache Struts &lt; 2.2.0 Remote Command Execution

No description provided by source. $Id: strutscodeexec.rb 13586 2011-08-19 05:59:32Z bannedit $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...

Apache Struts < 2.2.0 Remote Command Execution

Exploit for multiple platform in category remote exploits $Id: strutscodeexec.rb 13586 2011-08-19 05:59:32Z bannedit $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information ...

awiki <= 20100125 Multiple LFI Vulnerabilities - Active Check

awiki is prone to multiple local file include LFI vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Sagem Router Fast 330434643504 - Telnet Authentication Bypass

Sagem Router Fast 330434643504 - Telnet Authentication Bypass !/home/bin/python Remote Exploit: SAGEM ROUTER FAST 3304/3464/3504 - Telnet Authentication bypass Date: 15-August-2011 Author: Elouafiq Ali Version: 3304-V1 / 3304-V2 / 3464 / 3504 Tested on: Linux Ubuntu 11.04, Linux Backtrack 5 Teste...

MS10-026 Microsoft MPEG Layer-3 Audio Stack Based Overflow

Exploit for windows platform in category remote exploits $Id: ms10026avinsamplespersec.rb 13555 2011-08-13 02:15:05Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more...

Adobe RoboHelp 9 - DOM Cross-Site Scripting

Details for the CVE - 2011-2133 - Adobe RoboHelp9 DOM Cross Site Scripting below have been published at the following URLs: PDF version: http://www.security-assessment.com/files/documents/advisory/AdobeRoboHelp9-DOMXSS.pdf HTML version:...

WordPress ProPlayer Plugin 'playlist-controller.php' Parameter SQL Injection Vulnerability

The ProPlayer plugin for WordPress is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

ABBS Electronic Flash Cards 2.1 (FCD File) Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'ABBS Electronic...

ABBS Audio Media Player 3.0 (LST File) Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'ABBS Audio Media...

MyBB MyTabs Plugin 'tab' Parameter SQLi Vulnerability

MyBB with MyTabs Plugin is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...