6827 matches found
Copyright 2008 Future US Cross Site Scripting
NULL CODE SERVICES www.nullcode.com.ar Hunting Security Bugs! +===================================================================================================================+ + Copyright 2008 - Copyright 2008 Future US //Cross-site scripting XSS Remote Java Execution +...
TeamSpeak 2.0.23.17 - Remote File Disclosure
TeamSpeak 2.0.23.17 - Remote File Disclosure input style="background-color: 313...
OTSTurntables 1.00.027 .ofl Stack Overflow
OTSTurntables 1.00.027 .ofl Local Stack Overflow Exploit Discovered & exploited bY suN8Hclf [email protected], blacksideofthesun.linuxsecured.net Tested on: Windows XP SP2 Polish Full patched Only 274 bytes for shellcode. Wanna more, exploit SEH !!! Thanks to Myo and to everyone who knows wh...
DZcms 3.1 - SQL Injection
Application: DZcms v.3.1 Vendor Name: CyDezines Vendor Url: http://www.cydezines.com Bug Type: dzCMS SQL Injection Vulnerability Exploitation: Remote Severity: High Solution Status: Unpatched Google Dork: "Powered by DZcms" POC:...
Microsoft Internet Explorer XML Handling Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise the application and possibly the underlying computer. Faile...
VulnCheck KEV: CVE-2008-5227
Unspecified vulnerability in PHPCow allows remote attackers to execute arbitrary code via unknown vectors, related to a "file inclusion vulnerability," as exploited in the wild in November 2008...
SuSE 10 Security Update : Acrobat Reader (ZYPP Patch Number 5746)
The acroread package was update to fix several security vulnerabilities in the JavaScript engine. CVE-2008-2992 / CVE-2008-2549 / CVE-2008-4812 / CVE-2008-4813 / CVE-2008-4817 / CVE-2008-4816 / CVE-2008-4814 / CVE-2008-4815 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description...
LoveCMS 1.6.2 Final (Simple Forum 3.1d) Change Admin Password Exploit
Exploit for unknown platform in category web applications ===================================================================== LoveCMS 1.6.2 Final Simple Forum 3.1d Change Admin Password Exploit ===================================================================== 'en', 'forumWidth' = '500',...
MemHT Portal 4.0 - Remote Code Execution
MemHT Portal 4.0 - Remote Code Execution !/usr/bin/perl =about MemHT Portal = 4.0 Perl exploit AUTHOR: Discovered and written by Ams ax330d doggy gmail dot com DESCRIPTION: Here we are able to make SQL-injection due to weak filtering. So, look at inc/incheader.php lines 74, where hides code...
tlads-insecure.txt
TlAds v 1 = Insecure Cookie Handling Found By : x0r - Evolution Team Download: http://www.easy-script.com/scripts-dl/tlads-1.zip Exploit: javascript:document.cookie = "tlAdslogin=admin; path=/" Stupid Admin ! P0wned :P Grazie Al Mio Amore...Ti Amo Da Morire Margherita :P Proud To Be Italian...
CVE-2008-4250
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as exploited in the wild ...
VulnCheck KEV: CVE-2008-4250
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as exploited in the...
CVE-2008-4687
creationtimestamp| type| source ---|---|--- 2008-10-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6768 2018-05-10 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44611 2018-05-29 15:50:33+00:00| seen|...
Microsoft Windows WRITE_ANDX SMB command handling Kernel DoS
Some days ago i have discovered a DoS in Windows Vista. Here is the advisory with a detailed description about the vulnerability that will help to Microsoft they have been already notified about the bug to correct it as soon as possible, and it will help you if you need to add any rule for your...
VulnCheck KEV: CVE-2008-3919
Unspecified vulnerability in multiple JustSystems Ichitaro products allows remote attackers to execute arbitrary code via a crafted JTD document, as exploited in the wild in August 2008...
Design/Logic Flaw
The System.setClipboard method in ActionScript in Adobe Flash Player 9.0.124.0 and earlier allows remote attackers to populate the clipboard with a URL that is difficult to delete and does not require user interaction to populate the clipboard, as exploited in the wild in August 2008...
CVE-2008-3873
The System.setClipboard method in ActionScript in Adobe Flash Player 9.0.124.0 and earlier allows remote attackers to populate the clipboard with a URL that is difficult to delete and does not require user interaction to populate the clipboard, as exploited in the wild in August 2008...
Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability
The host is running Adobe Presenter, which prone to to input validation errors which can be exploited by malicious people to conduct cross-site scripting vulnerability. OpenVAS Vulnerability Test $Id: secpodadobepresenterxssvuln900110.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: Adobe...
CVE-2008-3648
nslookup.exe in Microsoft Windows XP SP2 allows user-assisted remote attackers to execute arbitrary code, as demonstrated by an attempted DNS zone transfer, and as exploited in the wild in August 2008...
Code injection
nslookup.exe in Microsoft Windows XP SP2 allows user-assisted remote attackers to execute arbitrary code, as demonstrated by an attempted DNS zone transfer, and as exploited in the wild in August 2008...