PHP 4.4.x < 4.4.9, 5.2.x < 5.2.8 DoS Vulnerability

PHP is prone to a denial of service DoS vulnerability because the application fails to handle certain file requests. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Camiro-CMS_beta-0.1 - FCKeditor Arbitrary File Upload

Camiro-CMSbeta-0.1 - FCKeditor Arbitrary File Upload ?php / ----------------------------------------------------------------- Camiro-CMSbeta-0.1 fckeditor Remote Arbitrary File Upload Exploit ----------------------------------------------------------------- Download :...

OSSIM repository_attachment.php页面任意文件上传漏洞

BUGTRAQ ID: 37377 OSSIM即开源安全信息管理（Open Source Security Information Management），是一个非常流行和完整的开源安全管理系统。 OSSIM的ossiminstall/repository/repositoryattachment.php脚本没有正确地执行安全检查，用户可以向Webroot中的文件夹上传带有任意扩展名的文件。如果用户上传了包含有某些Web Shell的PHP脚本，就会导致执行任意PHP代码。 AlienVault OSSIM 2.2 AlienVault OSSIM 2.1.5 厂商补丁：...

Firefox download filename spoofing with RTL override

Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly handle a right-to-left override aka RLO or U+202E Unicode character in a download filename, which allows remote attackers to spoof file extensions via a crafted filename, as demonstrated by displayin...

ESCMS vulnerability website system 0day-vulnerability warning-the black bar safety net

Version:ESCMS V1. 0 SP1 Build 1 1 2 5 Background login authentication is through the admin/check. asp achieved,look at the code % if Request. cookiesCookiesKey"ESadmin"="" then 'Note that here Oh,he is by COOKIE validation ESadmin is empty,we can forge a value,called he is not empty 'CookiesKey i...

odlican.net CMS 1.5 - Arbitrary File Upload

odlican.net CMS 1.5 - Arbitrary File Upload odlican.net cms v.1.5 remote file upload vulnerability Author: Anonymous you can download following cms here http://cms.odlican.net/files/cmsv1-5.zip Info:odlican.net cms v.1.5 is simple opensource cms made by croatian web designers and it has serious...

HTTP File Extension Scanner

This module identifies the existence of additional files by modifying the extension of an existing file. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'pathname' class MetasploitModule 'HTTP File Extension...

HTTP File Same Name Directory Scanner

This module identifies the existence of files in a given directory path named as the same name of the directory. Only works if PATH is different than '/'. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

Snif 1.5.2 - Any Filetype Download

-------------------------------------------- -: Snif - "Any Filetype" Download Exploit :- -------------------------------------------- Script : Snif - Simple And Nice Index File Version : 1.5.2 possibly lower versions too Found By : Aodrulez. Email : f3arm3d3aratgmail.com Vulnerability:...

Total Multimedia Features DoS PoC for Sony Ericsson Phones

Exploit for unknown platform in category dos / poc ========================================================== Total Multimedia Features DoS PoC for Sony Ericsson Phones ========================================================== Total Multimedia Features DoS PoC for Sony Ericsson Phones. Should wo...

CVE-2009-4444

Microsoft Internet Information Services IIS 5.x and 6.x uses only the portion of a filename before a ; semicolon character to determine the file extension, which allows remote attackers to bypass intended extension restrictions of third-party upload applications via a filename with a 1 .asp, 2...

CVE-2009-4444

Microsoft Internet Information Services IIS 5.x and 6.x uses only the portion of a filename before a ; semicolon character to determine the file extension, which allows remote attackers to bypass intended extension restrictions of third-party upload applications via a filename with a 1 .asp, 2...

Microsoft IIS protection bypass

It's possible to bypass 3rd party upload protection by file extension, because part of filename after semicolon is ingored then detecting file type. E.g. script.asp;.jpg is treated by web server as ASP file...

OpenX &lt;= 2.8.1 执行任意PHP代码

No description provided by source. OpenX adserver version 2.8.1 and lower is vulnerable to remote code execution. To be exploited, this vulnerability requires banner / file upload permissions, such as granted to the 'advertiser' and 'administrator' roles. This vulnerability is caused by the...

Design/Logic Flaw

Incomplete blacklist vulnerability in browser/download/downloadexe.cc in Google Chrome before 3.0.195.32 allows remote attackers to force the download of certain dangerous files via a "Content-Disposition: attachment" designation, as demonstrated by 1 .mht and 2 .mhtml files, which are...

CVE-2009-3376

Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly handle a right-to-left override aka RLO or U+202E Unicode character in a download filename, which allows remote attackers to spoof file extensions via a crafted filename, as demonstrated by displayin...

Adobe Acrobat Unspecified vulnerability

This host has Adobe Acrobat installed which is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: gbadobeacrobatunspecifiedvuln.nasl 8210 2017-12-21 10:26:31Z cfischer $ Adobe Acrobat Unspecified vulnerability Authors: Nikta MR Copyright: Copyright c 2009 Greenbone Networks GmbH,...

CVE-2009-3461

Unspecified vulnerability in Adobe Acrobat 9.x before 9.2 allows attackers to bypass intended file-extension restrictions via unknown vectors...

CVE-2009-3461

Unspecified vulnerability in Adobe Acrobat 9.x before 9.2 allows attackers to bypass intended file-extension restrictions via unknown vectors...

Design/Logic Flaw

Unspecified vulnerability in Adobe Acrobat 9.x before 9.2 allows attackers to bypass intended file-extension restrictions via unknown vectors...