[RIPS] A static source code analyser for vulnerabilities in PHP scripts

RIPS is a tool written in PHP to find vulnerabilities in PHP applications using static code analysis. By tokenizing and parsing all source code files RIPS is able to transform PHP source code into a program model and to detect sensitive sinks potentially vulnerable functions that can be tainted b...

Light Audio Mixer 1.0.12 - .wav Crash (PoC)

Light Audio Mixer 1.0.12 - .wav Crash PoC Exploit Title: Light Audio Mixer Version 1.0.12 .wav - Crash POC Date: 14-07-2013 Exploit Author: ariarat Software Link: http://download.cnet.com/Light-Audio-Mixer/3000-21394-10791607.html Version: 1.0.12 Tested on: Windows XP sp3...

Cisco Security Service File Verification Bypass Could Allow Elevation of Privilege

Executive Summary Microsoft is providing notification of the discovery and remediation of a vulnerability in the Cisco Host Scan component of Cisco AnyConnect Secure Mobility and Cisco Secure Desktop software. The vulnerability affects the Host Scan component included in Cisco AnyConnect VPN Clie...

PhpTax 0.8 Code Execution Vulnerability

PhpTax version 0.8 suffers from a file manipulation remote code execution vulnerability. ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------| ,-------, | / XXXXXX /| / / XXXXXX / \ / / XXXXXX /\ / XXXXXX / ...

PhpTax 0.8 Code Execution

,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------| ,-------, | / XXXXXX /| / / XXXXXX / \ / / XXXXXX /\ / XXXXXX / / XXXXXX / ------' Exploit Title : PhpTax File Manipulationnewvalue,field Remote Code...

PhpTax 0.8 - File Manipulation newvalue Remote Code Execution

PhpTax 0.8 - File Manipulation newvalue Remote Code Execution ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------| ,-------, | / XXXXXX /| / / XXXXXX / \ / / XXXXXX /\ / XXXXXX / / XXXXXX / ------' Exploit...

PhpTax 0.8 - File Manipulation 'newvalue' / Remote Code Execution

,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------| ,-------, | / XXXXXX /| / / XXXXXX / \ / / XXXXXX /\ / XXXXXX / / XXXXXX / ------' Exploit Title : PhpTax File Manipulationnewvalue,field Remote Code...

Apache HTTP Server mod_rewrite Log File Manipulation Vulnerability

A vulnerability in the dorewritelog function of Apache HTTP Server could allow an unauthenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper handling of certain escape sequences by the affected software. An unauthenticated, remote attacker could...

Mutiny < 5.0-1.11 Multiple Directory Traversals

The remote server hosts a version of Mutiny prior to 5.0-1.11. It is, therefore, reportedly affected by multiple directory traversal vulnerabilities that could allow an authenticated attacker to upload, delete, and move files on the remote system with root privileges. The functions for UPLOAD,...

Espcms V5.6.13.04.22 UTF8 正式版后台逻辑验证错误漏洞之2/N

简要描述： 系统后台权限逻辑校验存在问题，导致后台某模块功能被绕过和非授权访问 详细说明： 后台管理员权限校验在文件\public\classconnector.php: function adminpurview if $this-fun-accept'archive', 'R' == 'filemanage' && $this-fun-accept'action', 'R' == 'batupfilesave' $ecispadmininfo = $this-fun-accept'ecispadmininfo', 'G'; $esppowerlist =...

Directory traversal

Directory traversal vulnerability in the web interface in the Health Monitor service in MatrikonOPC A&E Historian 1.0.0.0 allows remote attackers to read and delete arbitrary files via a crafted URL...

Design/Logic Flaw

importbuddy.php in the BackupBuddy plugin 1.3.4, 2.1.4, 2.2.25, 2.2.28, and 2.2.4 for WordPress does not require that authentication be enabled, which allows remote attackers to obtain sensitive information, or overwrite or delete files, via vectors involving a 1 direct request, 2 step=1 request,...

CVE-2013-1863

Samba 4.x before 4.0.4, when configured as an Active Directory domain controller, uses world-writable permissions on non-default CIFS shares, which allows remote authenticated users to read, modify, create, or delete arbitrary files via standard filesystem operations...

Piwigo 2.4.6 Arbitrary File Read / Delete

Piwigo 2.4.6 install.php Remote Arbitrary File Read/Delete Vulnerability Vendor: Piwigo project Product web page: http://www.piwigo.org Affected version: 2.4.6 Summary: Piwigo is a photo gallery software for the web that comes with powerful features to publish and manage your collection of...

CVE-2013-0271

The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted 1 mxit or 2 mxit/imagestrips pathname...

CVE-2013-0271

The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted 1 mxit or 2 mxit/imagestrips pathname...

CVE-2013-0271

The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted 1 mxit or 2 mxit/imagestrips pathname...

IPMap 2.5 Shell Upload Vulnerability

IPMap suffers from remote shell upload vulnerabilities in the mobile IPMap v2.5 app for the apple ipad & iphone. IPMap v2.5 iPad iPhone - Arbitrary File Upload Web Vulnerabilities Introduction: ============= IPMap - IP Address Lookup Details & HTTP Wireless File Sharing with latest WorldWide IP...

CVE-2012-6069

The CVE-2012-6069 issue is a Relative Path Traversal vulnerability in the CoDeSys Runtime Toolkit’s file transfer functionality (CODESYS Runtime Toolkit). The available Connected documents confirm an input validation flaw allowing an attacker to access directories outside the intended scope and p...

CVE-2012-6069 3S CoDeSys Relative Path Traversal

The CoDeSys Runtime Toolkit’s file transfer functionality does not perform input validation, which allows an attacker to access files and directories outside the intended scope. This may allow an attacker to upload and download any file on the device. This could allow the attacker to affect the...