Ubuntu Update for ruby1.9.1 USN-1614-1

Ubuntu Update for Linux kernel vulnerabilities USN-1614-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN16141.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for ruby1.9.1 USN-1614-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net Th...

Blog Mod 0.1.9 SQL Injection

How does this exploit works? It exploits one of the several SQL Injections in the system. Specifiedly, in the file "index.php", parr "month". Usage: php filename.php / function puts$str echo $str."\n"; function gets return trimfgetsSTDIN; function hex$string $hex=''; // PHP 'Dim' = for $i=0; $i...

Fedora 16 : munin-2.0.6-2.fc16 (2012-13649)

added DBDIRNODE for munin-node and remove File::Path as it is no longer needed. Update to 2.0.6, and bug fixes Added init files for asyncd Updated to 2.0.5 Update to munin 2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

Readily remember arbitrary file upload flaws and fixes-vulnerability warning-the black bar safety net

Heard readily lend good make, registration number ready to buy a membership first try Pass avatar when the first-mover can now select all of the files, selected a qq. exe, point to upload, the bottom right corner traffic moving, Tip: incorrect format, open firebug, and then upload the returned fi...

CVE-2012-1586

mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error message...

Design/Logic Flaw

mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error message...

open_basedir after there may be security risks-vulnerability warning-the black bar safety net

The current php site security configuration is substantially openbasedir+safemode, it is indeed very invincible, very safe, even when permission is not a good environment settings, so the configuration is quite safe, and, of course, does not consider some of the you can bypass. This article...

Windows Service Trusted Path Privilege Escalation

Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

Windows Service Trusted Path Privilege Escalation

This module exploits a logic flaw due to how the lpApplicationName parameter is handled. When the lpApplicationName contains a space, the file name is ambiguous. Take this file path as example: C:\program files\hello.exe; The Windows API will try to interpret this as two possible paths:...

Discuz X2 路徑洩漏

简要描述： 缺少 exit‘Access Denied’; 直接浏览该程序直接报错 BTW 一共发现了7个 XSS 包含储存式跟反射式. 等之后整完整點再发出来 详细说明： 檔案路徑: /source/include/misc/miscranklistindex.php 漏洞证明：...

Scientific Linux Security Update : perl on SL5.x i386/x86_64

Perl is a high-level programming language commonly used for system administration utilities and web programming. The Safe extension module allows users to compile and execute Perl code in restricted compartments. The File::Path module allows users to create and remove directory trees. The Safe...

CentOS Update for rsyslog CESA-2012:0796 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

DEBIAN-CVE-2012-3360

Directory traversal vulnerability in virt/disk/api.py in OpenStack Compute Nova Folsom 2012.2 and Essex 2012.1, when used over libvirt-based hypervisors, allows remote authenticated users to write arbitrary files to the disk image via a .. dot dot in the path attribute of a file element...

PYSEC-2012-38

Directory traversal vulnerability in virt/disk/api.py in OpenStack Compute Nova Folsom 2012.2 and Essex 2012.1, when used over libvirt-based hypervisors, allows remote authenticated users to write arbitrary files to the disk image via a .. dot dot in the path attribute of a file element...

PT-2012-1502 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.0 Description: The issue allows local users with root privileges to modify arbitrary kernel memory locations by writing to the /sys/kernel/debug/acpi/custom method file. This is due to an incomplete fix for a...

Fedora 16 : hostapd-0.7.3-9.fc16 (2012-9206)

Remove hostapd-specific runtime state directory Fixup typo in pid file path in hostapd.service Fixup typo in configuration file path in hostapd.service Tighten-up default permissions for hostapd.conf CVE-2012-2389 Add BuildRequires for systemd-units Fixup typo in configuration file path in...

WordPress Wp-Gpx-Map 1.1.21 Shell Upload

Exploit Title: Wordpress wp-gpx-map version 1.1.21 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/wp-gpx-maps/ Date: 11/05/2012 Exploit Author: Adrien Thierry Vendor Homepage: http://www.darwinner.it/ Software Link: http://downloads.wordpress.org/plugin/wp-gpx-maps.1.1.21.zip Version...

S40 0.4.2 CMS Directory Traversal Vulnerability

This module exploits a directory traversal vulnerability found in S40 CMS. The flaw is due to the 'page' function not properly handling the $pid parameter, which allows a malicious user to load an arbitrary file path. This module requires Metasploit: https://metasploit.com/download Current source...

Debian DSA-2451-1 : puppet - several vulnerabilities

Several vulnerabilities have been discovered in Puppet, a centralized configuration management system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2012-1906 Puppet is using predictable temporary file names when downloading Mac OS X package files. Thi...

Simple Posting System 1.0 Final Local File Inclusion

Exploit Title: Simple Posting System Multiple Google Dork: inurl:sps.php?old= or inurl:sps.php " Date: 14/03/2012 Author: n0tch aka andmuchmore Software Link: http://realize.be/files/sps.tar.gz Version: 1.0 Final Tested on: Windows 7 / LinuxUbuntu +-- LFI --+...