SHOUTcast DNAS/Win32 1.9.4 - File Request Format String Overflow (Metasploit)

$Id: shoutcastformat.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

DedeCms v5. 5 vulnerability-vulnerability warning-the black bar safety net

? php printr' +----------------------------------------+ dedecms v5. 5 final getwebshell exploit +----------------------------------------+ '; if $argc 3 printr' +----------------------------------------+ Usage: php '.$ argv0.' host path host: target server ip/hostname path: path to dedecms...

PHP PEAR 1.9.0 - Multiple Remote File Inclusions

PHP PEAR 1.9.0 - Multiple Remote File Inclusions PEAR v.1.9.0 Multiple Remote File Inclusion Vulnerability PEAR, the PHP Extension and Application Repository @package PEAR @Version v.1.9.0 @license http://opensource.org/licenses/bsd-license.php New BSD License @link http://pear.php.net/package/PE...

Buffer overflow

Buffer overflow in Microsoft Office PowerPoint 2002 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint File Path Handling Buffer Overflow Vulnerability."...

BoastMachine 3.1 - Arbitrary File Upload

BoastMachine 3.1 - Arbitrary File Upload :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title : boastMachine v3.1 Remote File Upload Vulnerability Author: alnjm33 Software Link: http://boastology.com/pages/dload.php?id=bmachine-3.1.zip Software...

DEBIAN-CVE-2010-0012

Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a .. dot dot in a pathname within a .torrent file...

CuteNews/UTF-8 CuteNews Multiple Vulneablities

The host is running CuteNews/UTF-8 CuteNews and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbcutenewsnutf8cutenewsmultvuln.nasl 4865 2016-12-28 16:16:43Z teissa $ CuteNews/UTF-8 CuteNews Multiple Vulneablities Authors: Antu Sanadi Udated By: Antu Sanadi on 2009-12-10 61...

Cute News XSS / LFI / Bypass

MorningStar Security - Advisory http://www.morningstarsecurity.com/ Multiple security issues in Cute News and UTF-8 Cute News 1. Advisory Information ------------------------------------------------------------------------------------------------------------------------ Title: Multiple security...

[MORNINGSTAR-2009-02] Multiple security issues in Cute News and UTF-8 Cute News

MorningStar Security - Advisory http://www.morningstarsecurity.com/ Multiple security issues in Cute News and UTF-8 Cute News 1. Advisory Information ------------------------------------------------------------------------------------------------------------------------ Title: Multiple security...

CuteNews and UTF-8 CuteNews - Multiple Vulnerabilities

CuteNews and UTF-8 CuteNews - Multiple Vulnerabilities MorningStar Security - Advisory http://www.morningstarsecurity.com/ Multiple security issues in Cute News and UTF-8 Cute News 1. Advisory Information...

CuteNews and UTF-8 CuteNews Multiple Security Vulnerabilities

Exploit for unknown platform in category web applications ============================================================= CuteNews and UTF-8 CuteNews Multiple Security Vulnerabilities ============================================================= Multiple security issues in Cute News and UTF-8 Cute...

CuteNews and UTF-8 CuteNews - Multiple Vulnerabilities

MorningStar Security - Advisory http://www.morningstarsecurity.com/ Multiple security issues in Cute News and UTF-8 Cute News 1. Advisory Information ------------------------------------------------------------------------------------------------------------------------ Title: Multiple security...

PHP pdflib extension protection bypass

pdfopenfile function doesn't check file path to match openbasedir...

kernel: fs: pipe.c null pointer dereference

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

kernel: fs: pipe.c null pointer dereference

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service NULL pointer dereference and system crash or gain privileges by attempting to open an anonymous pipe via a /proc//fd/ pathname...

Remote File Disclosure in Vivvo CMS 4.1.5.1

No description provided by source. waraxe-2009-SA075 - Remote File Disclosure in Vivvo CMS 4.1.5.1 =============================================================================== Author: Janek Vind "waraxe" Date: 21. October 2009 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-75.html...

Open Auto Classifieds 1.5.9 - Multiple Vulnerabilities

MorningStar Security - Advisory http://www.morningstarsecurity.com/ Multiple security issues in Open Auto Classifieds 1. Advisory Information ---------------------------------------------------------------------------------------------- Title: Multiple security issues in Open Auto Classifieds...

Ultrize TimeSheet 1.2.2 File Disclosure

Ultrize TimeSheet 1.2.2 readfile Local File Disclosure Vulnerability Code page /actions/downloadFile.php ==== File not found. "; print $fileName; print "Please make sure your file paths are correct: $config'uploaddir'/$jobid/$fileName"; ? ==== Poc /actions/downloadFile.php?fileName=../config.php...

openSUSE Security Update : perl (perl-101)

Specially crafted regular expressions could crash perl CVE-2008-1927. Insufficient symlink checks in the File::Path could result in wrong file permissions CVE-2008-2827. Additionally problem in the CGI module was fixed that could result in an endless loop if uploads were cancelled. %NASLMINLEVEL...

Php AdminPanel Free version 1.0.5 Remote File Disclosure Vuln

No description provided by source. Php AdminPanel Free version 1.0.5 Remote File Disclosure AUTHOR : Sina Yazdanmehr R3d.W0rm Discovered by : Sina Yazdanmehr R3d.W0rm Our Site : http://ircrash.com My Official WebSite : http://r3dw0rm.ir IRCRASH Team Members : Khashayar Fereidani - R3d.w0rm Sina...