SW-HTTPD Denial Of Service

/ SW-HTTPD Server v0.x Denial of Service PoC Multiple Connections with GET /A100 HTTP/1.1 Author: Jonathan Salwan Mail : submit AT shell-storm.org Web : http://www.shell-storm.org / include "stdio.h" include "unistd.h" include "stdlib.h" include "sys/types.h" include "sys/socket.h" include...

WEBJump! Multiple SQLi Vulnerabilities (Mar 2009) - Active Check

WEBJump! is prone to multiple SQL injection SQLi vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Woltlab Burning Board <= 3.0.5 Multiple Input Validation Vulnerabilities - Active Check

Woltlab Burning Board is prone to multiple input-validation vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

phpCommunity2 Multiple Vulnerabilities (Mar 2009) - Active Check

phpCommunity2 is prone to multiple input validation vulnerabilities, including multiple directory traversal issues and SQL-injection issues, and a cross-site scripting issue. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

Addonics NAS Adapter Post-Auth DoS

Remote: Yes Local: No Credit: Michael Cyr Vulnerable: R3282-1.33c LOADER32 1.15, NASU2FW41 Loader 1.17 Not Vulnerable: Discussion: Addonics NAS Adapter Post-Auth DoS Addonics NAS Adapter is prone to several post authentication buffer overflows. Each of these buffer overflows will crash the entire...

Softbiz Classifieds Script Multiple XSS Vulnerabilities (Mar 2009) - Active Check

Softbiz Classifieds Script is prone to multiple cross-site scripting XSS vulnerabilities because it fails to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respecti...

Qwerty CMS SQLi Vulnerability (Mar 2009) - Active Check

Qwerty CMS is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Scripts For Sites EZ Hotscripts SQLi Vulnerability (32031) - Active Check

EZ Hotscripts is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

A4Desk Event Calendar SQLi Vulnerability (Mar 2009) - Active Check

A4Desk Event Calendar is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

Linux/x86 - HTTP/1.x GET, Downloads &amp; execve()

No description provided by source. / linux/x86 - HTTP/1.x GET, Downloads and execve - 111 bytes+ This shellcode allows you to download a ELF executable straight off a standard HTTP server and launch it. It will saved locally it into a filename called 'A' in the current directory. CONFIGURATION Th...

Solaris/SPARC - Bind TCP (2001/TCP) Shell (/bin/sh) Shellcode

Solaris/SPARC - Bind TCP 2001/TCP Shell /bin/sh Shellcode. Shellcode exploit for SolarisSPARC platform !!! $Id: sparc-bind.s,v 1.1 2003/03/01 01:10:51 ghandi Exp $ !!! Bind /bin/sh to TCP port 2001. Calls setuid0 so /bin/sh won't !!! drop privileges. After assembly, change the third byte in the !...

CVE-2008-5645

Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request...

CVE-2008-5645

Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request...

Apple iPhone Configuration Web Utility Directory Traversal Vulnerability

This host has Apple iPhone Configuration Web Utility installed and is prone to directory traversal vulnerability. OpenVAS Vulnerability Test $Id: gbappleiphoneconfwebutltydirtrvslvuln.nasl 5370 2017-02-20 15:24:26Z cfi $ Apple iPhone Configuration Web Utility Directory Traversal Vulnerability...

dhcart-xss.txt

DHCart Multiple variable XSS and stored XSS Vendor URL:http://www.dhcart.com/ Advisore:http://lostmon.blogspot.com/ 2008/11/dhcart-multiple-variable-xss-and-stored.html vendor notify:YES Exploit:YES Patch:YES DHCart is a PHP based application that provides a simple to use shopping cart for users...

WP Comment Remix 1.4.3 Remote SQL Injection Exploit

No description provided by source. ?php / WP Comment Remix 1.4.3 SQL Injection Proof of Concept By g30rg3x g30rg3xatchxsecuritydotorg Advisory: http://chxsecurity.org/advisories/adv-3-full.txt PoC Mirror: http://chxsecurity.org/proof-of-concepts/wp-comment-remix-143.zip Attention: This is a...

CVE-2008-4541

Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request...

Heap overflow

Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request...

CVE-2008-4541

Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request...

Design/Logic Flaw

admin/user/createuser.php in Kolab Groupware Server 1.0.0 places a user password in an HTTP GET request, which allows local administrators, and possibly remote attackers, to obtain cleartext passwords by reading the sslaccesslog file or the referer string...