3704 matches found
MemHT Portal <= 4.1 Upload ByPass Vulnerabilities
Exploit for php platform in category web applications ================================================= MemHT Portal = 4.1 Upload ByPass Vulnerabilities =================================================...
CVE-2010-1937
Heap-based buffer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB before 1.3.8 might allow remote attackers to execute arbitrary code via a Content-Length HTTP header that specifies a value too small for the amount of POST data, aka bug 3001896...
Heap overflow
Heap-based buffer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB before 1.3.8 might allow remote attackers to execute arbitrary code via a Content-Length HTTP header that specifies a value too small for the amount of POST data, aka bug 3001896...
Integer overflow
Integer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB 1.3.4 through 1.3.7, when the configuration sets httpMaxContentLength to a zero value, allows remote attackers to cause a denial of service heap memory corruption or possibly execute arbitrary code via a large integer in the...
SQL injection vulnerability in MODx CMS and Application Framework
Vulnerability ID: HTB22412 Reference: http://www.htbridge.ch/advisory/sqlinjectionvulnerabilityinmodxcmsandapplicationframework.html Product: MODx CMS and Application Framework Vendor: MODx Vulnerable Version: 1.0.3 and Probably Prior Versions Vendor Notification: 28 May 2010 Vulnerability Type:...
Joomla Searchlog 3.1.0 SQL Injection
Exploit Title: Joomla Component comsearchlog SQL Injection Date: 05/06/2010 Author: d0lc3 d0lc3xatgmaildomcom Software Link: http://www.kanich.net/radio/site/searchlog/searchlog-download Version: 3.1.0 Tested on: Linux ubuntu32 2.6.32-22-generic x64 Summary: Good nights, at this occassion we have...
Joomla! Component Search Log 3.1.0 - SQL Injection
Joomla! Component Search Log 3.1.0 - SQL Injection Exploit Title: Joomla Component comsearchlog SQL Injection Date: 05/06/2010 Author: d0lc3 d0lc3xatgmaildomcom Software Link: http://www.kanich.net/radio/site/searchlog/searchlog-download Version: 3.1.0 Tested on: Linux ubuntu32 2.6.32-22-generic...
Joomla Component com_searchlog SQL Injection Vulnerability
Exploit for php platform in category web applications ========================================================== Joomla Component comsearchlog SQL Injection Vulnerability ========================================================== Exploit Title: Joomla Component comsearchlog SQL Injection Date:...
Joomla Camp26 VisitorData Module Shell Command Injection Vulnerability
No description provided by source. A vulnerability has been discovered in the Camp26 VisitorData module for Joomla, which can be exploited by malicious people to compromise a vulnerable system. Input passed via the "X-Forwarded-For" HTTP header is not properly sanitised before being used as a...
Joomla! Component mod_VisitorData 1.1 - Remote code Execution
Joomla Module Camp26 Visitor Data 1.1 Remote code Execution ============================================================ - Discovered by : Chip D3 Bi0s - Email : [email protected] - Date : 2010-04-28 - Severity : 9/10 CVSS scored ------------------------------- Module Camp26 Visitor Data For...
Joomla Module Camp26 Visitor Data 1.1 Remote code Execution
Exploit for php platform in category web applications =========================================================== Joomla Module Camp26 Visitor Data 1.1 Remote code Execution =========================================================== Module Camp26 Visitor Data For Joomla 1.5.x Version : 1.1 Type ...
500page.jsp contains HTTP Header XSS vulnerability
The 500page.jsp contains an XSS vulnerability via the 'Referrer' HTTP header...
500page.jsp contains HTTP Header XSS vulnerability
The 500page.jsp contains an XSS vulnerability via the 'Referrer' HTTP header...
500page.jsp contains HTTP Header XSS vulnerability
The 500page.jsp contains an XSS vulnerability via the 'Referrer' HTTP header...
Google Chrome < 4.1.249.1036 Multiple Vulnerabilities
Binary data 5364.pasl...
Scripts Feed Dating Software SQL Injection
============================================================================== Scripts Feed Dating Software Cookie Manip/SQLi Multiple Remote Vulnerabilities ============================================================================== + My home http://hack-tech.com + Date Submitted: February 27...
WikyBlog 1.7.3rc2 XSS / Shell Upload / RFI
======================================================================================== | Title : WikyBlog-1.7.3rc2 Mullti Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com | Web Site : http://www.wikyblog.com/ | Dork : Powered by WikyBlog | Tested on:...
Debian DSA-1950-1 : webkit - several vulnerabilities
Several vulnerabilities have been discovered in WebKit, a Web content engine library for Gtk+. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0945 Array index error in the insertItemBefore method in WebKit, allows remote attackers to execute...
CVE-2003-1587
Cross-site scripting XSS vulnerability in LoganPro allows remote attackers to inject arbitrary web script or HTML via a crafted User-Agent HTTP header...
CVE-2003-1586
CVE-2003-1586 describes a cross-site scripting (XSS) vulnerability in WebExpert, exploitable by remote attackers through a crafted User-Agent HTTP header. Affected: WebExpert (component/feature unspecified beyond XSS via User-Agent). Root cause: improper sanitization of the User-Agent header lead...