151 matches found
mxBB Module Meeting <= 1.1.2 - Remote FileInclusion Vulnerability
No description provided by source. Title : mxBB Module Meeting = 1.1.2meetingconstants.php Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://www.mx-system.com ERROR------------------------------------------------------ .... .. include$modulerootpath . 'language/lang'...
TeraCopy 2.3 (default.mo) Language File Integer Overflow Vulnerability
No description provided by source. ?!J:\Perl\bin\perl.exe TeraCopy 2.3 default.mo Language File Integer Overflow Vulnerability Vendor: Code Sector Product web page: http://www.codesector.com Affected version: 2.27 and 2.3 beta 2 Summary: TeraCopy is designed to copy and move files at the maximum...
PHPSysInfo 2.0/2.1 Index.PHP LNG File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7286/info PHPSysInfo has been reported to be vulnerable to a file disclosure issue. Local users may be capable of influencing the include path for PHPSysinfo language include files. If the malicious language file is...
Internet Download Manager 5.15 Build 3 Language File Parsing Buffer Overflow Vulnerability
No description provided by source...
TeraCopy 2.3 - default.mo Language File Integer Overflow
TeraCopy 2.3 - default.mo Language File Integer Overflow !J:\Perl\bin\perl.exe TeraCopy 2.3 default.mo Language File Integer Overflow Vulnerability Vendor: Code Sector Product web page: http://www.codesector.com Affected version: 2.27 and 2.3 beta 2 Summary: TeraCopy is designed to copy and move...
Code Sector TeraCopy 2.3 Integer Overflow
!J:\Perl\bin\perl.exe TeraCopy 2.3 default.mo Language File Integer Overflow Vulnerability Vendor: Code Sector Product web page: http://www.codesector.com Affected version: 2.27 and 2.3 beta 2 Summary: TeraCopy is designed to copy and move files at the maximum possible speed. It skips bad files...
TeraCopy 2.3 (default.mo) Language File Integer Overflow Vulnerability
Code Sector TeraCopy versions 2.3 beta 2 and 2.27 integer overflow proof of concept exploit. TeraCopy is prone to an integer overflow vulnerability because it fails to perform adequate boundary checks when reading language files. Successfully exploiting this issue may allow local attackers to...
TeraCopy 2.3 - 'default.mo' Language File Integer Overflow
!J:\Perl\bin\perl.exe TeraCopy 2.3 default.mo Language File Integer Overflow Vulnerability Vendor: Code Sector Product web page: http://www.codesector.com Affected version: 2.27 and 2.3 beta 2 Summary: TeraCopy is designed to copy and move files at the maximum possible speed. It skips bad files...
ArrowChat 1.5.61 - Multiple Vulnerabilities
Exploit Title: ArrowChat ?do=" enctype="multipart/form-data" -------...
CVE-2011-4337
Static code injection vulnerability in translate.php in Support Incident Tracker aka SiT! 3.45 through 3.65 allows remote attackers to inject arbitrary PHP code into an executable language file in the i18n directory via the lang variable...
Code injection
Static code injection vulnerability in translate.php in Support Incident Tracker aka SiT! 3.45 through 3.65 allows remote attackers to inject arbitrary PHP code into an executable language file in the i18n directory via the lang variable...
Winamp 5.6.1 Install Language SEH Overflow
!/usr/bin/perl --------- Winamp special thanks to : josalijoe exploit-id.com , and All exploit-id Team --------- In Winamp 5.6.1 Install New Language with .wlz file and In File .wlz can Inclusion SEH for Installing ... my $header = "\x50\x4b\x03\x04\x14\x00\x00\x00\x00\x00\x2f\x92\x7b\x3d\xd3\x55...
Hanso Converter v1.1.0 BufferOverflow - Denial Of Service
Exploit for windows platform in category dos / poc Exploit Title: Hanso Converter v1.1.0 Language File Buffer Overflow - Denial OF Service Date: 05.02.2011 Author: Dame Jovanoskibadc0re Software Link: http://www.hansotools.com/downloads/hanso-converter-setup.exe Version: v1.1.0 Tested on: XP sp3...
PhotoDiary 1.3 (lng) LFI Vulnerability
No description provided by source. PhotoDiary 1.3 lng Local File Inclusion Vulnerability Discovered by cOndemned download: http://code.google.com/p/photodiary/ source of /admin/install.php lines 9 - 15: if isset$GET'lng' $LNG = $GET'lng'; 1 else $LNG = "ITA"; include...
Internet Download Manager language file parsing stack overflow vulnerability-vulnerability warning-the black bar safety net
Affects versions: Tonec Inc Internet Download Manager 5.15 Build 3 Test method: PoC Internet Download Manager v. 5. 1 5 Build 3 4 In December Works on Vista HellCode Labs || TCC Group || http://tcc.hellcode.net The Bug was found by "musashi" aka karak0rsan [email protected] thanx to murderkey...
Internet下载管理器语言文件解析栈溢出漏洞
BUGTRAQ ID: 33934 Internet Download Manager是用于提高下载速度的工具。 如果使用Internet Download Manager下载的语言文件中指定了超长的工具栏名称的话,就可能触发栈溢出,导致执行任意代码。 Tonec Inc Internet Download Manager 5.15 Build 3 厂商补丁: Tonec Inc --------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.internetdownloadmanager.com/ PoC...
phpPgAdmin <= 4.2.1 (_language) Local File Inclusion Vulnerability
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl phpPgAdmin = 4.2.1 Local File Inclusion Vulnerability Script: "phpPgAdmin is a web-based...
myktools-lfi.txt
Autor: x0r Email: evolutionteam.x0atgmaildotcom Download: http://www.easy-script.com/scripts-dl/MyKtools-v2-4.zip Bug: LFI Bug: In \update.php // Include du fichier langue if $GET'langage' $langue = $GET'langage'; include "lang/".$langue.".php"; Exploit:...
Code injection
Variable overwrite vulnerability in libsecure.php in Turnkey PHP Live Helper 2.0.1 and earlier, when registerglobals is enabled, allows remote attackers to overwrite arbitrary variables related to the db config file. NOTE: this can be leveraged for code injection by overwriting the language file...
exophpdesk-rfi.txt
Title : ExoPHPDesk 1.2 Final Author : e.wiZz! Info : Bosnian Idiot ! Script Page : http://www.exocrew.com Dork : Powered by ExoPHPDesk v1.2 Final. RFI--------------------------------------------------------- common.php Line 40 dunno..i have normal notepad :D -------------cut...