vBulletin <= 3.0.4 "forumdisplay.php" Code Execution

Exploit for unknown platform in category web applications ==================================================== vBulletin fetcharray$forumusers == True , when you visit the forums, it must has at least one user show the forum. 4th condition : magicquotesgpc must be OFF SPECIAL condition : you must...

vBulletin 3.0.4 - forumdisplay.php Code Execution (1)

vBulletin 3.0.4 - forumdisplay.php Code Execution 1 Exploit: ---------------- http://site/forumdisplay.php?GLOBALS=1&f=2&comma=".system'id'." Conditions: ---------------- 1st condition : $vboptions'showforumusers' == True , the admin must set showforumusers ON in vbulletin options. 2nd condition ...

CVE-2005-0315

The CVE-2005-0315 entry concerns the FTP service in Magic Winmail Server 4.0 Build 1112, where the FTP PORT command does not verify that the command IP matches the FTP session user’s IP. This permits remote authenticated users to use the server as an intermediary for port scanning. The connected ...

CVE-2005-0314

The CVE-2005-0314 entry describes a Cross-site Scripting (XSS) vulnerability in the Magic Winmail Server 4.0 Build 1112, specifically in user.php, where remote attackers can inject arbitrary web script or HTML through personal information fields. The connected records corroborate the same vulnera...

CVE-2005-0313

CVE-2005-0313 affects Magic Winmail Server 4.0 Build 1112. The vulnerability comprises multiple directory traversal weaknesses allowing remote attackers to upload files via upload.php and read arbitrary files via download.php, plus risk from authenticated IMAP commands (CREATE, EXAMINE, SELECT, D...

CVE-2005-0314

Cross-site scripting XSS vulnerability in user.php in Magic Winmail Server 4.0 Build 1112 allows remote attackers to inject arbitrary web script or HTML via the personal information fields...

CVE-2005-0315

The FTP service in Magic Winmail Server 4.0 Build 1112 does not verify that the IP address in a PORT command is the same as the IP address of the user of the FTP session, which allows remote authenticated users to use the server as an intermediary for port scanning...

[SIG^2 G-TEC] Magic Winmail Server v4.0 Multiple Vulnerabilities

SIG^2 Vulnerability Research Advisory Magic Winmail Server v4.0 Multiple Vulnerabilities by Tan Chew Keong Release Date: 27 Jan 2005 ADVISORY URL http://www.security.org.sg/vuln/magicwinmail40.html SUMMARY Magic Winmail Server http://www.magicwinmail.net/ is an enterprise class mail server softwa...

CVE-2005-0314

Cross-site scripting XSS vulnerability in user.php in Magic Winmail Server 4.0 Build 1112 allows remote attackers to inject arbitrary web script or HTML via the personal information fields...

Magic Winmail Server 4.0 (Build 1112) - download.php Traversal Arbitrary File Access

Magic Winmail Server 4.0 Build 1112 - download.php Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/12388/info Magic Winmail Server is reportedly affected by multiple vulnerabilities. There are two distinct directory traversal vulnerabilities in the Webmail interface...

Magic Winmail Server 4.0 (Build 1112) - upload.php Traversal Arbitrary File Upload

Magic Winmail Server 4.0 Build 1112 - upload.php Traversal Arbitrary File Upload source: https://www.securityfocus.com/bid/12388/info Magic Winmail Server is reportedly affected by multiple vulnerabilities. There are two distinct directory traversal vulnerabilities in the Webmail interface allowi...

Magic Winmail Server 4.0 (Build 1112) - &#039;download.php&#039; Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/12388/info Magic Winmail Server is reportedly affected by multiple vulnerabilities. There are two distinct directory traversal vulnerabilities in the Webmail interface allowing both arbitrary file downloads and uploads. There is also a HTML injection...

CVE-2004-1020

The addslashes function in PHP 4.3.9 does not properly escape a NULL /0 character, which may allow remote attackers to read arbitrary files in PHP applications that contain a directory traversal vulnerability in require or include statements, but are otherwise protected by the magicquotesgpc...

CVE-2004-1020

The addslashes function in PHP 4.3.9 does not properly escape a NULL /0 character, which may allow remote attackers to read arbitrary files in PHP applications that contain a directory traversal vulnerability in require or include statements, but are otherwise protected by the magicquotesgpc...

[UNIX] vBulletin init.php SQL Injection &#40;specialtemplates&#41;

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

CVE-2004-2572

AMAX Magic Winmail Server 3.6 allows remote attackers to obtain sensitive information by entering 1 invalid characters such as "" or 2 a large number of characters in the Lookup field on the netaddressbook.php web form, which reveals the path in an ldaplib.php error message when the ldapsearch...

linux/x86 Magic Byte Self Modifying Code 76 bytes

No description provided by source. /-------------------------------------------------------/ / Magic Byte Self Modifying Code for surviving / / toupper & tolower / / 76bytes execve exit code by XORt / /-------------------------------------------------------/ "\xeb\x34" / jmp $0x34 revert / "\x5e"...

linux/x86 Magic Byte Self Modifying Code 76 bytes

linux/x86 Magic Byte Self Modifying Code 76 bytes. Shellcode exploit for linx86 platform /-------------------------------------------------------/ / Magic Byte Self Modifying Code for surviving / / toupper & tolower / / 76bytes execve exit code by XORt /...

linux/x86 Magic Byte Self Modifying Code 76 bytes

Exploit for linux/x86 platform in category shellcode ================================================= linux/x86 Magic Byte Self Modifying Code 76 bytes ================================================= /-------------------------------------------------------/ / Magic Byte Self Modifying Code for...

phpBB Code EXEC &#40;v2.0.10&#41;

| | | | | | | | || | | | | | | | | |/ / / / | | | / | '| |/ / | | | | V V / | |/ / | | | | | |// // |/ ,|| || http://www.howdark.com ---------------------------------------------------------------------------------------------------------------------------------- // Information...