Factlink: XSS 01 on staging.fct.li

hey the error message generated can be used to escape out of a dynamically generated href link. The below will render in internet explorer without xss filter enabled of course. See the screenshot for an example. The response is: HTTP/1.1 504 Gateway Time-out Server: nginx/1.4.4 Date: Wed, 02 Jul...

nginx 1.3.9-1.4.0 - DoS PoC

No description provided by source. Exploit Title: nginx v1.3.9-1.4.0 DOS POC CVE-2013-2028 Google Dork: CVE-2013-2028 Date: 16.05.2013 Exploit Author: Mert SARICA - mert . sarica @ gmail . com - http://www.mertsarica.com Vendor Homepage: http://nginx.org/ Software Link:...

nginx 0.7.64 Terminal Escape Sequence in Logs Command Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37711/info The 'nginx' program is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in log files. Attackers can exploit this issue to execute arbitrary commands in a...

nginx 0.6.x - Arbitrary Code Execution NullByte Injection

No description provided by source. Exploit Title: nginx Arbitrary Code Execution NullByte Injection Date: 24/08/2011 Exploit Author: Neal Poole Vendor Homepage: http://nginx.org/ Software Link: https://launchpad.net/nginx/0.6/0.6.36/+download/nginx-0.6.36.tar.gz Version: 0.5., 0.6., 0.7 = 0.7.65,...

nginx 1.4.0 64-bit - Remote Exploit for Linux (Generic)

No description provided by source. nginx = 1.4.0 exploit for CVE-2013-2028 by sorbo Fri Jul 12 14:52:45 PDT 2013 ./brop.rb 127.0.0.1 for remote hosts: ./frag.sh ip ./brop.rb ip rm state.bin when changing host or relaunching nginx with canaries scan.py will find servers, reading IPs from ips.txt...

Nginx HTTP Server 1.3.9-1.4.0 - Chuncked Encoding Stack Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit4...

Stark CRM 1.0 - Multiple Vulnerabilities

No description provided by source. ? Stark CRM v1.0 Multiple Script Injection And Session Riding Vulnerabilities Vendor: IWCn Systems Inc. Product web page: http://www.iwcn.ws Affected version: 1.0 Summary: This is a light weight CRM which simplifies process of managing staff, client and projects...

nginx 0.7.61 - WebDAV Directory Traversal

No description provided by source. Bug Title: nginx webdav copy/move method directory traversal Program: nginx Version: nginx/0.7.61 - other versions may also be affected Website: http://sysoev.ru/nginx/ Severity: Low Date discovered: 23 September 2009 The webdav component has to be enabled and t...

Nginx 0.8.36 - Source Disclosure and DoS Vulnerabilities

No description provided by source. Issue 1: Remote Source Disclosure - Description - nginx 0.8.36 is a multi platform HTTP server. This vulnerability exists in the latest Windows version of the application available. nginx on Windows is vulnerable to a remote source disclosure attack. - Technical...

Nginx <= 0.7.65 / 0.8.39 (dev) - Source Disclosure / Download Vulnerability

No description provided by source...

nginx 0.7.0-0.7.61, 0.6.0-0.6.38, 0.5.0-0.5.37, 0.4.0-0.4.14 - PoC

No description provided by source. debian: uname -a Linux debian 2.6.18-6-686 1 SMP Thu Aug 20 21:56:59 UTC 2009 i686 GNU/Linux debian: cat /etc/issue Debian GNU/Linux 4.0 \n \l debian: dpkg -l|grep nginx ii nginx 0.4.13-2+etch2 small, but very powerful and efficient debian: ps xauwww|grep...

nginx [engine x] http server <= 0.6.36 - Path Draversal

No description provided by source...

nginx 0.6.38 - Heap Corruption Exploit

No description provided by source. !/usr/bin/env python Exploit Title: nginx heap corruption Date: 08/26/2010 Author: aaron conole [email protected] Software Link: http://nginx.org/download/nginx-0.6.38.tar.gz Version: = 0.6.38, = 0.7.61 Tested on: BT4R1 running nginx 0.6.38 locally CVE: 2009-26...

nginx 1.3.9/1.4.0 x86 - Brute Force Remote Exploit

No description provided by source. nginx 1.3.9/1.4.0 x86 brute force remote exploit copyright c 2013 kingcope ---------------------------- fix for internet exploitation, set MTU: ifconfig interface mtu 60000 up !!! WARNING !!! this exploit is unlikely to succeed when used against remote internet...

GLSA-201406-20 : nginx: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-201406-20 nginx: Arbitrary code execution A bug in the SPDY implementation in nginx was found which might cause a heap memory buffer overflow in a worker process by using a specially crafted request. The SPDY implementation is not...

nginx: Arbitrary code execution

Background nginx is a robust, small, and high performance HTTP and reverse proxy server. Description A bug in the SPDY implementation in nginx was found which might cause a heap memory buffer overflow in a worker process by using a specially crafted request. The SPDY implementation is not enabled...

Fedora 20 : lynis-1.5.6-1.fc20 (2014-7400)

== 1.5.6 2014-06-12 == New : - Test for PHP binary and PHP version - Don't perform registerglobal test for systems running PHP 5.4.0 and later PHP-2368 - Debug function can be activated via --debug or profile Changes : - Extended IsRunning function - Removed suggestion from secure shell test...

openSUSE Security Update : nginx-1.0 (openSUSE-2011-48)

A flaw in the custom DNS resolver of nginx could lead to a heap based buffer overflow which could potentially allow attackers to execute arbitrary code or to cause a Denial of Service bnc731084, CVE-2011-4315. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

openSUSE Security Update : nginx (openSUSE-SU-2013:1745-1)

The nginx webserver was fixed to avoid a restriction bypass when a space in not correctly escaped. CVE-2013-4547 On openSUSE 12.2, nginx was updated to version 1.4.4 stable - CVE-2013-4547 a character following an unescaped space in a request line was handled incorrectly bnc851295 - bugfix:...

openSUSE Security Update : nginx-1.0 (openSUSE-SU-2013:1791-1)

The nginx webserver was fixed to avoid a restriction bypass when a space in not correctly escaped. CVE-2013-4547 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-913. The text...