30 matches found
Leif M. Wright everythingform.cgi 2.0 Arbitrary Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2101/info An input validation vulnerability exists in Leif M. Wright's everything.cgi, a Perl-based form design tool. The script fails to properly filter shell commands from user-supplied input to the 'config' field. As a...
Aardvark Topsites PHP <= 4.2.2 (lostpw.php) Remote Include Exploit
No description provided by source. !/usr/bin/perl Aardvark Topsites PHP =4.2.2 Remote Command Execution Exploit Copyright c 2006 cijfer cijfer@netti!fi All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ to set your PHP shell...
[Web-Sorrow v1.5] Versatile security scanner for the information disclosure and fingerprinting phases of pentesting
Web-Sorrow is a perl based tool for misconfiguration, version detection, enumeration, and server information scanning. It's entirely focused on Enumeration and collecting Info on the target server. Web-Sorrow is a "safe to run" program, meaning it is not designed to be an exploit or perform any...
Critical: Red Hat Security Advisory: samba security update
Updated samba packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6; Red Hat Enterprise Linux 5.3 Long Life; and Red Hat Enterprise Linux 5.6, 6.0 and 6.1 Extended Update Support. The Red Hat Security Response Team has rated this update as having critical...
WebAPP Detection
The remote host is running WebAPP, an open source web portal written in Perl. SPDX-FileCopyrightText: 2009 LSS Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
iRehearse (.m3u File) Local Buffer Overflow PoC
Exploit for unknown platform in category dos / poc =============================================== iRehearse .m3u File Local Buffer Overflow PoC =============================================== !/usr/bin/perl iRehearse m3u local stack overlow POC finded by opt!x hacker download :...
FAQManager Arbitrary File Reading Vulnerability
FAQManager is a Perl-based CGI for maintaining a list of Frequently asked Questions. Due to poor input validation it is possible to use this CGI to view arbitrary files on the web server. For example: someserver.com/cgi-bin/faqmanager.cgi?toc=/etc/passwd%00 SPDX-FileCopyrightText: 2002 Matt Moore...
FAQManager 'faqmanager.cgi' 'toc' Parameter Arbitrary File Access
FAQManager is a Perl-based CGI for maintaining a list of Frequently Asked Questions. Using a specially crafted URL, a remote attacker can use this CGI to view arbitrary files on the web server. For example: http://www.example.com/cgi-bin/faqmanager.cgi?toc=/etc/passwd%00 %NASLMINLEVEL 70300 This...
IkonBoard 2.1.7b - Remote File Disclosure
IkonBoard 2.1.7b - Remote File Disclosure source: https://www.securityfocus.com/bid/2471/info Ikonboard is a perl-based discussion forum script from ikonboard.com. Versions of Ikonboard are vulnerable to remote disclosure of arbitrary files. By adding a null byte to the name of a requested file,...
Leif M. Wright everythingform.cgi 2.0 - Arbitrary Command Execution
source: https://www.securityfocus.com/bid/2101/info An input validation vulnerability exists in Leif M. Wright's everything.cgi, a Perl-based form design tool. The script fails to properly filter shell commands from user-supplied input to the 'config' field. As a result, the script can be made to...