Easy FTP Server 1.7.0.11 - MKD Command Remote Buffer Overflow Exploit (Post Auth)

No description provided by source. !/usr/bin/python import socket,sys Tested on XP Pro SP2 Eng and XP Pro SP3 Eng print Easy FTP Server v1.7.0.11 MKD Remote BoF Exploit Post Authentication Author / Discovered by : Karn Ganeshen Date : July 5, 2010 KarnGaneshen aT gmail d0t com...

Easy FTP Server 1.7.0.11 - CWD Command Remote Buffer Overflow Exploit (Post Auth)

No description provided by source. Exploit Title: Easy FTP Server v1.7.0.11 CWD Command Remote Buffer Overflow Exploit Post Auth Date: 2010-07-18 Author: fdisk @fdiskyou e-mail: fdiskyou at deniable.org Software Link: Version: 1.7.0.11 Tested on: Windows XP SP3 en import socket import sys...

ActFax Server FTP 4.25, Build 0221 (2010-02-11) - Remote BOF (Post Auth)

No description provided by source. !/usr/bin/python Exploit Title: ActFax Server FTP Remote BOF post auth Date: Feb 15, 2011 Author: chap0 Software Link: http://www.actfax.com/download/actfaxsetupen.exe Version: Version 4.25, Build 0221 2010-02-11 Tested on: Windows XP SP3 en Big thanks to Sud0 -...

amoeba cms 1.01 - Multiple Vulnerabilities

No description provided by source. !/usr/bin/python Amoeba CMS v1.01 multiple remote vulnerabilities: Vendor: http://www.amoebacms.com/ Found by: mrme Contact date: 20/12/2010 2:37pm EST SQL Injection: ============= There is quite a few instances of pre/post auth SQL Injection in the web...

I Read It Somewhere (IRIS) citations management tool <= v1.3 (post auth) Remote Command Execution

A vulnerability exists in IRIS citations management tool which allows a low privileged attacker to execute arbitrary commands. Details can be found on my blog: https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ PoC:...

Ubiquiti AirOS 5.5.2 - (Authenticated) Remote Command Execution

!/usr/bin/python +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Ubiquiti AirOS 0x90.nl Software link : http://www.ubnt.com/eula/?BACK=/downloads/XM-v5.5.2.build14175.bin Vendor site :...

Aoop CMS 0.3.6 Multiple Vulnerabilities

Exploit for php platform in category web applications 1. ADVISORY INFORMATION ----------------------- Product: Aoop CMS Vendor URL: www.annonyme.de Type: Cross-site Scripting CWE-79, SQL-Injection CWE-89 Date found: 2012-04-07 Date published: 2012-08-24 CVSSv2 Score: 7,5 AV:N/AC:L/Au:N/C:P/I:P/A:...

GWebmail 0.7.3 - Cross-Site Scripting / Local File Inclusion / Remote Code Execution

!/usr/bin/python ''' Exploit Title: XSS & LFI RCE Vulnerabilities in GWebmail Date: 11/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: https://www.gwebmail.net Software Link: https://www.gwebmail.net/download/ Version: 0.7.3 Gr33Tz: @aviadgolan , @benhayak, @nirgoldshlager,...

GWebmail 0.7.3 XSS / LFI / Command Execution

!/usr/bin/python ''' Exploit Title: XSS & LFI RCE Vulnerabilities in GWebmail Date: 11/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: https://www.gwebmail.net Software Link: https://www.gwebmail.net/download/ Version: 0.7.3 Gr33Tz: @aviadgolan , @benhayak, @nirgoldshlager,...

Baby Gekko CMS 1.1.5c Cross Site Scripting

Baby Gekko CMS v1.1.5c Multiple Stored Cross-Site Scripting Vulnerabilities Vendor: Baby Gekko, Inc. Product web page: http://www.babygekko.com Affected version: 1.1.5c Summary: BabyGekko strives to deliver high quality websites and other web content fast and easy for all end users. It is a...

Sysax 5.57 - Directory Traversal

Sysax 5.57 - Directory Traversal !/usr/bin/python Title: Sysax Multi Server = 5.57 Directory Traversal Tool Post Auth Author: Craig Freyman @cd1zz Tested on: XP SP3 32bit and Server 2003 SP2 32bit Date Discovered: March 27, 2012 Vendor Contacted: March 29, 2012 Vendor Response: April 3, 2012 Vend...

Sysax 5.57 - Directory Traversal

!/usr/bin/python Title: Sysax Multi Server = 5.57 Directory Traversal Tool Post Auth Author: Craig Freyman @cd1zz Tested on: XP SP3 32bit and Server 2003 SP2 32bit Date Discovered: March 27, 2012 Vendor Contacted: March 29, 2012 Vendor Response: April 3, 2012 Vendor Fixed: Currently working on fi...

TomatoCart 1.1 Post Auth Local File Inclusion Vulnerability

Exploit for php platform in category web applications Exploit Title: TomatoCart 1.1 PostAuth Local File Include Google Dork: "Powered by TomatoCart" Date: 25.10.2010 Author: brainpillow Software Link: http://www.tomatocart.com/ Version: 1.1 ========================================================...

Easy~FTP Server POST Auth 'MKD' Command Buffer Overflow Vulnerability

Easy FTP Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DoceboLms 4.0.4 - Multiple Persistent Cross-Site Scripting Vulnerabilities

DoceboLms 4.0.4 - Multiple Persistent Cross-Site Scripting Vulnerabilities DoceboLMS 4.0.4 Multiple Stored XSS Vulnerabilities function xss1document.forms"xss1".submit; function xss2document.forms"xss2".submit; input type="hidden" name="authentic...

amoeba CMS 1.01 - Multiple Vulnerabilities

amoeba CMS 1.01 - Multiple Vulnerabilities !/usr/bin/python """ Amoeba CMS v1.01 multiple remote vulnerabilities: Vendor: http://www.amoebacms.com/ Found by: mrme Contact date: 20/12/2010 2:37pm EST SQL Injection: ============= There is quite a few instances of pre/post auth SQL Injection in the...

Easy FTP Server v1.7.0.11 Multiple Commands Buffer Overflow Exploit

Exploit for windows platform in category remote exploits =================================================================== Easy FTP Server v1.7.0.11 Multiple Commands Buffer Overflow Exploit =================================================================== Note: RNFR, DELE, RMD, STOR commands...

UPlusFTP Server v1.7.1.01 HTTP Remote Buffer Overflow Post Auth

Exploit for windows platform in category remote exploits =============================================================== UPlusFTP Server v1.7.1.01 HTTP Remote Buffer Overflow Post Auth =============================================================== !/usr/bin/python import socket,sys,base64 print...

EasyFTP Server 1.7.0.11 - CWD (Authenticated) Remote Buffer Overflow

EasyFTP Server 1.7.0.11 - CWD Authenticated Remote Buffer Overflow Exploit Title: Easy FTP Server v1.7.0.11 CWD Command Remote Buffer Overflow Exploit Post Auth Date: 2010-07-18 Author: @fdiskyou e-mail: rui at deniable.org Software Link: Version: 1.7.0.11 Tested on: Windows XP SP3 en import sock...

Oracle Secure Backup Administration Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on vulnerable installations of Oracle Secure Backup. The specific flaw exists within the register globals emulation layer which allows attackers to specify values for arbitrary program variables. When specific parameters are...