167 matches found
Solaris/x86 - Remote Download file - 79 bytes
Solaris/x86 - Remote Download file - 79 bytes. Shellcode exploit for solarisx86 platform / Title: Solaris/x86 - Remote Download file - 79 bytes Author: Jonathan Salwan Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Database of Shellcodes...
CVE-2010-0103
UsbCharger.dll in the Energizer DUO USB battery charger software contains a backdoor that is implemented through the Arucer.dll file in the %WINDIR%\system32 directory, which allows remote attackers to download arbitrary programs onto a Windows PC, and execute these programs, via a request to TCP...
PHP Inventory 1.2 - Authentication Bypass
PHP Inventory v1.2 Remote Auth Bypass SQL Injection Vulnerabiity Found By: mrme Download: http://www.phpwares.com/content/php-inventory Tested On: Windows Vista Note: For educational purposes only First of all lets login to admin with: http://server/php-inventory/index.php username: ' or 1=1--...
PT-2009-5879 · Digitaldesign · Digitaldesign Cms
Name of the Vulnerable Software and Affected Versions: Digitaldesign CMS version 0.1 Description: The issue allows remote attackers to download the database file via a direct request for autoconfig.dd due to insufficient access control. This is because sensitive information is stored under the we...
Improper access control
ROBS-PROJECTS Digital Sales IPN aka DS-IPN.NET or DS-IPN Paypal Shop stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request for Database/Sales.mdb...
CVE-2009-0250
Ryneezy phoSheezy 0.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the file containing the administrator's password hash via a direct request for config/password...
CVE-2008-5898
CodeAvalanche Directory stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CADirectory.mdb. NOTE: some of these details are obtained fr...
CVE-2008-5852
CVE-2008-5852 affects Emefa Guestbook 3.0, where the database file guestbook.mdb is stored under the web root with insufficient access control. This configuration allows remote attackers to download the database via a direct request, leading to a partial confidentiality impact. The NVD entry assi...
PT-2008-5214 · Ultra · Ultra Office Control
Name of the Vulnerable Software and Affected Versions: Ultra Office Control version 2.0.2008.801 and earlier Description: The issue allows remote attackers to force the download of arbitrary files onto a client system. This is achieved by using a URL in the first argument to the Open method, in...
Akamai Download Manager < 2.2.3.7 ActiveX Remote Download Exploit
No description provided by source. html !-- / Exploit start here, by cocoruderfrankruderathotmail.com For "Akamai Download Manager File Download To Arbitrary Location Vulnerability". This exploit will download "http://ruder.cdut.net/attach/calc.exe" to "C:\Documents and Settings\All Users\Start...
Akamai Download Manager < 2.2.3.7 ActiveX Remote Download Exploit
Exploit for unknown platform in category remote exploits ================================================================= Akamai Download Manager Download Manager window.resizeTo500,510; var bDocReady = false; var bInsObj = false; var isLinux = navigator.userAgent.indexOf"Linux" = 0; var isMacFF...
Akamai Download Manager 2.2.3.7 - ActiveX Remote Download
Akamai Download Manager 2.2.3.7 - ActiveX Remote Download Download Manager window.resizeTo500,510; var bDocReady = false; var bInsObj = false; var isLinux = navigator.userAgent.indexOf"Linux" = 0; var isMacFF = navigator.userAgent.indexOf"Firefox" = 0 && navigator.userAgent.indexOf"Mac" = 0; var...
c6msg-activex.txt
!-- C6 Messenger Installation Url DownloaderActiveX Control Remote Download & Execute Exploit by Nine:Situations:Group::SnoopyAssault site: http://retrogod.altervista.org/ "C6 Messenger is an instant messaging program produced by Telecom Italia Group, specifically by Alice distribution, Icon Spa...
C6 Messenger ActiveX Remote Download & Execute Exploit
No description provided by source. !-- C6 Messenger Installation Url DownloaderActiveX Control Remote Download & Execute Exploit by Nine:Situations:Group::SnoopyAssault site: http://retrogod.altervista.org/ "C6 Messenger is an instant messaging program produced by Telecom Italia Group, specifical...
[NSG 03-06-2008] C6 Messenger Installation Url DownloaderActiveX Control Remote Download & Execute Exploit
!-- C6 Messenger Installation Url DownloaderActiveX Control Remote Download & Execute Exploit by Nine:Situations:Group::SnoopyAssault site: http://retrogod.altervista.org/ exploit url: http://retrogod.altervista.org/9sgc6downloadexec.html "C6 Messenger is an instant messaging program produced by...
Akamai Download Manager < 2.2.3.7 - ActiveX Remote Download
Download Manager window.resizeTo500,510; var bDocReady = false; var bInsObj = false; var isLinux = navigator.userAgent.indexOf"Linux" = 0; var isMacFF = navigator.userAgent.indexOf"Firefox" = 0 && navigator.userAgent.indexOf"Mac" = 0; var isSafari = navigator.userAgent.indexOf"Safari" = 0; var...
C6 Messenger ActiveX Remote Download & Execute Exploit
Exploit for unknown platform in category remote exploits ====================================================== C6 Messenger ActiveX Remote Download & Execute Exploit ====================================================== !-- C6 Messenger Installation Url DownloaderActiveX Control Remote Download...
C6 Messenger - ActiveX Remote Download and Execute
C6 Messenger - ActiveX Remote Download and Execute !-- C6 Messenger Installation Url DownloaderActiveX Control Remote Download & Execute Exploit by Nine:Situations:Group::SnoopyAssault site: http://retrogod.altervista.org/ "C6 Messenger is an instant messaging program produced by Telecom Italia...
C6 Messenger - ActiveX Remote Download and Execute
!-- C6 Messenger Installation Url DownloaderActiveX Control Remote Download & Execute Exploit by Nine:Situations:Group::SnoopyAssault site: http://retrogod.altervista.org/ "C6 Messenger is an instant messaging program produced by Telecom Italia Group, specifically by Alice distribution, Icon Spa...
snitz-multi.txt
HSC Snitz Forums Multiple Vulnerabilities Snitz Forums Default Database installation allows remote users to download the database which contains critical information. As a result, an attacker exploiting this vulnerability will be able to obtain detailed information. An attacker may leverage xss...