196 matches found
Wordpress Photo album Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ======================================================== Wordpress Photo album Remote SQL Injection Vulnerability ======================================================== WordPress album PHOTO SQL Injection DORK 1 : allinurl: pageid album...
xGB 2.0 - 'xGB.php' Remote Security Bypass
/ xGB 2.0 xGB.php Remote Permission Bypass Vulnerability Bug discovered by DarkFuneral http://www.darkfuneral89.altervista.org/ Affected Software: xGB CMS Site: "i don't know! :P" Severity: Critical Description: An attacker can edit all message in xGB Google Dork: allinurl:"xGb.php" E-Mail:...
xGB 2.0 - xGB.php Remote Security Bypass
xGB 2.0 - xGB.php Remote Security Bypass / xGB 2.0 xGB.php Remote Permission Bypass Vulnerability Bug discovered by DarkFuneral http://www.darkfuneral89.altervista.org/ Affected Software: xGB CMS Site: "i don't know! :P" Severity: Critical Description: An attacker can edit all message in xGB Goog...
Mozilla Firefox 2.0.0.4多个远程安全漏洞
BUGTRAQ ID: 24946 CVECAN ID: CVE-2007-3734,CVE-2007-3735,CVE-2007-3736,CVE-2007-3737,CVE-2007-3738 Mozilla Firefox是一款流行的开源WEB浏览器。 Firefox的浏览器引擎和JavaScript引擎中存在多个内存破坏漏洞,可能允许攻击者导致浏览器崩溃。 addEventListener和setTimeout方式中的漏洞可能允许攻击者破坏浏览器的同源策略向其他站点注入脚本,访问或修改该站点的保密或敏感数据。...
VRNews 1.1.1 - admin.php Remote Security Bypass
VRNews 1.1.1 - admin.php Remote Security Bypass VRNews v1.x = /VRNews/admin.php Permission Found by: R4M! - [email protected] Dork: intitle:"vrnews v1" Script: http://www.toocharger.com/fiches/scripts/vrnews/3632.htm Example: 1. /VRNews/admin.php?act=edit 2. /VRNews/admin.php?act=add 3...
InGate Firewall及SIParator多个远程安全漏洞
Ingate Firewall和SIParator都是企业级的硬件防火墙设备。 Ingate Firewall和SIParator防火墙没有正确地限制下载支持报表,这可能允许攻击者下载某些敏感信息;此外这些防火墙的SIP认证要求中存在错误,可能允许攻击者通过maddr参数绕过认证,获得非授权访问。 Ingate Firewall 4.5.2 Ingate SIParator 4.5.2 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.ingate.com/...
Biba Selenium Web Server多个远程安全漏洞
Selenium Server允许用户方便的架设FTP或WEB服务器。 Selenium Server在处理传送给DIR、GET和PUT命令的参数时存在输入验证错误,允许攻击者通过特制的目录遍历序列列出并下载根目录外任意位置的文件。 此外,Selenium Server将用户口令以明文存储到了Servers目录下,允许攻击者轻易的检索到登录凭据。 Biba Software Selenium Web Server 1.0 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://bibasoftware.com/...
SOCKS4 Server Recursive Connection Remote DoS
It is possible to connect to the SOCKS4 server through itself. An attacker can leverage this issue to saturate the host's CPU, memory or file descriptors. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid17155; scriptversion "1.12"; scriptnameenglish:"SOCKS4 Server...
Ventia DeskNow Multiple Remote Vulnerabilities (deprecated)
Binary data 2586.prm...
ISC BIND < 8.2.3 Multiple Remote Vulnerabilities (deprecated)
Binary data 1004.prm...
Microsoft Windows - 'RPC DCOM2' Remote (MS03-039)
/ RPCDCOM2.c ver1.1 copy by FLASHSKY flashsky at xfocus.org 2003.9.14 / include include include include include include unsigned char bindstr= 0x05,0x00,0x0B,0x03,0x10,0x00,0x00,0x00,0x48,0x00,0x00,0x00,0x7F,0x00,0x00,0x00,...
SMTP Generic Overflow Detection
The remote SMTP server crashes when it is sent a command with a too long argument. An attacker might use this flaw to kill this service or worse, execute arbitrary code on the server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11772; scriptversion"$Revision: 1.17...
IBM AIX 4.3.3/5.1/5.2 - 'libIM' Buffer Overflow
source: https://www.securityfocus.com/bid/6840/info A buffer overflow vulnerability has been discovered in the libIM library available for the AIX 4.3, 5.1, 5.2 operating system. As a result it may be possible to overwrite sensitive memory in programs linked to the affected library. By identifyin...
[NEWS] Upcoming OpenSSH Vulnerability (Privileges Separation)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion When was the last time you checked your server's security? How about a monthly report? http://www.AutomatedScanning.com - Know that you're...
Microsoft IIS Potentially Compromised Host Detection
One or more files were found on this host that indicate a possible compromise. %NASLMINLEVEL 70300 This script was written by H D Moore ... and hacked by Tenable Network Security to avoid false positive. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid11003;...
CVE-2001-0389
IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument...