GTA SA-MP server.cfg Buffer Overflow

$Id: gtasamp.rb 14076 2011-10-26 22:16:26Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

GTA SA-MP - 'server.cfg' Local Buffer Overflow (Metasploit)

$Id: gtasamp.rb 14076 2011-10-26 22:16:26Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

Nginx 0.7.65 Shell Upload

Exploit Title : Nginx Server Configuration hole ; Upload file execute Software link : http://nginx.org/ Version : Confirmed in nginx v0.7.65. And PHP v5.3.2 with Suhosin patch and extension. Tested on : windows 7 Date : 29/07/2011 Author : sysmox.com Website : http://www.sysmox.com Email :...

Amoy Royal Taobao guest security vulnerabilities and fixes-vulnerability warning-the black bar safety net

Official website: http://www.taodisoft.com 1, demo Station background turned out to have a place to upload pictures, does not prohibit the upload. 2, the upload image simple filtration, easy to break, Upload a php file, and can be executed. 3, the servervpsconfiguration severe lower, get a webshe...

Debian DSA-2246-1 : mahara - several vulnerabilities

Several vulnerabilities were discovered in Mahara, an electronic portfolio, weblog, and resume builder. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-1402 It was discovered that previous versions of Mahara did not check user credentials before...

Use the IIS semicolon parsing upload vulnerability analysis-vulnerability warning-the black bar safety net

First look at the following a very common file upload extension filter code: fileExt=lcaseofile. FileExt arrUpFileType=splitUpFileType,"|" for i=0 to uboundarrUpFileType if fileEXT=trimarrUpFileTypei then EnableUpload=true exit for end if next if fileEXT="asp" or fileEXT="asa" or fileEXT="aspx" o...

Crystal Web Solutions SQL Injection

============================================================= Crystal Web Solutions category.php SQL Injection ============================================================= Vendor: Crystal Web Solutions http://www.crystal-web.co.uk Vendor Notification: 02 Jan 2011 Vulnerability Type: SQL Injectio...

HDWiKi V 5.0 local contains 0Day-vulnerability warning-the black bar safety net

| 漏洞 文件 :\install\install.php Key code: ? php errorreportingEERROR | EWARNING | EPARSE; define'INHDWIKI', TRUE; define'HDWIKIROOT', '../'; $langname=$COOKIE'langname';/langname without any filter,direct from the Cookies deposited in langname/ ifisset$REQUEST'lang' / Detect whether the variable is...

enet(Silicon Valley power)misallocation caused by leakage of the file and fixes-vulnerability warning-the black bar safety net

Brief Description: The jsp server is improperly configured, the result%3f the leak file Detail: Relates to the directory, as an example Vulnerabilityto prove: Repair solutions:?. jsp to%3f. jsp URL encoding occurs, resulting in the processing of jsp requests to the file Assembly errors of judgmen...

CVE-2010-3896

The ESSearchApplication directory tree in IBM OmniFind Enterprise Edition 8.x and 9.x does not require authentication, which allows remote attackers to modify the server configuration via a request to palette.do...

Authentication flaw

The ESSearchApplication directory tree in IBM OmniFind Enterprise Edition 8.x and 9.x does not require authentication, which allows remote attackers to modify the server configuration via a request to palette.do...

CVE-2010-3896

The ESSearchApplication directory tree in IBM OmniFind Enterprise Edition 8.x and 9.x does not require authentication, which allows remote attackers to modify the server configuration via a request to palette.do...

Fedora 11 : spamass-milter-0.3.1-18.fc11 (2010-5176)

This update includes a fix for a problem where if the milter is running using the '-x' option to expand aliases before passing inbound mail through SpamAssassin, a malicious client using a carefully-crafted SMTP session could execute arbitrary code on the mail server. The fix avoids the use of a...

Entry Level CMS SQL Injection Vulnerability

Exploit for php platform in category web applications =========================================== Entry Level CMS SQL Injection Vulnerability =========================================== +Title : SQL Injection Entry Level Content Management System EL CMS with schemafuzz.py --== Author ==-- + Autho...

Entry Level Content Management System (EL CMS) - SQL Injection

Entry Level Content Management System EL CMS - SQL Injection + Contact : vir0e5athackermaildotcom + Group : TECON The Eye COnference Indonesia + Site : http://tecon-crew.org Software Information +SOftware : Entry Level Content Management System EL CMS +vendor : http://www.entrylevelcms.com/...

Litespeed Web Server 4.0.12 - Cross-Site Request Forgery (Add Admin) Cross-Site Scripting

Litespeed Web Server 4.0.12 - Cross-Site Request Forgery Add Admin Cross-Site Scripting Author: d1dn0t didnotatmedotcom Software Link: http://www.litespeedtech.com/litespeed-web-server-downloads.html Version: 4.0.12 Greetz: Muts/Ryujin/KernelSaunders 0x00 Product Description LiteSpeed Web Server ...

Litespeed Web Server 4.0.12 - Cross-Site Request Forgery (Add Admin) / Cross-Site Scripting

Author: d1dn0t didnotatmedotcom Software Link: http://www.litespeedtech.com/litespeed-web-server-downloads.html Version: 4.0.12 Greetz: Muts/Ryujin/KernelSaunders 0x00 Product Description LiteSpeed Web Server is the leading high-performance, high-scalability web server. It is completely Apache...

DSA-1918-1 phpmyadmin - several vulnerabilities

Bulletin has no description...

TwonkyMedia Server <= 4.4.17, 5.0.65 xss

Exploit for unknown platform in category web applications ======================================== TwonkyMedia Server = 4.4.17, 5.0.65 xss ======================================== =========================================================================== Title: TwonkyMedia Server Multiple...

BRS Webweaver 1.33 /Scripts Access Restriction Bypass Vulnerability

Exploit for windows platform in category remote exploits =================================================================== BRS Webweaver 1.33 /Scripts Access Restriction Bypass Vulnerability =================================================================== Name : BSR Webweaver Version 1.33...