phpfusion-sql.py.txt

!/usr/bin/python """ ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This was a priv8 Exploit...

PHP-Fusion 6.01.14 - Blind SQL Injection

!/usr/bin/python """ ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This was a priv8 Exploit...

exbb-lfirfi.txt

==================================================================================================== / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ==================================================================================================== This is a public Exploit...

ExBB 0.22 - Local/Remote File Inclusion

==================================================================================================== / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ==================================================================================================== This is a public Exploit...

ExBB 0.22 - LocalRemote File Inclusion

ExBB 0.22 - LocalRemote File Inclusion ==================================================================================================== / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ==================================================================================================== This is a...

MySQL yaSSL SSL Hello message buffer overflow

Added: 03/10/2008 CVE: CVE-2008-0226 BID: 27140 OSVDB: 41935 Background MySQL is an open-source database software package available for multiple platforms. yaSSL is an SSL library. MySQL, if SSL support is enabled, uses yaSSL by default. Problem A buffer overflow vulnerability in the...

OpenSiteAdmin 0.9.1.1 - Multiple File Inclusions

Software Vulnerable: OpenSiteAdmin 0.9.1 BETA and maybe prior versions. Vulnerable Code: -OpenSiteAdmin/indexFooter.php requireonce$path."footer.php"; -OpenSiteAdmin/scripts/classes/DatabaseManager.php requireonce$path."OpenSiteAdmin/include.php";...

osa-rfi.txt

Software Vulnerable: OpenSiteAdmin 0.9.1 BETA and maybe prior versions. Vulnerable Code: -OpenSiteAdmin/indexFooter.php requireonce$path."footer.php"; -OpenSiteAdmin/scripts/classes/DatabaseManager.php requireonce$path."OpenSiteAdmin/include.php";...

OpenSiteAdmin 0.9.1.1 - Multiple File Inclusions

OpenSiteAdmin 0.9.1.1 - Multiple File Inclusions Software Vulnerable: OpenSiteAdmin 0.9.1 BETA and maybe prior versions. Vulnerable Code: -OpenSiteAdmin/indexFooter.php requireonce$path."footer.php"; -OpenSiteAdmin/scripts/classes/DatabaseManager.php requireonce$path."OpenSiteAdmin/include.php";...

All Club CMS 0.0.1f - 'index.php' Local File Inclusion

Vulnerability: File Inclusion Software Vulnerable: All Club CMS 0.0.1f and maybe prior versions. Vulnerable Code: --- function autoload$classname requireonce 'includes/'.$classname . '.php'; --- Download: http://sourceforge.net/project/showfiles.php?groupid=209058 Server should have: Register...

All Club CMS 0.0.1f - index.php Local File Inclusion

All Club CMS 0.0.1f - index.php Local File Inclusion Vulnerability: File Inclusion Software Vulnerable: All Club CMS 0.0.1f and maybe prior versions. Vulnerable Code: --- function autoload$classname requireonce 'includes/'.$classname . '.php'; --- Download:...

CVE-2008-0395

Kayako SupportSuite 3.11.01 allows remote attackers to obtain server configuration information via a direct request to syncml/index.php, which prints the contents of the $SERVER superglobal...

CVE-2008-0395

Kayako SupportSuite 3.11.01 allows remote attackers to obtain server configuration information via a direct request to syncml/index.php, which prints the contents of the $SERVER superglobal...

CVE-2008-0395

Kayako SupportSuite 3.11.01 is affected by CVE-2008-0395: an information-disclosure flaw where a direct request to syncml/index.php prints the PHP $_SERVER superglobal, allowing remote attackers to obtain server configuration information. The vulnerability is triggered through an accessible endpo...

PHP-Nuke (ALL versions) Multiple XSS and HTML injection

PHP-Nuke ALL versions Search Module multiple XSS and HTML injection ------------------------------------------------------------------- The well-known PHP-Nuke CMS is vulnerable to multiple XSS attacks and HTML injections through the Search Module. The request is made using POST, but the whole...

vainifileoverwrite-06_041.txt

Portcullis Security Advisory 06-041 Vulnerable System: Visionsoft Audit Vulnerability Title: Ths VSAOD server allows unauthenticated ini file overwrites. Vulnerability discovery and development: Portcullis Security Testing Services discovered this vulnerability during an application assessment...

Design/Logic Flaw

suexec in Apache HTTP Server httpd 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vend...

CVE-2007-1742

suexec in Apache HTTP Server httpd 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to perform unauthorized operations on incorrect directories, as demonstrated using "htmlbackup" and "htmleditor" under an "html...

CVE-2007-1742

Apache HTTP Server (httpd) 2.2.3’s suexec uses a partial path comparison to determine if the current directory is within the document root. This may allow local users to operate on incorrect directories under an html directory (e.g., html_backup/htmleditor). The issue is described across multiple...

CVE-2007-1743

CVE-2007-1743 affects Apache HTTP Server (httpd) with the suexec module. The issue is that suexec (in httpd 2.2.3) does not verify combinations of user and group IDs on the command line, which might allow a local user to leverage other vulnerabilities to create arbitrary UID/GID–owned files if /p...