Wordpress drag and drop file upload 0.1 - Arbitrary File Upload Vulnerability

No description provided by source. Exploit Title: Wordpress drag and drop file upload 0.1 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/drag-drop-file-uploader/ Date: 11/06/2012 Exploit Author: Adrien Thierry Vendor Homepage: http://www.ali.dj/ Software Link:...

Kootenay Web Inc whois 1.0 - Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1883/info whois is a utility used to find general information and technical details about registered domain names. A vulnerability exists in Kootenay Web Inc's Whois release v.1.9, a web interface to whois running on a...

Wordpress Mac Photo Gallery 2.7 - Arbitrary File Upload

No description provided by source. Exploit Title: Wordpress Mac Photo Gallery 2.7 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/mac-dock-gallery/ Date: 11/06/2012 Exploit Author: Adrien Thierry Vendor Homepage: http://www.apptha.com Software Link:...

YaBB 9.11.2000 search.pl Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1921/info YaBB Yet Another Bulletin Board is a popular perl-based bulletin board scripting package. search. pl, one of several perl scripts which comprise YaBB, fails to properly validate user input which arguments a call...

Mod_Gzip 1.3.x Debug Mode Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/7769/info Modgzip is reported prone to a stack overflow, format string vulnerability and a file corruption issue due to a predictable naming scheme for log files. Exploitation of these issues could result in execution of...

UoW imapd 10.234/12.264 Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/1110/info A buffer overflow exists in imapd. The vulnerability exists in the list command. By supplying a long, well-crafted string as the second argument to the list command, it becomes possible to execute code on the...

VoipNow <= 2.5 - Local File Inclusion Vulnerability

No description provided by source. / + Application : Voipnow | Version , Perior to 2.5.0 | Download : http://4psa.com/ | By Faris , AKA i-Hmx | [email protected] + sec4ever.com , 1337s.cc / VoipNow is commercial web GUI voip server manager, it's affected by local file inclusion vuln File :...

SuperMicro IPMI PSBlock File Plaintext Password Disclosure

The remote SuperMicro IPMI device is affected by an information disclosure vulnerability because it exposes all usernames and passwords in plaintext via the PSBlock file. A remote, unauthenticated attacker can exploit this vulnerability to download all usernames and passwords and gain a shell on...

WordPress image-symlinks Plugin Arbitrary File Upload Vulnerability

Author = X-Bruno E-mail = email protected Facebook = http://fb.me/Inj3ct.Bruno Google Dork = inurl:/wp-content/plugins/image-symlinks/ Usage Info = Exploit Info : The attacker can uplaod file/shell.php "php" // Allowed file extensions "/uploadify/"; // The path were we will save the file getcwd m...

FreeBSD : asterisk -- multiple vulnerabilities (f109b02f-f5a4-11e3-82e9-00a098b18457)

The Asterisk project reports : Asterisk Manager User Unauthorized Shell Access. Manager users can execute arbitrary shell commands with the MixMonitor manager action. Asterisk does not require system class authorization for a manager user to use the MixMonitor action, so any manager user who is...

CVE-2013-6876 s3dvt Root shell

CVE-2013-6876 s3dvt Root shell About s3dvt: s3dvt is part of the 3d network display server which can be used as 3d desktop environment. Vulnerability: A vulnerability in s3dvt for versions prior to 0.2.2 allows to obtain a root shell. Details, patches, discussion and strategy to exploit at:...

AST-2014-006: Asterisk Manager User Unauthorized Shell Access

Asterisk Project Security Advisory - AST-2014-006 Product Asterisk Summary Asterisk Manager User Unauthorized Shell Access Nature of Advisory Permission Escalation Susceptibility Remote Authenticated Sessions Severity Minor Exploits Known No Reported On April 9, 2014 Reported By Corey Farrell...

asterisk -- multiple vulnerabilities

The Asterisk project reports: Asterisk Manager User Unauthorized Shell Access. Manager users can execute arbitrary shell commands with the MixMonitor manager action. Asterisk does not require system class authorization for a manager user to use the MixMonitor action, so any manager user who is...

Dell ML6000 and Quantum Scalar i500 tape backup system command injection vulnerability

Overview Dell ML6000 and Quantum Scalar i500 tape backup system contain a command injection vulnerability. Description CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'Dell's and Quantum's advisories state the following: The tape library's remote use...

turbomail无任何限制getshell

简要描述： turbomail 官方windows版本存在多个漏洞，综合利用，没有任何限制getshell 详细说明： 今天看到 WooYun: TurboMail邮箱系统默认配置不当可进入任意邮箱及获取管理员密码（官网也中招及大量实例） 看到此系统影响如此深远，因此自己也下载一个学习分析一下。 找到官方地址 下载: http://www.turbomail.org/download.html 我下载的是windows版本，安装之后 开始学习使用。 由于是邮件系统，因此首先需要用户输入口令才能登录，当然正常邮件服务器都是这样的，因此首先看一下 对用户的验证过程。...

HP StoreVirtual Storage Remote Unauthorized Access

The remote HP storage system running LeftHand OS has an SSH support backdoor mechanism built in that may allow a remote attacker to gain root shell access to the system. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid73461; scriptversion"2.4"; scriptcvsdate"Date:...

Wordpress Themify Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Title : Wordpress Themify Arbitrary File Upload Vulnerability Author : Jje Incovers Date : 31/03/2014 Category : Web Applications Type : TXT, PHP, HTML, HTM, ASP, Etc. Vendor : http://themify.me/ Download : http://themify.me/themes Tested :...

CVE-2013-6770

The CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.3 and 4.4 does not properly restrict the set of users who can execute /system/xbin/su with the --daemon option, which allows attackers to gain privileges by leveraging ADB shell access and a certain Linux UID, and then...

ownCloud 6.0.0a File Deletion / XSS / CSRF

Exploit Title: ownCloud 6.0.0a File Deletion XSS and CSRF Protection Bypass Vendor Homepage: www.ownCloud.org OwnCloud Version: 6.0.0a Browsers tested: Iceweasel 22.0; Internet Explorer 11; Server: Debian. Default LAMP set-up. Exploit Author: James Sibley absane Blog: http://blog.noobroot.com...

Joomla Aclassfb Shell Upload

Title : Joomla comaclassfb File Upload Vulnerability Author : DevilScreaM Date : 10 January 2014 Category : Web Applications Vendor : http://www.almondsoft.com Type : PHP Greetz : 0day-id.com | newbie-security.or.id | Borneo Security | Indonesian Security Indonesian Hacker | Indonesian Exploiter ...