U&M Software Signup 1.1 Auth Bypass Vulnerability

No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ==============================================================================...

UM Software Signup 1.1 - Authentication Bypass

UM Software Signup 1.1 - Authentication Bypass ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

U&M Software Signup 1.1 - Authentication Bypass

============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ============================================================================== / | | || | | \ | | / \ | |/ / | | |...

Unfixed XSS vulnerability at signup.0catch.com

Security researcher Uber0n, has submitted on 11/03/2008 a cross-site-scripting XSS vulnerability affecting signup.0catch.com, which at the time of submission ranked 10822 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/04/2008. It is current...

Availscript Jobs Portal Script File Upload Vulnerability (auth)

No description provided by source. || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ \ | | \ \ /\ /\ \ \ \ /...

AvailScript Jobs Portal Script - (Authenticated) Arbitrary File Upload

AvailScript Jobs Portal Script - Authenticated Arbitrary File Upload || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of...

Availscript Jobs Portal Script File Upload Vulnerability (auth)

Exploit for unknown platform in category web applications =============================================================== Availscript Jobs Portal Script File Upload Vulnerability auth ===============================================================...

default config values restored

This should be for 2.9.1 - this version was not yet available under "affects versions" when filing this bug. After updating from 2.9 to 2.9.1, most of my settings were overwritten by their default values. - public signup got enabled - the language changed back to english instead of german - e-mai...

default config values restored

This should be for 2.9.1 - this version was not yet available under "affects versions" when filing this bug. After updating from 2.9 to 2.9.1, most of my settings were overwritten by their default values. - public signup got enabled - the language changed back to english instead of german - e-mai...

default config values restored

This should be for 2.9.1 - this version was not yet available under "affects versions" when filing this bug. After updating from 2.9 to 2.9.1, most of my settings were overwritten by their default values. - public signup got enabled - the language changed back to english instead of german - e-mai...

Unfixed XSS vulnerability at www.pimpstreetwars.com

Security researcher PaPPy, has submitted on 09/08/2008 a cross-site-scripting XSS vulnerability affecting www.pimpstreetwars.com, which at the time of submission ranked 8491951 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 09/08/2008. It is...

TubeGuru Video Sharing Script (UID) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== TubeGuru Video Sharing Script UID SQL Injection Vulnerability =============================================================== || | | TubeGuru ugroups php UID Remote SQL...

Youngzsoft CMailServer 5.4.6 - CMailCOM.dll Remote Overwrite (SEH)

Youngzsoft CMailServer 5.4.6 - CMailCOM.dll Remote Overwrite SEH 0 strUID = arrStringi objPOP3.MoveToFolder strUID ' ---------------- bof ... By attaching olly to the w3wp.exe sub-process you will see the usual dump with ecx and eip owned, with a buffer of approxymately 13000 chars...

CMailServer 5.4.6 (CMailCOM.dll) Remote SEH Overwrite Exploit

Exploit for unknown platform in category remote exploits ============================================================= CMailServer 5.4.6 CMailCOM.dll Remote SEH Overwrite Exploit ============================================================= 0 strUID = arrStringi...

Unfixed XSS vulnerability at pmsdns.org

Security researcher Dom, has submitted on 04/01/2008 a cross-site-scripting XSS vulnerability affecting pmsdns.org, which at the time of submission ranked 4985197 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 25/02/2008. It is currently...

XSS vulnerability in signup actions

Vulnerable URL's: - signup.action - dosignup.action on username, email, password, confirm, fullname...

XSS vulnerability in signup actions

Vulnerable URL's: - signup.action - dosignup.action on username, email, password, confirm, fullname...

XSS vulnerability in signup actions

Vulnerable URL's: - signup.action - dosignup.action on username, email, password, confirm, fullname...

ClipShare (uprofile.php UID) Remote SQL Injection Vulnerability

No description provided by source. video sharing www.clip-share.com Remote SQL Injection Exploit All Version AUTHOR :Krit webmaster of http://www.thaishadow.com HOME : http://www.thaishadow.com Download : http://www.clip-share.com/ DorKs :inurl:/uprofile.php?UID= or "Powered by clipshare" EXPLOIT...

ClipShare - UID SQL Injection

ClipShare - UID SQL Injection video sharing www.clip-share.com Remote SQL Injection Exploit All Version AUTHOR :Krit webmaster of http://www.thaishadow.com HOME : http://www.thaishadow.com Download : http://www.clip-share.com/ DorKs :inurl:/uprofile.php?UID= or "Powered by clipshare" EXPLOIT :...