Kerio WinRoute Firewall Web Server Remote Source Code Disclosure

By sending specially crafted requests with a NULL byte followed by an extension such as '.txt', an unauthenticated, remote attacker can obtain the source code of PHP files available through the version of Kerio WinRoute Firewall installed on the remote host. %NASLMINLEVEL 70300 C Tenable Network...

Signaling network separate development site of source code vulnerabilities and fixes-vulnerability warning-the black bar safety net

Editor vulnerability the default background ubbcode/adminlogin. asp Database ubbcode/db/ewebeditor. mdb The default account password yzm 1 1 1 1 1 1 Get the webshell method Landing back click on the“style management”-select the new style just to write this a few style name:scriptkiddies Feel free...

IIS 6.0/7.5 Vulnerabilities [moderate risk] - ISOWAREZ BDAY RELEASE

THIS IS A GENUINE ISOWAREZ RELEASE ------------------------------------------------------------------------------------------------------------------------------------------------------------ Title: Microsoft IIS 6.0 with PHP installed Authentication Bypass Affected software: Microsoft IIS 6.0 wi...

Microsoft IIS 6.0/7.5 Multiple Vulnerabilities(Authentication Bypass)

No description provided by source. THIS IS A GENUINE ISOWAREZ RELEASE ------------------------------------------------------------------------------------------------------------------------------------------------------------ Title: Microsoft IIS 6.0 with PHP installed Authentication Bypass...

Signaling network of independently developed web site source code vulnerability-vulnerability warning-the black bar safety net

Google search inurl:product1. asp? tyc= Editor vulnerability the default background ubbcode/adminlogin. asp Database ubbcode/db/ewebeditor. mdb The default account password yzm 1 1 1 1 1 1 Get the webshell method Landing back click on the“style management”-select the new style just to write this...

Microsoft IIS 6.0 and 7.5 Multiple Vulnerabilities

Exploit for windows platform in category remote exploits THIS IS A GENUINE ISOWAREZ RELEASE ------------------------------------------------------------------------------------------------------------------------------------------------------------ Title: Microsoft IIS 6.0 with PHP installed...

RIPS Scanner 0.10 File Disclosure

--------------------------------------- Author : L3b-r1'z Title : Rips-Scanner File Disclosure Date\Time : 8/6/2012 Email : [email protected] Site : Sec4Ever.com & Exploit4arab.com Google Dork : allintitle: "RIPS - A static source code analyser for vulnerabilities in PHP scripts" Version : 0.10...

Simple CMS SQL Injection

Simple CMS sqli read.php Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

Man Pleads Guilty To Stealing Source Code From Federal Reserve

A 33 year-old Chinese man pleaded guilty in U.S. Federal Court to stealing proprietary source code used by the U.S. Federal Reserve to help track billions of dollars in government transfers that occur daily, according to a report by Reuters. Bo a.k.a. “Bryan” Zhang was employed as a contract work...

PHP CGI Query String Parameters Command Execution

Added: 05/15/2012 CVE: CVE-2012-1823 BID: 53388 OSVDB: 81633 Background PHP is a widely used general-purpose scripting language that is especially suited for Web development. Problem When configured as a CGI script aka php-cgi, PHP does not properly handle query string parameters which are passed...

PHP CGI Query String Parameters Command Execution

Added: 05/15/2012 CVE: CVE-2012-1823 BID: 53388 OSVDB: 81633 Background PHP is a widely used general-purpose scripting language that is especially suited for Web development. Problem When configured as a CGI script aka php-cgi, PHP does not properly handle query string parameters which are passed...

WebGlimpse 2.18.8 RCE

Remote command execution vulnerability in WebGlimpse query parameter Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

TomatoCart 1.1.5 LFI

Local file include vulnerability in TomatoCart json.php Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...

Critical: Red Hat Security Advisory: php security update

Updated php packages that fix one security issue are now available for Red Hat Application Stack v2. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Kerio WinRoute Firewall < 6.0.0 Information Disclosure Vulnerability - Active Check

Kerio WinRoute Firewall is prone to a remote source code disclosure vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Kerio WinRoute Firewall Web Server Remote Source Code Disclosure Vulnerability

Kerio WinRoute Firewall is prone to a remote source-code- disclosure vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to view the source code of files in the context of the server process; this may aid in further attacks. Version...

Kerio WinRoute Firewall Source Code Disclosure

Exploit Title: Kerio WinRoute Firewall Embedded Web ServerVersion: Source Code Disclosure Google Dork: Date: 10.05.2012 Author: Eugene Salov, Andrey Komarov Group-IB, http://group-ib.ru Software Link: http://winroute.ru/keriowinroutefirewall.htm Version: prior to 6 Tested on: Microsoft Windows CV...

Critical: Red Hat Security Advisory: php security update

Updated php packages that fix one security issue are now available for Red Hat Enterprise Linux 5.3 Long Life, and Red Hat Enterprise Linux 5.6, 6.0 and 6.1 Extended Update Support. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability...

Kerio WinRoute Firewall Web Server < 6 Source Code Disclosure

Exploit for php platform in category web applications Exploit Title: Kerio WinRoute Firewall Embedded Web ServerVersion: Source Code Disclosure Google Dork: Date: 10.05.2012 Author: Eugene Salov, Andrey Komarov Group-IB, http://group-ib.ru Software Link: http://winroute.ru/keriowinroutefirewall.h...

Kerio WinRoute Firewall Web Server 6 - Source Code Disclosure

Kerio WinRoute Firewall Web Server 6 - Source Code Disclosure Exploit Title: Kerio WinRoute Firewall Embedded Web ServerVersion: Source Code Disclosure Google Dork: Date: 10.05.2012 Author: Eugene Salov, Andrey Komarov Group-IB, http://group-ib.ru Software Link:...