703 matches found
CVE-2016-4788
Pulse Connect Secure PCS 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r10, and 7.4 before 7.4r13.4 allow remote attackers to read an unspecified system file via unknown vectors...
CVE-2016-4788
Pulse Connect Secure (PCS) contains an information-disclosure vulnerability (CVE-2016-4788) that allows remote attackers to read an unspecified system file via unknown vectors. Affected versions include PCS 7.4 before 7.4r13.4, 8.0 before 8.0r10, 8.1 before 8.1r2, and 8.2 before 8.2r1. The issue ...
Joomla 3.4.5 Object Injection
package main / Exploit Title: Joomla 1.5.x to 3.4.5 Object Injection Exploit Exploit Author: Khashayar Fereidani http://fereidani.com Version: 1.5.x to 3.4.5 CVE : CVE-2015-8562 THIS EXPLOIT PUBLISHED ONLY FOR EDUCATIONAL PROPOSES ANY ILLEGAL USAGE IS ON YOUR OWN RESPONSIBILITY How to run : you...
Tanium Arbitrary File Overwrite Vulnerability
Tanium is an endpoint protection and management platform. An arbitrary file overwrite vulnerability exists in Tanium, which allows attackers to exploit the vulnerability to corrupt system files and conduct denial-of-service attacks...
Bonita BPM 6.5.1 Directory Traversal / Open Redirect
Advisory ID: HTB23259 Product: Bonita BPM Vendor: Bonitasoft Vulnerable Versions: 6.5.1 and probably prior Tested Version: 6.5.1 Windows and Mac OS packages Advisory Publication: May 7, 2015 without technical details Vendor Notification: May 7, 2015 Vendor Patch: June 9, 2015 Public Disclosure:...
Photo Website for iOS airphotos.ma local file inclusion vulnerability
Photo Website for iOS is a photo album tool. Photo Website for iOS airphotos.ma handles a local file inclusion vulnerability in 'mDirNameList' and 'mDirUrlList', which allows remote attackers to exploit the vulnerability to obtain the contents of system files...
VeryPhoto Pro for iOS Wifi Interface Module Name Local File Inclusion Vulnerability
VeryPhoto Pro for iOS is a photo album tool. A local file inclusion vulnerability exists in the Wifi Interface Module Handling module name for VeryPhoto Pro for iOS, which allows attackers to exploit the vulnerability to obtain the contents of system files...
xbindkeys-config '/tmp/xbindkeysrc-tmp' local temporary file creation vulnerability
xbindkeys-config is the GTK front end for xbindkeys. A local temporary file creation vulnerability exists in bindkeys-config '/tmp/xbindkeysrc-tmp' which allows local attackers to corrupt system files via symbolic links...
espcms最新版本CSRF直接getshell
简要描述: espcms 最新版本csrf 直接getshell 详细说明: 这里我们首先看看,存在的代码问题 management.php:lines:711-741: function onsetsave $dbtable = dbprefix . 'config'; $commandfile = adminROOT . 'datacache/command.php'; if !$this-fun-filemode$commandfile exit'false'; $oldishtml = $this-CON'ishtml'; $sql = 'SELECT FROM '...
ISPConfig 3.0.54p1 - Authenticated Admin Local root Vulnerability
No description provided by source. Exploit Title: ISPConfig 3 authenticated admin Localroot vulnerability Date: 7/25/14 Exploit Author: mra Vendor Homepage: http://wwwispconfig.org Version: 3.0.54p1 Tested on: ubuntu, centos irc.criten.net elite-chat While logged in as admin user: 1 add a shell...
SuSE 6.x/7.0 MkDir Error Handling rctab Race Condition Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/2207/info rctab is the Run Control Tab script included with the SuSE distribution of the Linux Operating System. SuSE is a freely available, Open Source Operating system maintained by SuSE Incorporated. A race condition i...
PHP-Proxima autohtml.PHP Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7598/info A vulnerability has been reported for PHP-Proxima. The problem occurs in the autohtml.php script. Specifically, the script fails to verify the contents of a user-supplied variable before including a specified fi...
Yealink VoIP Phone SIP-T38G - Privileges Escalation
No description provided by source. Title: Yealink VoIP Phone SIP-T38G Privileges Escalation Author: Mr.Un1k0d3r & Doreth.Z10 From RingZer0 Team Vendor Homepage: http://www.yealink.com/Companyprofile.aspx Version: VoIP Phone SIP-T38G CVE: CVE-2013-5759 Description: Using the fact that cgiServer.ex...
CMS little (index.php template) 0.0.1 - Local File Inclusion Vulnerability
No description provided by source. ====================================================================== CMS little index.php template Local File Inclusion Vulnerability ====================================================================== ,--^----------,--------,-----,-------^--, | |||||||||...
FOG Forum 0.8.1 - Multiple Local File Inclusion Vulnerabilities
No description provided by source. ======================================================= FOG Forum 0.8.1 Local File Inclusion Vulnerabilities ======================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Te...
Yealink VoIP Phone SIP-T38G - Privilege Escalation
Title: Yealink VoIP Phone SIP-T38G Privileges Escalation Author: Mr.Un1k0d3r & Doreth.Z10 From RingZer0 Team Vendor Homepage: http://www.yealink.com/Companyprofile.aspx Version: VoIP Phone SIP-T38G CVE: CVE-2013-5759 Description: Using the fact that cgiServer.exx run under the root privileges we...
openSUSE Security Update : php5 (openSUSE-SU-2013:1244-1)
fixing the following security issues : - CVE-2013-4635.patch bnc828020 : - Integer overflow in the SdnToJewish - CVE-2013-1635.patch and CVE-2013-1643.patch bnc807707 : - reading system files via untrusted SOAP input - soap.wsdlcachedir function did not honour PHP openbasedir -...
CA ERwin Web Portal MIMM downloadScriptFile.do Information Disclosure Vulnerability
This vulnerability allows remote attackers to read nearly any system file, including database credentials, on a system with vulnerable installations of CA ERwin Web Portal's Meta Integration Metadata Management service. Authentication is not required to exploit this vulnerability. The specific fl...
Alienvault 4.5.0 - (Authenticated) SQL Injection (Metasploit)
The following request is vulnerable to a SQL injection attack from authenticated users. GET /ossim/report/BusinessAndComplianceISOPCI/ISO27001Bar1.php?datefrom=2014-02-28&dateto=2014-03-30 HTTP/1.1 Host: 172.31.16.150 User-Agent: Mozilla/5.0 X11; Ubuntu; Linux x8664; rv:26.0 Gecko/20100101...
Synology DiskStation Manager (DSM) 4.3-3776 - Multiple Vulnerabilities
Exploit for linux platform in category web applications Title: Synology DSM multiple vulnerabilities Version affected: = 4.3-3776 Vendor: Synology Discovered by: Andrea Fabrizi Email: email protected Web: http://www.andreafabrizi.it Twitter: @andreaf83 Status: unpatched Synology DiskStation Manag...