CVE-2011-0729

dbusbackend/ls-dbus-backend in the D-Bus backend in language-selector before 0.6.7 does not restrict access on the basis of a PolicyKit check result, which allows local users to modify the /etc/default/locale and /etc/environment files via a 1 SetSystemDefaultLangEnv or 2...

Maian Weblog 4.0 - Blind SQL Injection

Maian Weblog 4.0 - Blind SQL Injection ?php / maian weblog = v4.0 Remote Blind SQL Injection Exploit vendor: http://www.maianscriptworld.co.uk/ Thanks to Johannes Dahse: http://bit.ly/dpQXMK Explanation: Lines 335 - 341 of the index.php we see this if statement that concerns our variable $bpost. ...

IntelliCom NetBiter NB100 and NB200 platforms contain multiple vulnerabilities

Overview IntelliCom NetBiter products based on the NB100 and NB200 platforms contain multiple vulnerabilities. Description IntelliCom NetBiter products based on the NB100 and NB200 platforms contain multiple vulnerabilities. A user who has been authenticated at the superadmin level highest...

pyftpdlib FTP Server Multiple Directory Traversal Vulnerabilities

This host is running pyftpdlib FTP server and is prone to multiple directory traversal vulnerabilities. OpenVAS Vulnerability Test $Id: gbpyftpdlibmultdirtravvuln.nasl 7573 2017-10-26 09:18:50Z cfischer $ pyftpdlib FTP Server Multiple Directory Traversal Vulnerabilities Authors: Sooraj KS...

Stuxnet Detection

The remote Host seems to be infected by the Stuxnet worm. The Scanner found files on the remote host that indicate that this host is infected by the Stuxnet worm. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

FreeBSD-SA-10:07.mbuf

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-10:07.mbuf Security Advisory The FreeBSD Project Topic: Lost mbuf flag resulting in data corruption Category: core Module: kern Announced: 2010-07-13 Credits: Min...

hobcms / hertzCMS 1.1.9.19 File include Vulnerability

Exploit for php platform in category web applications ===================================================== hobcms / hertzCMS 1.1.9.19 File include Vulnerability ===================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /'...

CVE-2009-4878

Unspecified vulnerability in the Administration Console in Novell Access Manager before 3.1 SP1 allows attackers to access system files via unknown attack vectors...

Design/Logic Flaw

Unspecified vulnerability in the Administration Console in Novell Access Manager before 3.1 SP1 allows attackers to access system files via unknown attack vectors...

CVE-2009-4878

Technical details about CVE-2009-4878 are not provided in the supplied documents; no specifics on affected versions, root cause, or remediation are available. Monitor for updates.

CVE-2009-4878

Unspecified vulnerability in the Administration Console in Novell Access Manager before 3.1 SP1 allows attackers to access system files via unknown attack vectors...

Joes News System Files CMS 1.1 XSS Vulnerabilities

Exploit for php platform in category web applications ================================================== Joes News System Files CMS 1.1 XSS Vulnerabilities ================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\...

Mandriva Linux Security Advisory : kdebase (MDVSA-2010:074)

A vulnerability has been found and corrected in kdm kdebase/kdebase4-workspace : KDM contains a race condition that allows local attackers to make arbitrary files on the system world-writeable. This can happen while KDM tries to create its control socket during user login. This vulnerability has...

Joomla Horoscope Local File Inclusion

=============================================================================================================== o Joomla Component Horoscope Local File Inclusion Vulnerability Software : comhoroscope Vendor : http://dev.pucit.edu.pk/ Download : http://dev.pucit.edu.pk/files/Horocope%20Extension.r...

Oracle Application Server 9i Webcache File Corruption (CVE-2005-1382)

Oracle Application Server Web Cache is a Web portal acceleration software provided by Oracle. It can cache both static and dynamic content and improve scalability and availability of Oracle applications accessed through HTTP. There exists a vulnerability in the way the Oracle Application Server...

Joomla! Component com_rwcards - Local File Inclusion

Author : altbta [email protected] Team : Sec Attack Team Home : www.v4-team.com/cc Script : Joomla Component comrwcards Bug Type : Local File Inclusion LFI Dork : inurl:"comrwcards" === Exploit === http://site/index.php?option=comrwcards&view=rwcards&controller=LFI...

WinACE RAR and TAR Directory Traversal (CVE-2006-0981)

WinACE Archiver is an application that can compress to and decompress from various archive formats. The compression mainly supports ACE, LZA, MS-CAB, ZIP archive formats, however the decompression support includes a wider range of compression formats including TAR, RAR, and others. There exists a...

Joomla Component com_rwcards LFI Vulnerability

Exploit for unknown platform in category web applications ============================================== Joomla Component comrwcards LFI Vulnerability ============================================== Joomla Component comrwcards LFI Vulnerability Scrip : Joomla Download link :...

Joomla Dashboard Directory Traversal

@=======================================@ @=Script : Joomla Component comdashboard @=Author : FL0RiX @=Greez : Dost mu var? @=Bug Type : Directory Traversal @=Dork : inurl:"comdashboard" @=Note: Kimseye Hakettiginden Fazla Deger Vermeyeceksin. @=======================================@ @=Vuln. :...

Golden FTP Server "DELE"command directory traversal vulnerability(0day)-vulnerability warning-the black bar safety net

Affected version: Golden FTP Server 4. x Vulnerability description: Golden FTP Server is a popular FTP service program. Golden FTP Server improperly handles the'DELE'command, a remote attacker could exploit the vulnerability to conduct directory traversal attacks to delete system files. Since the...