155 matches found
PHP-Nuke 6.0 - Multiple Path Disclosure Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/6406/info Multiple path disclosure vulnerabilities have been discovered in PHP-Nuke. This issue occurs when requesting a PHP script that shouldn't be accessed directly. Exploiting this issue will cause the target server t...
vSignup 2.1 - Remote SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6606/info A vulnerability has been discovered in vSignup. It has been reported that various PHP scripts used by vAuthenticate are prone to SQL injection attacks. This issue may be exploited by an unauthorized attacker to...
ZmEu Security Scanner
ZmEu is a vulnerability scanning product. Remote attackers can use ZmEu to detect vulnerabilities on a target server...
w3af Security Scanner
w3af is a vulnerability scanning product. Remote attackers can use w3af to detect vulnerabilities on a target server...
LibWhisker Security Scanner
LibWhisker is a vulnerability scanning product. Remote attackers can use LibWhisker to detect vulnerabilities on a target server...
Nikto Security Scanner
Nikto is a vulnerability scanning product. Remote attackers can use Nikto to detect vulnerabilities on a target server...
JBroFuzz Security Scanner
JBroFuzz is a vulnerability scanning product. Remote attackers can use JBroFuzz to detect vulnerabilities on a target server...
WebShag Security Scanner
WebShag is a vulnerability scanning product. Remote attackers can use WebShag to detect vulnerabilities on a target server...
Nessus Security Scanner
Nessus is a vulnerability scanning product. Remote attackers can use Nessus to detect vulnerabilities on a target server...
DirBuster Security Scanner
DirBuster is a vulnerability scanning product. Remote attackers can use DirBuster to detect vulnerabilities on a target server...
GE Proficy CIMPLICITY gefebt.exe File Upload Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE Proficy CIMPLICITY. Authentication is not required to exploit this vulnerability. The specific flaw exists within the gefebt.exe component. This component performs insufficient parameter...
[Beast-Check] SSL/TLS BEAST Vulnerability Check
A small perl script that checks a target server whether it is prone to BEAST vulnerability via target preferred cipher. It assumes no workaround i.e. EMPTY FRAGMENT applied in target server. Some sources said this workaround was disabled by default for compatibility reasons. This may be the reaso...
VBulletin Content Management System Administrator Injection Remote Code Execution
A remote code execution vulnerability has been reported in VBulletin Content Management System. A remote attacker may exploit this issue by sending specially crafted POST message to the target server. Exploitation of this vulnerability may result in remote code execution...
Apache Struts XWork Error Page Multiple Cross-Site Scripting (CVE-2011-1772)
A Cross-Site Scripting vulnerability has been reported in Apache Struts. The vulnerabilities are due to unsanitized parameters in various automatically generated error pages. A remote attacker can exploit these vulnerabilities by enticing a victim to follow a specially crafted link. Successful...
Foreman Red Hat OpenStack bookmarks Code Injection (CVE-2013-2121)
A remote code execution vulnerability has been reported in ForemanRed Hat OpenStack. The vulnerability is due to improper sanitization of certain parameters. A remote attacker can exploit this issue by sending a specially crafted packet to the target server. Successful exploitation would allow an...
Colloquy 1.3.5/1.3.6 - Denial of Service
!/usr/bin/python3 Wednesday, January 09, 2013 . . | || || | || \ / | / \ / | |/ \ / \ | || || |\ // // | \ / /\ /||/|| / |||| // / http://www.zempirians.com 00100011 01101100 01100101 01100111 01101001 01101111 01101110 -= Colloquy - A Mac OS X Internet Chat client. =- Proof of Concept, Denial...
HP OpenView Storage Stack Buffer Overflow (CVE-2011-1865)
A remote code execution vulnerability has been reported in HP OpenView. The vulnerability is due to insufficient boundary checking while handling certain opcode requests. A remote attacker may exploit this vulnerability by sending a specially crafted opcode request to a target server. Successful...
RealVNC NULL Authentication Mode Bypass
This module exploits an Authentication bypass Vulnerability in RealVNC Server version 4.1.0 and 4.1.1. It sets up a proxy listener on LPORT and proxies to the target server The AUTOVNC option requires that vncviewer be installed on the attacking machine. This module requires Metasploit:...
HP Data Protector Manager RDS Denial of Service
HP OpenView Storage Data Protector is a backup solution tailored for enterprise and distributed environments. The Data Protector environment consists of a Cell Manager, backup agents, and backup device servers. The Raima Database Server process RDS.EXE runs on the Data Protector Cell Manager and...
SAP Crystal Reports 2008 Directory Traversal
SAP Crystal Reports is a business intelligence application which is used to design and generate reports from various data sources. These sources include databases, spreadsheets, text files, XML files, etc. SAP Crystal Reports installation includes Tomcat Web server and various servlet components ...