WordPress Plugin CevherShare 2.0 - SQL Injection

= WordPress CevherShare 2.0 plugin SQL Injection Vulnerability = Bugfounder: bd0rk = Contact: bd0rkathackermail.com = Greetings: Perle, Martin K., Carsten R., x0r32 = Affected-Software: WordPress CevherShare 2.0 plugin = Vendor: http://phpkode.com/ = Download:...

vAuthenticate 3.0.1 Auth Bypass by Cookie SQL Injection Vulnerability

Exploit for php platform in category web applications ----------------------------------------------------------------------- vAuthenticate 3.0.1 Auth Bypass by Cookie SQL Injection Vulnerability ----------------------------------------------------------------------- Author: bd0rk Contact:...

vAuthenticate 3.0.1 - Authentication Bypass

vAuthenticate 3.0.1 - Authentication Bypass ----------------------------------------------------------------------- vAuthenticate 3.0.1 Auth Bypass by Cookie SQL Injection Vulnerability ----------------------------------------------------------------------- Author: bd0rk Contact:...

Contrexx Shopsystem 2.2 SP3 Blind SQL Injection

!/usr/bin/php ?php / Exploit title: Contrexx Shopsystem Blind SQL Injection Exploit Exploit written by: Penguin Exploit: index.php?section=shop&catId=VALID categoryid and YOUR BLIND SQL CODE Exploit tested on: Debian 6, Ubuntu Linux 11.04 Software price: abount 700 CHF Vendor:...

Contrexx ShopSystem 2.2 SP3 - catId Blind SQL Injection

Contrexx ShopSystem 2.2 SP3 - catId Blind SQL Injection !/usr/bin/php ?php / Exploit title: Contrexx Shopsystem Blind SQL Injection Exploit Exploit written by: Penguin Exploit: index.php?section=shop&catId=VALID categoryid and YOUR BLIND SQL CODE Exploit tested on: Debian 6, Ubuntu Linux 11.04...

Contrexx ShopSystem 2.2 SP3 - Blind SQL Injection

Contrexx ShopSystem 2.2 SP3 - Blind SQL Injection Exploit title: Contrexx Shopsystem Blind SQL Injection Exploit Exploit PoC: index.php?section=shop&productId=VALID productid and YOUR BLIND SQL CODE Exploit tested on: Debian 6, Ubuntu Linux 11.04 Exploit found and written by: Penguin Version: =...

Contrexx ShopSystem 2.2 SP3 - Blind SQL Injection

Exploit title: Contrexx Shopsystem Blind SQL Injection Exploit Exploit PoC: index.php?section=shop&productId=VALID productid and YOUR BLIND SQL CODE Exploit tested on: Debian 6, Ubuntu Linux 11.04 Exploit found and written by: Penguin Version: = [email protected] !/usr/bin/php...

Mozilla Firefox and SeaMonkey Java LiveConnect Script Security Bypass Vulnerability

CVE:CVE-2010-3775 Bugtraq ID:45355 Mozilla Firefox and SeaMonkey are prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass security restrictions and obtain elevated privileges such as the abilities to read local files, launch processes, and create network connection...

Nodesforum 1.059 remote file inclusion defect and repair-vulnerability warning-the black bar safety net

Exploit Title: nodesforum 1.059 Remote File Inclusion Vulnerability Google Dork: inurl: powered by Nodesforum Date: 6/23/2011 Author: bd0rk bd0rkathackermail.com Software-Download: http://home.nodesforum.com/download?file=nodesforum1.059withbbcode1.004.zip Tested on: Ubuntu-Linux / Windows Vista...

nodesforum 1.059 - Remote File Inclusion

nodesforum 1.059 - Remote File Inclusion Exploit Title: nodesforum 1.059 Remote File Inclusion Vulnerability Google Dork: inurl: powered by Nodesforum Date: 6/23/2011 Author: bd0rk bd0rkathackermail.com Software-Download: http://home.nodesforum.com/download?file=nodesforum1.059withbbcode1.004.zip...

Nodesforum 1.059 Remote File Inclusion Vulnerability

Exploit for php platform in category web applications Exploit Title: nodesforum 1.059 Remote File Inclusion Vulnerability Google Dork: inurl: powered by Nodesforum Date: 6/23/2011 Author: bd0rk bd0rkathackermail.com Software-Download:...

nodesforum 1.059 - Remote File Inclusion

Exploit Title: nodesforum 1.059 Remote File Inclusion Vulnerability Google Dork: inurl: powered by Nodesforum Date: 6/23/2011 Author: bd0rk bd0rkathackermail.com Software-Download: http://home.nodesforum.com/download?file=nodesforum1.059withbbcode1.004.zip Tested on: Ubuntu-Linux / WinVista...

Postfix SMTP Server Cyrus SASL支持内存破坏漏洞

BUGTRAQ ID: 47778 CVE ID: CVE-2011-1720 Postfix是Unix类操作系统中所使用的邮件传输代理。 Postfix SMTP Server在实现上存在Cyrus SASL支持内存破坏漏洞，在启用了Cyrus SASL支持时可影响SMTP服务器，远程攻击者可利用此漏洞执行任意代码或造成拒绝服务。 启用了SASL验证时，Postfix SMTP Server为每个SMTP会话创建了一个SASL句柄，在关闭SMTP连接前会一直使用此句柄。根据Cyrus SASL include源文件的注释，服务器在客户端验证失败后不应重新使用Cyrus...

PHP "php5-common.php5.cron.d"竞争条件漏洞

BUGTRAQ ID: 46928 CVE ID: CVE-2011-0441 PHP，一个嵌套的缩写名称，是英文超级文本预处理语言（PHP:Hypertext Preprocessor）的缩写。 PHP "php5-common.php5.cron.d"在实现上存在竞争条件漏洞，本地攻击者可利用此漏洞删除任意文件，造成拒绝服务。 PHP PHP 5.x Ubuntu Linux 9.x Ubuntu Linux 8.x Ubuntu Linux 11.x Ubuntu Linux 10.x 厂商补丁： PHP --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

FFmpeg畸形"VC1"文件解析内存破坏远程代码执行漏洞

BUGTRAQ ID: 47151 CVE ID: CVE-2011-0723 FFmpeg是一个自由软件，可以执行音讯和视讯多种格式的录影、转档、串流功能，包含了libavcodec ─这是一个用于多个专案中音讯和视讯的解码器函式库，以及 libavformat ——一个音讯与视讯格式转换函式库。 FFmpeg在解析畸形VC1文件时存在内存破坏远程代码执行漏洞，远程攻击者可利用此漏洞在受影响应用程序中执行任意代码或造成拒绝服务。 Ubuntu Linux 9.x Ubuntu Linux 8.x Ubuntu Linux 10.x FFmpeg FFmpeg = 0.5.4 厂商补丁：...

FFmpeg畸形".wmv"文件解析内存破坏远程代码执行漏洞

BUGTRAQ ID: 47147 CVE ID: CVE-2010-3908 FFmpeg是一个自由软件，可以执行音讯和视讯多种格式的录影、转档、串流功能，包含了libavcodec ─这是一个用于多个专案中音讯和视讯的解码器函式库，以及 libavformat ——一个音讯与视讯格式转换函式库。 FFmpeg在解析畸形.wmv文件时存在内存破坏远程代码执行漏洞，远程攻击者可利用此漏洞在受影响应用程序中执行任意代码或造成拒绝服务。 Ubuntu Linux 9.x Ubuntu Linux 8.x Ubuntu Linux 10.x FFmpeg FFmpeg = 0.5.4 厂商补丁...

FFmpeg Real Media文件解析内存破坏远程代码执行漏洞

BUGTRAQ ID: 47149 CVE ID: CVE-2011-0722 FFmpeg是一个自由软件，可以执行音讯和视讯多种格式的录影、转档、串流功能，包含了libavcodec ─这是一个用于多个专案中音讯和视讯的解码器函式库，以及 libavformat ——一个音讯与视讯格式转换函式库。 FFmpeg在解析畸形多媒体文件时存在内存破坏远程代码执行漏洞，远程攻击者可利用此漏洞在受影响应用程序中执行任意代码，造成拒绝服务。 Ubuntu Linux 9.x Ubuntu Linux 8.x Ubuntu Linux 10.x FFmpeg FFmpeg = 0.5.4 厂商补丁：...

rsync客户端增量文件列表远程内存破坏漏洞

Bugtraq ID: 47064 rsync是一款文件同步管理软件。 当增量递归启用，--delete启用，关闭--owner时，generator进程接收端存在一个内存破坏漏洞。在这些条件下，一些Generatordeep删除函数会临时增加fileextracnt，此全局变量用于管理filestructs内存中的格式，并在完成后恢复原始值。增量的目录只影响用于执行删除的临时文件列表，但它也能影响调用这些函数过程中接收到的增量文件列表块，不过可能以错误的格式创建。当恢复原始fileextracnt时，存储在每个可应用OPTEXTRA字段中的值会出现在rsync.h中列出的下一个值中。...

PHP <= 5.3.6 shmop_read() Integer Overflow DoS

Exploit for linux platform in category dos / poc 0day.today 2018-02-02...

PHP 5.3.6 - shmop_read() Integer Overflow Denial of Service

PHP 5.3.6 - shmopread Integer Overflow Denial of Service...