7790 matches found
DIY-CMS blog mod SQL Injection Vulnerability
No description provided by source. Exploit Title: DIY-CMS blog mod SQL Injection Author: snup Contact: [email protected] Site: http://e-o-u.org SQL Injection: DORK: inurl:mod.php?mod=blog intext:powered by DIY-CMS inurl:mod.php?mod=blog BUG:...
MyMarket 1.71 Form_Header.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6035/info MyMarket is prone to cross-site scripting attacks. HTML tags and script code are not sanitized from CGI variables which may cause user-supplied input to be displayed. As a result, an attacker can create a link t...
Debian GNU/Linux 3.1 top Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1895/info top is a program used to display system usage statistics in real time written by GoupSys Consulting but shipped by default as a core component with many operating systems. On BSD systems, top is installed setgid...
CGIScript.net 1.0 Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4764/info CGIScript.net provides various webmaster related tools and is maintained by Mike Barone and Andy Angrick. It is possible to cause numerous scripts provided by CGIScript.net to disclose sensitive system...
MIT PGP Public Key Server 0.9.2/0.9.4 Search String Remote Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/4828/info The PGP Public Key Server is a freely available, open source software package distributed by MIT. It is designed for use on Linux and Unix operating systems. The PGP Public Key Server does not properly handle lo...
Simple Free PHP Forum Script <= SQL Injection Vulnerability
No description provided by source. Exploit Title: Simple Free PHP Forum Script = 1 SQL Injection Vulnerability Date: 2011-10-19 Author: Skraps, Jackie Craig Sparksjackie.craig.sparksatlive.com jackie.craig.sparksatgmail.com @skrapsfoo Software Link: http://www.phpforumscript.com/?pageid=11 Versio...
Stanley T. Shebs Xconq 7.2.2 - Buffer Overflow Vulnerabilities in xconq
No description provided by source. source: http://www.securityfocus.com/bid/1495/info Xconq is a multiple player strategy game available for many unix platforms. It contains a number of buffer overflow vulnerabilities including the ability to overflow stack buffers with either the DISPLAY or the...
Solaris 2.5/2.6/7.0/8 tip Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2475/info tip is a utility included with Sun Microsystems Solaris Operating Environment. tip allows a user to establish a full duplex terminal connection with a remote host. A problem with tip could lead to a buffer...
phpBB Static Topics <= 1.0 [phpbb_root_path] File Include Vulnerability
No description provided by source. --------------------------------------------------------------------------- phpBB Static Topics = 1.0 phpbbrootpath Remote File Include Vulnerability --------------------------------------------------------------------------- Discovered By Kw3RLn Romanian Securi...
SunOS <= 4.1.3 LD_LIBRARY_PATH and LD_OPTIONS Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/43/info There exists a vulnerability involving environment variables and setuid/setgid programs under SunOS 4.0 and higher. A dynamically-linked program that is invoked by a setuid/setgid program has access to the caller'...
phpProfiles <= 3.1.2b Multiple Remote File Include Vulnerabilities
No description provided by source. +------------------------------------------------------------------------------------------- + phpProfiles = 3.1.2b Multiple Remote File Include Vulnerabilities +------------------------------------------------------------------------------------------- + Affect...
Youbin 2.5/3.0/3.4 HOME Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7503/info It has been reported that youbin is vulnerable to a locally exploitable buffer overflow. The problem is said to occur while processing environment variables. Specifically, an internal memory buffer may be overru...
Gossamer Threads DBMan 2.0.4 DBMan Information Leakage Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1178/info Requesting an invalid database file from a web server implementing Gossamer Threads DBMan scripts will return a CGI error message containing environmental variables to a remote user without any authorization. Th...
IBM AIX 4.x setsenv Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2032/info AIX is a version of the UNIX Operating System distributed by IBM. A problem exists that could allow a user elevated priviledges. The problem occurs in the setsenv binary. It has been reported that a buffer...
IBM AIX 4.3.x piobe Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2037/info AIX is a variant of the UNIX Operating System, distributed by IBM. A problem exists which can allow a local user elevated priviledges. The problem exists in the piobe program. Due to the insuffient handling of t...
Convert-UUlib 1.04/1.05 Perl Module Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13401/info Convert-UUlib Perl module is prone to a remotely exploitable buffer-overflow vulnerability. A remote attacker may leverage this condition to overwrite sensitive program control variables and thus gain control o...
Solaris 10 (libnspr) - Arbitrary File Creation Local Root Exploit
No description provided by source. !/bin/sh $Id: raptorlibnspr,v 1.1 2006/10/13 19:12:12 raptor Exp $ raptorlibnspr - Solaris 10 libnspr oldschool local root Copyright c 2006 Marco Ivaldi [email protected] Local exploitation of a design error vulnerability in version 4.6.1 of NSPR, as includ...
Apple QuickTime 5.0 Content-Type Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4064/info Apple QuickTime is a freely available media player. It runs on a number of platforms including MacOS and Windows 9x/ME/NT/2000/XP operating systems. Apple QuickTime For Windows does not perform sufficient bounds...
Solaris 7.0/8 IPCS Timezone Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2581/info Solaris is the variant of the UNIX Operating System distributed by Sun Microsystems. Solaris is designed as a scalable operating system for the Intel x86 and Sun Sparc platforms, and operates on machines varying...
Solaris 2.6/7.0 DTMail Mail Environment Variable Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3081/info dtmail is an application included with the Common Desktop Environment, one of the X Window Managers included with Solaris. A buffer overflow in dtmail makes it possible for a local user to gain elevated...