42 matches found
EUVD-2008-6678
Malware in sbrugna...
CVE-2014-7173
FarLinX X25 Gateway through 2014-09-25 allows command injection via shell metacharacters to sysSaveMonitorData.php, fsx25MonProxy.php, syseditdate.php, iframeupload.php, or sysRestoreX25Cplt.php...
PT-2024-13385 · Nordic Semiconductor · Nrf Sniffer For Bluetooth Le
Name of the Vulnerable Software and Affected Versions: Nordic Semiconductor nRF Sniffer for Bluetooth LE versions 3.0.0 through 4.1.1 Description: The issue is related to incorrect file permissions set for certain scripts in the Nordic Semiconductor nRF Sniffer for Bluetooth LE. This allows...
Traceroute 2.1.2 Privilege Escalation
Description: In Traceroute 2.0.12 through to 2.1.2 fixed in 2.1.3, the wrapper scripts mishandle shell metacharacters, which can lead to privilege escalation if the wrapper scripts are executed via sudo. The affected wrapper scripts are: tcptraceroute, tracepath, traceproto and traceroute-nanog...
PHAR deserialization allowing remote code execution
Description snappy is vulnerable to PHAR deserialization due to a lack of checking on the protocol before passing it into the fileexists function. If an attacker can upload files of any type to the server he can pass in the phar:// protocol to unserialize the uploaded file and instantiate arbitra...
OCS Inventory NG ocsreports 2.4 / 2.3.1 SQL Injection
Affected Products OCS Inventory NG ocsreports 2.4 OCS Inventory NG ocsreports 2.3.1 older/other releases have not been tested References https://www.secuvera.de/advisories/secuvera-SA-2017-04.txt used for updates https://www.ocsinventory-ng.org/en/ocs-inventory-server-2-4-1-has-been-released/...
Subversion 1.6.6 / 1.6.12 - Code Execution
Exploit for linux platform in category remote exploits This is an exploit for the subversion vulnerability published as CVE-2013-2088. Author: GlacierZ0ne email protected Exploit Type: Code Execution Access Type: Authenticated Remote Exploit Prerequisites: svn command line client available,...
ResourceSpace 6.4.5976 XSS / SQL Injection / Insecure Cookie Handling
Title: ResourceSpace Multiple Cross Site Scripting, and HTML and SQL Injection Vulnerabilities Author: Petri Iivonen Contact: petri.iivonenattmbcgovuk Discovered: 11 June 2014 Updated: 11 December 2014 Published: 11 December 2014 Vendor: Montala Limited Vendor url: www.resourcespace.org Software:...
Slider Revolution/Showbiz Pro Shell Upload Exploit
Exploit for php platform in category web applications !/usr/bin/perl Title: Slider Revolution/Showbiz Pro shell upload exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 15 October 2014 Coded: 15 October 2014 Updated: 25 November 2014 Published: 25 November 2014 MorXploit...
WordPress Plugin Slider REvolution 3.0.95 Showbiz Pro 1.7.1 - Arbitrary File Upload
WordPress Plugin Slider REvolution 3.0.95 Showbiz Pro 1.7.1 - Arbitrary File Upload !/usr/bin/perl Title: Slider Revolution/Showbiz Pro shell upload exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 15 October 2014 Coded: 15 October 2014 Updated: 25 November 2014 Published:...
Slider Revolution/Showbiz Pro Shell Upload
!/usr/bin/perl Title: Slider Revolution/Showbiz Pro shell upload exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 15 October 2014 Coded: 15 October 2014 Updated: 25 November 2014 Published: 25 November 2014 MorXploit Research http://www.MorXploit.com Vendor: ThemePunch...
CGIScript.net 1.0 Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4764/info CGIScript.net provides various webmaster related tools and is maintained by Mike Barone and Andy Angrick. It is possible to cause numerous scripts provided by CGIScript.net to disclose sensitive system...
ATutor AContent 1.1 SQL Injection
AContent 1.1 Multiple SQL Injection Vulnerabilities Vendor: ATutor Inclusive Design Institute Product web page: http://www.atutor.ca Affected version: 1.1 build r296 Summary: AContent is an open source learning content authoring system and respository used to create interoperable, accessible,...
Mole Group Sky Hunter / Bus Ticket Scripts Password Changer
Mole Group Sky Hunter/Bus Ticket Scripts Change Ad...
Mole Group Sky HunterBus Ticket Scripts - Change Admin Password
Mole Group Sky HunterBus Ticket Scripts - Change Admin Password !-- ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
Mole Group Sky Hunter/Bus Ticket Scripts Change Admin Pass Exploit
No description provided by source. html head !-- ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
Harland Scripts Command Execution
?php //786 / ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ============================================================================== / | | || | | \ | | / ...
Harland Scripts 11 Products Remote Command Execution Exploit
No description provided by source. ?php //786 / ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
alstrasoftvideo-sql.txt
|| | | Video Share Enterprise UID Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | | | | script : http://www.alstrasoft.com/videoshare.htm | | DorK : Powered ...
Pearl Forums 2.4 - Multiple Remote File Inclusions
| \ | / | \ \ / | | | | | \ / | \ \ / / | | | | '| | |/| |/ \ / / \ / / | | '| | | / | | || | | | | | | | | \ / | | | | || \ \ |/|| || ||,//\ / ||| ,|/ ///////////////////////////////////////////////////////////////////////////////////////////////////////////// //Script:Pearl Forums...