565 matches found
alt-n webadmin 3.0.2 - Multiple Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12395/info Alt-n WebAdmin is reportedly affected by multiple remote vulnerabilities. The application is affected by multiple cross-site scripting issues. An attacker may leverage these issues to execute arbitrary HTML and...
Unreal Tournament 3 1.3 - Remote Directory Traversal Vulnerability
No description provided by source. Luigi Auriemma Application: Unreal Tournament 3 http://www.unrealtournament3.com Versions: 1.3 ONLY both build 3601 and 3614 older versions are safe Platforms: Windows and Linux Bug: directory traversal in the web interface Exploitation: remote, versus server...
Jaow CMS 2.3 - CSRF Vulnerability
No description provided by source. Exploit Title: Jaow CMS v2.3 CSRF Vulnerability Author: DaOne LCA Date: 15/8/2012 Software Link: http://www.jaow.net Or: http://scripts.toocharger.com/fiches/scripts/jaow/5370.htm CSRF Add Admin html body onload=document.form0.submit; form method=POST name=form0...
WebAdmin Shell Upload Vulnerability
No description provided by source...
WebAdmin <= 2.0.4 USER Buffer Overflow Exploit
No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artisti...
PSCS VPOP3 2.0 Email Server WebAdmin Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8869/info It has been reported that PSCS VPOP3 Email Server may be prone to a cross-site scripting vulnerability that may allow a remote attacker to embed malicious HTML and script code in a link. The issue is reported to...
crownweb (page.cfm) SQL Injection Vulnerability
No description provided by source. crownweb page.cfm Sql Injection Vulnerability =================================================================== .:. Email : [email protected] .:. Team : Sec Attack Team .:. Home : www.sec-attack.com/vb .:. Script : crownweb .:. Language : Cfm .:. Script Download:...
MDaemon WebAdmin 2.0.x - SQL injection
No description provided by source. Exploit Title: MDaemon WebAdmin 2.0.X SQL injection Date: 2006/5/26 Author: KOUSULIN Software Link: http://archive.altn.com/WebAdmin/Archive/2.0.8/wa208en.exe Version: WebAdmin 2.0.X Tested on: Windows 2003 CVE : N/A Code : /WebAdmin.dll?Session='ACCESS SQL...
Alt-N WebAdmin 2.0.x Remote File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7439/info Reportedly, remote users can discover the installation directory of certain software on the underlying system by submitting an HTTP request to the WebAdmin server. This could allow an attacker to obtain sensitiv...
VamCart 0.9 - CSRF Vulnerability
No description provided by source. Exploit Title: VamCart v0.9 CSRF Vulnerability Date: 20/08/2012 Author: DaOne Software Link: http://vamcart.googlecode.com/files/vamcart.zip Greetings to: LCA CSRF Add Admin: html body onload=document.form0.submit; form method=POST name=form0...
Alt-N WebAdmin 2.0.x USER Parameter Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/8024/info Alt-N WebAdmin is prone to a buffer overflow condition. This is due to insufficient bounds checking on the USER parameter. Successful exploitation could result in code execution with SYSTEM level privileges. /...
FloosieTek FTGatePro 1.2 WebAdmin Interface Information Disclosure Weakness
No description provided by source. source: http://www.securityfocus.com/bid/8578/info A weakness has been reported in the FTGatePro WebAdmin Interface that could allow an unauthorized user to gain sensitive information. The problem is believed to occur due to insufficient access controls put in...
Allomani News 1.0 - CSRF Vulnerability (Add Admin)
No description provided by source. News 1.0 XSRF Vulnerability Add Admin ==================================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Script : http://allomani.com/en/newsscript.html === Exploit === form method=POST name=form0...
Alt-N MDaemon WorldClient 13.0.3 - Multiple Vulnerabilities
No description provided by source. ====================================================================== Alt-N MDaemon's WorldClient Predictable Session ID Vulnerability ====================================================================== Software: Alt-N MDaemon v13.0.3 and prior versions...
@Mail 4.0/4.13 Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/14408/info @Mail is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
Alt-N WebAdmin 2.0.x Remote File Viewing Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7438/info Alt-N WebAdmin allows a remote user to access files that they should not be able to access. The remote user can submit an HTTP request that will return the contents of any webserver-readable file on the system...
Alt-N WebAdmin USER Buffer Overflow
No description provided by source. $Id: altnwebadmin.rb 8498 2010-02-15 00:48:03Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Allomani Super Multimedia Library 2.5.0 - CSRF Vulnerability (Add Admin)
No description provided by source. Super Multimedia Library 2.5.0 XSRF Vulnerability Add Admin ==================================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Script : http://allomani.com/en/mediascript.html === Exploit === form method=POST...
DEBIAN-CVE-2013-2130
ZNC 1.0 allows remote authenticated users to cause a denial of service NULL pointer reference and crash via a crafted request to the 1 editnetwork, 2 editchan, 3 addchan, or 4 delchan page in modules/webadmin.cpp...
CVE-2013-2130
ZNC 1.0 allows remote authenticated users to cause a denial of service NULL pointer reference and crash via a crafted request to the 1 editnetwork, 2 editchan, 3 addchan, or 4 delchan page in modules/webadmin.cpp...