Zazavi 1.2.1 - FileManagerController.php Arbitrary File Upload

Zazavi 1.2.1 - FileManagerController.php Arbitrary File Upload source: https://www.securityfocus.com/bid/49309/info Zazavi is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload...

Joomla! JoomTouch Component 'controller' Parameter Local File Include Vulnerability

The JoomTouch component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserve...

awiki 20100125 - Multiple Local File Inclusions

awiki 20100125 - Multiple Local File Inclusions source: https://www.securityfocus.com/bid/49187/info awiki is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...

Simple HTTPd 1.42 - PUT Remote Buffer Overflow

Simple HTTPd 1.42 - PUT Remote Buffer Overflow !/usr/bin/env python part of femtocell research by TU-Berlin only for educational purposes Exploit Title: remote root on sfr/ubiquisys femtocell webserver wsal/shttpd/mongoose Date: 2011-08-02 Author: nion Software: http://code.google.com/p/mongoose/...

Simple HTTPd 1.42 PUT Request Remote Buffer Overflow Vulnerability

Exploit for windows platform in category remote exploits !/usr/bin/env python part of femtocell research by TU-Berlin only for educational purposes Exploit Title: remote root on sfr/ubiquisys femtocell webserver wsal/shttpd/mongoose Author: nion Software: http://code.google.com/p/mongoose/...

Simple HTTPd 1.42 PUT Buffer Overflow

!/usr/bin/env python part of femtocell research by TU-Berlin only for educational purposes Exploit Title: remote root on sfr/ubiquisys femtocell webserver wsal/shttpd/mongoose Date: 2011-08-02 Author: nion Software: http://code.google.com/p/mongoose/ http://sourceforge.net/projects/shttpd/ Versio...

awiki 20100125 - Multiple Local File Inclusions

source: https://www.securityfocus.com/bid/49187/info awiki is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts ...

VSploit Web PII

This module emulates a webserver leaking PII data This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VSploit Web PII', 'Description' = 'This module emulates a webserver leaking PII data', 'License...

Chyrp 2.x - includeslibgz.php?File Traversal Arbitrary File Access

Chyrp 2.x - includeslibgz.php?File Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal...

Chyrp 2.x - 'action' Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal vulnerability. An attacker may leverage these issues to execute arbitrary...

Chyrp 2.x - '/includes/lib/gz.php?File' Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal vulnerability. An attacker may leverage these issues to execute arbitrary...

MinaliC Webserver Cross Site Scripting

============================================================= / \ 0-Exploit Zer0 Thunder \ \ ,, / /-------------------------------------------- '-./.-' =========================== .--' '--. MinaliC Webserver SCD & XSS Vulnerbilty / / /\ \ \ Tested on : Windows XP /sp3 | | | | Date : 28/07/2011 \ ...

MinaliC Webserver 2.0 Source Disclosure

Exploit Title : MinaliC Webserver v2.0 Remote Source Disclosure Software link : http://sourceforge.net/projects/minalic/ Version : 2.0 Tested on : Windows 7 Home Premium Date : 27/07/2011 Author : X-h4ck Website : http://www.pirate.al , http://theflashcrew.blogspot.com Email : [email protected]...

MinaliC Webserver v2.0 Remote Source Disclosure

Exploit for windows platform in category remote exploits Exploit Title : MinaliC Webserver v2.0 Remote Source Disclosure Software link : http://sourceforge.net/projects/minalic/ Version : 2.0 Tested on : Windows 7 Home Premium Date : 27/07/2011 Author : X-h4ck Website : http://www.pirate.al ,...

MinaliC WebServer 2.0 - Remote Source Disclosure

MinaliC WebServer 2.0 - Remote Source Disclosure Exploit Title : MinaliC Webserver v2.0 Remote Source Disclosure Software link : http://sourceforge.net/projects/minalic/ Version : 2.0 Tested on : Windows 7 Home Premium Date : 27/07/2011 Author : X-h4ck Website : http://www.pirate.al ,...

MinaliC WebServer 2.0 - Remote Source Disclosure

Exploit Title : MinaliC Webserver v2.0 Remote Source Disclosure Software link : http://sourceforge.net/projects/minalic/ Version : 2.0 Tested on : Windows 7 Home Premium Date : 27/07/2011 Author : X-h4ck Website : http://www.pirate.al , http://theflashcrew.blogspot.com Email : [email protected]...

Chyrp 2.x - adminhelp.php Multiple Cross-Site Scripting Vulnerabilities

Chyrp 2.x - adminhelp.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal...

Chyrp 2.x - includesJavaScript.php?action Cross-Site Scripting

Chyrp 2.x - includesJavaScript.php?action Cross-Site Scripting source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal vulnerability...

Chyrp 2.x - '/admin/help.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal vulnerability. An attacker may leverage these issues to execute arbitrary...

Portix-CMS 'page' Parameter Local File Include Vulnerability

Portix-CMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary local scripts in the context of the webserver process. This may allow...