5286 matches found
PHP168 Template Editor - Filename Directory Traversal
PHP168 Template Editor - Filename Directory Traversal source: https://www.securityfocus.com/bid/42174/info PHP168 Template Editor is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting the issue may allow an attacker to read...
PHP168 Template Editor - 'Filename' Directory Traversal
source: https://www.securityfocus.com/bid/42174/info PHP168 Template Editor is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting the issue may allow an attacker to read and overwrite arbitrary files in the context of the...
Check Point Connectra R62 - LoginLogin Arbitrary Script Injection
Check Point Connectra R62 - LoginLogin Arbitrary Script Injection source: https://www.securityfocus.com/bid/36466/info Check Point Connectra is prone to an arbitrary-script-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to...
Check Point Connectra R62 - '/Login/Login' Arbitrary Script Injection
source: https://www.securityfocus.com/bid/36466/info Check Point Connectra is prone to an arbitrary-script-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary script code in the context of the webserver...
Xerver HTTP Server 4.32 Arbitrary Source Code Disclosure Vuln
No description provided by source. Xerver HTTP Server v4.32 Remote Arbitrary Source Code Disclosure Found By: DrIDE Download: http://www.javascript.nu/xerver Tested On: Windows XPSP3 - Description - Xerver v4.32 is a Windows based HTTP server. This is the latest version of the application...
Kolibri+ Webserver 2 (GET Request) Remote SEH Overwrite Exploit
No description provided by source. !/usr/bin/python Could not get this to work on XP SP3. php5ts.dll is the only module with safe seh off but could not get the pop pop ret to work correctly despite the large number of usable addresses that were tested. $ ./kolibri.py 192.168.1.146 8080 Kolibri+...
Kolibri+ Webserver 2 Directory Traversal Vulnerability
No description provided by source. Name : Kolibri+ Webserver 2 , Directory Traversal Vulnerability Author : Usman Saeed Company : Xc0re Security Reasearch Group Date : 06/09/09 Homepage : http://www.xc0re.net Download Page :...
Kolibri+ Webserver 2 Remote Source Code Disclosure Vulnerability
Exploit for windows platform in category remote exploits ================================================================ Kolibri+ Webserver 2 Remote Source Code Disclosure Vulnerability ================================================================ Name : Kolibri+ Webserver 2 , Remote file...
Kolibri+ Webserver 2 Source Code Disclosure
Name : Kolibri+ Webserver 2 , Remote file disclousure exploit Author : Skull-HacKeR Download Page : http://download.cnet.com/Kolibri-WebServer/3000-102484-10896378.html?tag=mncol Attack type : Remote Exploitation Exploit: http://127.0.0.1/default.asp. http://127.0.0.1/default.php...
Kolibri+ Webserver 2 (GET Request) Remote SEH Overwrite Exploit
Exploit for unknown platform in category remote exploits =============================================================== Kolibri+ Webserver 2 GET Request Remote SEH Overwrite Exploit =============================================================== !/usr/bin/python Could not get this to work on XP...
Kolibri+ Webserver 2 Remote SEH Overwrite
!/usr/bin/python Could not get this to work on XP SP3. php5ts.dll is the only module with safe seh off but could not get the pop pop ret to work correctly despite the large number of usable addresses that were tested. $ ./kolibri.py 192.168.1.146 8080 Kolibri+ Webserver 2 SEH Overwrite Written by...
Kolibri+ Webserver 2 Remote Source Code Disclosure Vulnerability
No description provided by source. Name : Kolibri+ Webserver 2 , Remote file disclousure exploit Author : Skull-HacKeR Download Page : http://download.cnet.com/Kolibri-WebServer/3000-102484-10896378.html?tag=mncol Attack type : Remote Exploitation Exploit: http://127.0.0.1/default.asp...
SZNews 2.7 - printnews.php3 Remote File Inclusion
SZNews 2.7 - printnews.php3 Remote File Inclusion source: https://www.securityfocus.com/bid/42974/info SZNews is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...
Xerver HTTP Server 4.32 - Arbitrary Source Code Disclosure
Xerver HTTP Server 4.32 - Arbitrary Source Code Disclosure Xerver HTTP Server v4.32 Remote Arbitrary Source Code Disclosure Found By: DrIDE Download: http://www.javascript.nu/xerver Tested On: Windows XPSP3 - Description - Xerver v4.32 is a Windows based HTTP server. This is the latest version of...
Kolibri+ Webserver 2 Directory Traversal Vulnerability
Exploit for windows platform in category remote exploits ====================================================== Kolibri+ Webserver 2 Directory Traversal Vulnerability ====================================================== Name : Kolibri+ Webserver 2 , Directory Traversal Vulnerability Author :...
SZNews 2.7 - 'printnews.php3' Remote File Inclusion
source: https://www.securityfocus.com/bid/42974/info SZNews is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary script code in the...
Xerver HTTP Server 4.32 - Arbitrary Source Code Disclosure
Xerver HTTP Server v4.32 Remote Arbitrary Source Code Disclosure Found By: DrIDE Download: http://www.javascript.nu/xerver Tested On: Windows XPSP3 - Description - Xerver v4.32 is a Windows based HTTP server. This is the latest version of the application available. Xerver v4.32 is vulnerable to...
Kolibri+ Webserver 2 (Get Request) Denial of Service Vulnerability
No description provided by source. Name : Kolibri+ Webserver 2 , Denial Of service / Crash Author : Usman Saeed Company : Xc0re Security Reasearch Group Date : 06/09/09 Homepage : http://www.xc0re.net Download Page : http://download.cnet.com/Kolibri-WebServer/3000-102484-10896378.html?tag=mncol...
KingCMS 0.6 - 'CONFIG[AdminPath]' Remote File Inclusion
source: https://www.securityfocus.com/bid/42924/info KingCMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary script code in the...
ntop 3.3.10 - HTTP Basic Authentication Null Pointer Dereference Denial of Service
ntop 3.3.10 - HTTP Basic Authentication Null Pointer Dereference Denial of Service source: https://www.securityfocus.com/bid/36074/info The 'ntop' tool is prone to a denial-of-service vulnerability because of a NULL-pointer dereference that occurs when crafted HTTP Basic Authentication credential...