ntop 3.3.10 - HTTP Basic Authentication Null Pointer Dereference Denial of Service

source: https://www.securityfocus.com/bid/36074/info The 'ntop' tool is prone to a denial-of-service vulnerability because of a NULL-pointer dereference that occurs when crafted HTTP Basic Authentication credentials are received by the embedded webserver. An attacker can exploit this issue to cra...

Papoo 3.x - Upload Images Arbitrary File Upload

Papoo 3.x - Upload Images Arbitrary File Upload source: https://www.securityfocus.com/bid/36006/info Papoo is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to adequately validate user-supplied input. An attacker can exploit this vulnerability to...

Papoo 3.x - Upload Images Arbitrary File Upload

source: https://www.securityfocus.com/bid/36006/info Papoo is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to adequately validate user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the...

Facil Helpdesk - kbasekbase.php URI Cross-Site Scripting

Facil Helpdesk - kbasekbase.php URI Cross-Site Scripting source: https://www.securityfocus.com/bid/42528/info Facil Helpdesk is prone to multiple input-validation vulnerabilities, including a cross-site scripting vulnerability, a local file-include vulnerability, and a remote file-include...

Facil Helpdesk - 'kbase/kbase.php' URI Cross-Site Scripting

source: https://www.securityfocus.com/bid/42528/info Facil Helpdesk is prone to multiple input-validation vulnerabilities, including a cross-site scripting vulnerability, a local file-include vulnerability, and a remote file-include vulnerability. An attacker can exploit these issues to execute...

Waverider Systems Perlshop - Multiple Input Validation Vulnerabilities

Waverider Systems Perlshop - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/43158/info Perlshop is prone to multiple input-validation vulnerabilities including a nondescript input-validation vulnerability, multiple cross-site scripting vulnerabilities, and a...

Waverider Systems Perlshop - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/43158/info Perlshop is prone to multiple input-validation vulnerabilities including a nondescript input-validation vulnerability, multiple cross-site scripting vulnerabilities, and a directory-traversal vulnerability because it fails to sufficiently...

Amaya 11.2 W3C Editor/Browser (defer) Remote BOF Exploit (SEH)

No description provided by source. !/usr/bin/python | || | / \ | | | | | | | | | - | | | / / | | |||| || // / |\ || + Bug : Amaya 11.2 W3C Editor/Browser defer Remote BOF Exploit SEH + Tested on : Xp sp3 en under vb + Refer : http://www.milw0rm.com/exploits/8314 + Exploit : His0k4 + Greetz : All...

Amaya 11.2 - W3C EditorBrowser (defer) Remote Buffer Overflow (SEH)

Amaya 11.2 - W3C EditorBrowser defer Remote Buffer Overflow SEH !/usr/bin/python | || | / \ | | | | | | | | | -374 bytes. shellcode = "JJJJJJJJJJJJJJJJJ7RYjAXP0A0AkAAQ2AB2BB0BBABXP8ABuJI" "TiKyosYyyN8YzN9IT4utL4SkoqRSwcUOJKKJ7rMSzKKLIrkDysv" "cONtBUOjKrQCwEscPlFEWcWJJVuk9pPkCPqqMeokZTQPKLTkoQa"...

Amaya 11.2 W3C Editor/Browser (defer) Remote BOF Exploit (SEH)

Exploit for windows platform in category remote exploits ============================================================== Amaya 11.2 W3C Editor/Browser defer Remote BOF Exploit SEH ============================================================== !/usr/bin/python | || | / \ | | | | | | | | | -374 byte...

Amaya 11.2 - W3C Editor/Browser (defer) Remote Buffer Overflow (SEH)

!/usr/bin/python | || | / \ | | | | | | | | | -374 bytes. shellcode = "JJJJJJJJJJJJJJJJJ7RYjAXP0A0AkAAQ2AB2BB0BBABXP8ABuJI" "TiKyosYyyN8YzN9IT4utL4SkoqRSwcUOJKKJ7rMSzKKLIrkDysv" "cONtBUOjKrQCwEscPlFEWcWJJVuk9pPkCPqqMeokZTQPKLTkoQa" "ws8qYJFZmKLsbOVZBVvxEzfPdOwnQ921l6Q4OOyN362JfnrQSmU"...

Oracle URL Download

This module will create a java class which enables the download of a binary from a webserver to the oracle filesystem. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle URL Download',...

WebShop Hun 1.062s - index.php Local File Inclusion Cross-Site Scripting

WebShop Hun 1.062s - index.php Local File Inclusion Cross-Site Scripting source: https://www.securityfocus.com/bid/43429/info WebShop Hun is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker...

WebShop Hun 1.062s - '/index.php' Local File Inclusion / Cross-Site Scripting

source: https://www.securityfocus.com/bid/43429/info WebShop Hun is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory-traversa...

MyDLstore Meta Search Engine Script 1.0 - url Remote File Inclusion

MyDLstore Meta Search Engine Script 1.0 - url Remote File Inclusion source: https://www.securityfocus.com/bid/43455/info MyDLstore Meta Search Engine Script is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this...

FreeWebShop 'startmodules.inc.php' Local File Include Vulnerability

FreeWebShop is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

MyDLstore Meta Search Engine Script 1.0 - 'url' Remote File Inclusion

source: https://www.securityfocus.com/bid/43455/info MyDLstore Meta Search Engine Script is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute...

Vopak Local File Inclusion

============================================================== ===================¦¦¦¦TeamQuarantine¦¦¦¦=================== =====================¦¦¦¦ 7-15-2009 ¦¦¦¦==================== ============¦¦¦¦[email protected]¦¦¦¦============= ===============¦¦¦¦ Author: St00pidMnky...

XAMPP 1.6.x - showcode.php Local File Inclusion

XAMPP 1.6.x - showcode.php Local File Inclusion source: https://www.securityfocus.com/bid/37999/info XAMPP is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker can exploit this vulnerability to obtain potentially sensitive...

XAMPP 1.6.x - 'showcode.php' Local File Inclusion

source: https://www.securityfocus.com/bid/37999/info XAMPP is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts ...