Typo3 4.5 < 4.7 - Remote Code Execution / Local File Inclusion / Remote File Inclusion

Exploit Title: Typo3 v4.5-4.7 - Remote Code Execution RFI/LFI Date: 4th January 2012 Author: MaXe Software Link: https://typo3.org/download/ Version: 4.5.0 up to 4.5.8, 4.6.0 and 4.6.1 + development releases of 4.7 branch Typo3 v4.5-4.7 - Remote Code Execution RFI/LFI Versions Affected: 4.5.0 up ...

typo3 -- Remote Code Execution

The typo3 security team reports: A crafted request to a vulnerable TYPO3 installation will allow an attacker to load PHP code from an external source and to execute it on the TYPO3 installation. This is caused by a PHP file, which is part of the workspaces system extension, that does not validate...

Ubuntu 11.04 Released !

Ubuntu 11.04 Released ! For those of you watching Ubuntu's website recently, you may have noticed a new version of the popular and easy to use variant of Linux has been surfaced - Natty Narwal. It can be downloaded from the previously linked site free of charge. Among the various new features, th...

Seccubus 2.0.alpha1 released, Download Now !

So what is the difference between Seccubus V2 and Seccubus V2 ? Before you try something new you want to know if it is going to be worth it. This article should give you an idea of why we spend quite a lot of time and energy in rebuilding Seccubus V2 from scratch. I clearly recall the conversatio...

Design/Logic Flaw

Unspecified vulnerability in the Collaborative Workspaces component in Oracle Collaboration Suite 10.1.2 allows remote authenticated users to affect confidentiality via unknown vectors...

PT-2006-1319 · Phpxplorer · Phpxplorer

Name of the Vulnerable Software and Affected Versions: phpXplorer version 0.9.33 Description: A directory traversal issue in workspaces.php allows remote attackers to include arbitrary files via a .. dot dot and trailing null byte %00 in the sShare parameter. However, it is claimed that this...