CVE-1999-0117

AIX passwd allows local users to gain root access...

CVE-2025-61928

Better Auth is an authentication and authorization library for TypeScript. In versions prior to 1.3.26, unauthenticated attackers can create or modify API keys for any user by passing that user's id in the request body to the api/auth/api-key/create route. session?.user ?? authRequired ? null : i...

CVE-2021-45082

A flaw was found in cobbler. The vulnerability occurs due to incomplete template sanitization and leads to code injection. This flaw allows an attacker to interact and inject malicious codes and gain access to the system...

CVE-2021-36301

Dell iDRAC 9 prior to version 4.40.40.00 and iDRAC 8 prior to version 2.80.80.80 contain a Stack Buffer Overflow in Racadm. An authenticated remote attacker may potentially exploit this vulnerability to control process execution and gain access to the underlying operating system...

Wwbn Avideo Permission License and Access Control Issues Vulnerability

Wwbn Avideo is a video platform builder written in PHP by the Wwbn WWBN team. AVideo Platform suffers from a Permission Permission and Access Control Issues vulnerability that stems from an authorization bypass vulnerability that could allow a normal user to gain administrative control...

Egavilanmedia ECM Address Book SQL Injection Vulnerability

Egavilanmedia ECM Address Book is a platform for organizing and identifying address books from Egavilanmedia, USA. An SQL injection vulnerability exists in EgavilanMedia ECM Address Book 1.0, which can be exploited to bypass the administrative login panel via SQLi, gain administrative access, and...

TPshop open source mall management background Ueditor page file upload vulnerability

TPshop open source mall is developed with the latest version of ThinkPHP shop mall. TPshop open source mall management background Ueditor page file upload vulnerability. Attackers can use this vulnerability to upload webshell, get server privileges...

ChipsBank UMPTool Privilege Gain Vulnerability

ChipsBank UMPTool is a tool for batch modification of USB flash drive information. A security vulnerability exists in ChipsBank UMPTool that originates from the program's use of a simple alternative encryption algorithm to store passwords in NAND. An attacker in close physical proximity could...

CVE-2011-4889

CVE-2011-4889 affects IBM WebSphere Application Server via the Virtual Member Manager. The root cause is aPassword update flaw in the Tivoli Directory Server configuration caused by the javax.naming.directory.AttributeInUseException, which might allow a remote attacker to gain access using an old...

Ansible -- Command execution on Ansible controller from host

Computest reports: Computest found and exploited several issues that allow a compromised host to execute commands on the Ansible controller and thus gain access to other hosts controlled by that controller...

WikkiTikkiTavi 0.x Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3946/info WikkiTikkiTavi is a freely available engine for running a Wiki site. Wiki sites are web communities which are based on the idea that every webpage is editable by users of the website. WikkiTikkiTavi is back-ende...

CVE-2006-1689

Unspecified vulnerability in su in HP HP-UX B.11.11, when using the LDAP netgroup feature, allows local users to gain unspecified access...

proftpd_exploiting_toolkit.txt

Subject: proftpd To: [email protected] -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 / babcia padlina ltd. poland, 17/08/99 your ultimate proftpd pre0-3 exploiting toolkit based on: - adm-wuftpd by duke - kombajn do czere¶ni by Lam3rZ thx for shellcode! thx and greetz. / include include...