12 matches found
SOCA Access Control System 180612 SQL Injection
SOCA Access Control System 180612 SQL Injection And Authentication Bypass Vendor: SOCA Technology Co., Ltd Product web page: http://www.socatech.com Affected version: 180612, 170000 and 141007 Summary: The company's products include proximity and fingerprint access control system, time and...
SOCA Access Control System 180612 Reflected Cross-Site Scripting
Summary The company's products include proximity and fingerprint access control system, time and attendance, electric locks, card reader and writer, keyless entry system and other 30 specialized products. All products are attractively designed with advanced technology in accordance with users'...
Security Bulletin: Vulnerability in RC4 stream cipher affects IBM Netcool/Reporter (CVE-2015-2808)
Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects IBM Netcool/Reporter. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could exploit this...
LeaseWeb: Server version is disclosure in http://leasewebnoc.com/
Hello Leaseweb It's my same report but it's for different web application http://leasewebnoc.com here is sever version disclosure in http://leasewebnoc.com as when I have request about .htaccess , that returns result of forbidden but following server version publicly disclosure. Apache/2.2.22...
LeaseWeb: PHP and Web Server version disclosed on leasewebnoc.com
HI Version disclosure is happening on leasewebnoc.com GET /en/contact HTTP/1.1 Host: leasewebnoc.com User-Agent: Mozilla/5.0 Windows NT 6.3; WOW64; rv:44.0 Gecko/20100101 Firefox/44.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5...
WordPress MailChimp Subscribe Forms 1.1 Remote Code Execution Vulnerability
WordPress MailChimp Subscribe Forms plugin version 1.1 suffers from a remote code execution vulnerability. Exploit Title: Wordpress MailChimp Subscribe Forms Remote Code Execution Date: 21-04-2015 Exploit Author: woodspeed Vendor Homepage: https://wordpress.org/plugins/mailchimp-subscribe-sm/...
ZeroCMS 1.0 - (zero_transact_article.php article_id POST parameter) SQL Injection Vulnerability
No description provided by source. ZeroCMS v1.0 SQL Injection Vulnerability zerotransactarticle.php articleid POST parameter Vendor: Another Awesome Stuff Product web page: http://www.aas9.in/zerocms Affected version: 1.0 Severity: High CWE: 89 - http://cwe.mitre.org/data/definitions/89.html CVE:...
ZeroCMS 1.0 SQL Injection
ZeroCMS v1.0 SQL Injection Vulnerability zerotransactarticle.php articleid POST parameter Vendor: Another Awesome Stuff Product web page: http://www.aas9.in/zerocms Affected version: 1.0 Severity: High CWE: 89 - http://cwe.mitre.org/data/definitions/89.html CVE: CVE-2014-4194 Date: 20/06/2014...
GDL 4.2 - Multiple Vulnerabilities
Title : GDL 4.2 Multiple Vulnerabilities - Down. Script : http://kmrg.itb.ac.id/ - http://kmrg.itb.ac.id/gdl42.zip - Author : ByEge - Home : http://byege.blogspot.com.tr/ - Tested : Apache/2.2.22 Win32 PHP/5.4.3 - Date : 26/02/2014 - Google Dork : "Powered by GDL 4.2" And "gdl.php?mod=browse" -...
Apache HTTP Server suEXEC符号链接任意文件访问漏洞
Apache HTTP Server是一款开源的WEB服务程序 Apache HTTP Server包含的suEXEC会不安全创建临时文件,允许攻击者利用漏洞通过符号链接针对.htaccess文件进行攻击,可用于访问任意文件 0 Apache HTTP Server 2.2.22 厂商解决方案 Apache ----------- 目前没有详细解决方案提供: http://httpd.apache.org/...
PHP apache_request_headers Function Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'PHP apacherequestheaders Function...
PHP apache_request_headers Function Buffer Overflow
This module exploits a stack based buffer overflow in the CGI version of PHP 5.4.x before 5.4.3. The vulnerability is due to the insecure handling of the HTTP headers. This module has been tested against the thread safe version of PHP 5.4.2, from "windows.php.net", running with Apache 2.2.22 from...