76 matches found
Radancy: Application error message
Attack details HTTP Header input X-Forwarded-For was set to 12345'"'";|%00%0d%0a%bf%27'??? Error message found: Warning: inetpton function.inet-pton: Unrecognized address 12345'"\'\";|%00%0d%0a%00%bf%27' in...
Radancy: Application error message
Request GET / HTTP/1.1 Host: 12345'"'";|%00%0d%0a%bf%27' Referer: https://serverhk.maximum.com:443/ Connection: Keep-alive Accept-Encoding: gzip,deflate User-Agent: Opera/9.80 Windows NT 6.0; U; en Presto/2.8.99 Version/11.10 Accept: / Response HTTP/1.1 500 Internal Server Error Server:...
PicsEngine 2 Beta Cross Site Scripting / SQL Injection
PicsEngine Application error message Vulnerability ================================================== Author indoushka ================================================== vendor : Powered by PicsEngine 2 Beta ================================================== Blind SQL Injection :...
OTRS < 2.3.5 Queue Access Restriction Bypass Vulnerability
Open Ticket Request System OTRS is prone to a restriction bypass vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
OTRS Ticket Watch Security Bypass Vulnerability (OSA-2013-04)
Open Ticket Request System OTRS is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
phpVibe 3.1 Disclosure / Remote File Inclusion
Exploit Title: phpVibe 3.1 Multiple Vulnerability Date: 2013-05-07 Author: indoushka Software Link: http://phprevolution.com/ Category: webapps/php Version: 3.1 Price: 40€ Google dork: "Powered by phpVibe v3.1" installation Application error message :...
Twister Peer-To-Peer Microblogging Information Disclosure
======================================================================== TWISTER Peer-To-Peer microblogging Multiples Application Error Message and disclosing sensitive information ======================================================================== TIME-LINE VULNERABILITY Multiples Advisorie...
Microsoft Terminal Services Remote Denial Of Service (MS11-065; CVE-2011-1968)
This is a denial of service vulnerability. The vulnurability is caused due to a race condition created when the application is attempting to report an error. An attacker could trigger this flaw by repeatedly sending malicious rdp requests to an affected system. Successful exploitation may cause t...
Microsoft Internet Explorer 'location.hash' DOS Vulnerability
This host is installed with Internet Explorer and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodmsielocationhashdosvuln.nasl 6527 2017-07-05 05:56:34Z cfischer $ Microsoft Internet Explorer 'location.hash' DOS Vulnerability Authors: Sharath S Copyright:...
OpenCms (7.5.0) - Vulnerability: Cross-Site Scripting, Phishing Through Frames, Application Error
Application: OpenCms Version: 7.5.0 Hardware: Tomcat/Oracle Vulnerability: Cross-Site Scripting, Phishing Through Frames, Application Error Overview: Various URL's within the deployed OpenCms application version 7.5.0 are open to attacks, including Cross-Site Scripting, Phishing Through Frames an...
OpenCMS 7.5.0 Cross Site Scripting
Application: OpenCms Version: 7.5.0 Hardware: Tomcat/Oracle Vulnerability: Cross-Site Scripting, Phishing Through Frames, Application Error Overview: Various URL's within the deployed OpenCms application version 7.5.0 are open to attacks, including Cross-Site Scripting, Phishing Through Frames an...
Icecast 远端阻断服务弱点
CVE ID: CVE-2001-1083 Icecast 1.01.3.7 版内含 DoS 安全漏洞, 如果伺服器打开了 http-server file streaming 支援, 入侵者即可利用来达成 DoS 攻击; Http-server file streaming 内定是关闭的, 但是在 "icecasr.conf" 打开 "staticdir" 功能时, 此功能即会启动。 这个 DoS 攻击造成 Windows 的 "Application Error", 因此将造成 Icecast-server 整个当掉. 此 DoS 攻击是在 mp3 档案结尾加上 "/" or ""...
MercurySteam Scrapland Game Server 1.0 - Remote Denial of Service
source: https://www.securityfocus.com/bid/12680/info Scrapland game server is reported prone to various denial of service vulnerabilities. These issues present themselves because the application fails to handle exceptional conditions. It is reported that the game server crashes when handling...
[Full-Disclosure] Buffer Overflow In Microsoft Excel
======================================================================== = Excel - Buffer Overflow In Microsoft Excel = = MS Bulletin posted: = http://www.microsoft.com/technet/security/bulletin/MS04-033.mspx = = Affected Software: = Microsoft Office 2000 Service Pack 3 Software: = - Excel 2000 =...
CheckBO Win9x memo overflow
Author: Auriemma Luigi PRODUCT: CheckBO, www.checkbo.com OPERATIVE SYSTEM: ONLY Win9x INTRODUCTION: CheckBO is a program that go in listening mode on some trojan virus ports like 12345, 20034, ... and alert the user when someone do scanning for searching virus servers. It is a very old program la...
iis4.path.txt
Hello, There is another one way to retrieve a full path to local files in IIS4: If there is external CGI application configured for some file type and this application doesn't produce correct HTTP headers IIS generates an error with output of application both stdout and stderror. The problem is,...