Softnext Technologies Mail SQR Expert 路径遍历漏洞

Softnext Technologies Mail SQR Expert is a comprehensive email content security management system from Softnext Technologies. A security vulnerability exists in Softnext Technologies Mail SQR Expert, which can be exploited by an attacker to execute a PHP file with an arbitrary .asp file extension...

FlexDotnetCMS 1.5.8 Arbitrary ASP File Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FlexDotnetCMS Arbitrary ASP File Upload', 'Description' = %q This module exploits an arbitrary file upload vulnerability in FlexDotnetCMS v1.5.8...

ASP Stats Generator <= 2.1.1 - SQL Injection Vulnerabilities

No description provided by source. /------------------------------------------------ IHS Public advisory -------------------------------------------------/ ASP Stats Generator SQL-ASP injection - Code Excution ASP Stats Generator is a powerful website counter, completely written in ASP programmin...

Avaya IP Office Customer Call Reporter Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'uri' require 'msf/core' class Metasploit3 'Avaya IP Office Custome...

Microsoft IIS - ASP Multiple Extensions Security Bypass 5.x/6.x Vulnerabilities

!/usr/bin/python Exploit Title: Exploit for Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x Date: 29 dec 2009 Author: Emanuele 'emgent' Gentili and Emanuele 'crossbower' Acri Software Link: N/A Version: IIS 5.x/6.x Tested on: Windows 2003 Server SP2 CVE : N/A Code :...

Access2asp imageLibrary Arbitrary ASP Shell Upload Vulnerability

Exploit for unknown platform in category web applications ================================================================ Access2asp imageLibrary Arbitrary ASP Shell Upload Vulnerability ================================================================ + Title: imageLibrary dork...

Baran CMS 1.0 Arbitrary ASP File Upload/DB/SQL/XSS/CM Vulns

No description provided by source. 0x01 Informations : Name : Baran Cms Version : 1.0 Personal site : http://www.baran-cms.ir $$ : 50$ Vul : Arbitrary ASP File Upload/DB/SQL/XSS/CM Credit : Aria-Security Team Website : http://Aria-Security.Net Contact : [email protected] 0x02 Arbitrary ASP...

Baran CMS 1.0 File Upload / SQL Injection / XSS

0x01 Informations : Name : Baran Cms Version : 1.0 Personal site : http://www.baran-cms.ir $$ : 50$ Vul : Arbitrary ASP File Upload/DB/SQL/XSS/CM Credit : Aria-Security Team Website : http://Aria-Security.Net Contact : [email protected] 0x02 Arbitrary ASP File Upload :...

Baran CMS 1.0 - Arbitrary .ASP File Upload File Disclosure SQL Injection Cross-Site Scripting Cookie Manipulation

Baran CMS 1.0 - Arbitrary .ASP File Upload File Disclosure SQL Injection Cross-Site Scripting Cookie Manipulation 0x01 Informations : Name : Baran Cms Version : 1.0 Personal site : http://www.baran-cms.ir $$ : 50$ Vul : Arbitrary ASP File Upload/DB/SQL/XSS/CM Credit : Aria-Security Team Website :...

Baran CMS 1.0 - &#039;Arbitrary &#039;.ASP&#039; File Upload / File Disclosure / SQL Injection / Cross-Site Scripting / Cookie Manipulation

0x01 Informations : Name : Baran Cms Version : 1.0 Personal site : http://www.baran-cms.ir $$ : 50$ Vul : Arbitrary ASP File Upload/DB/SQL/XSS/CM Credit : Aria-Security Team Website : http://Aria-Security.Net Contact : [email protected] 0x02 Arbitrary ASP File Upload :...

Baran CMS 1.0 Arbitrary ASP File Upload/DB/SQL/XSS/CM Vulns

Exploit for unknown platform in category web applications =========================================================== Baran CMS 1.0 Arbitrary ASP File Upload/DB/SQL/XSS/CM Vulns =========================================================== 0x01 Informations : Name : Baran Cms Version : 1.0 Personal...

CVE-2005-2624

Eval injection vulnerability in CPAINT 1.3-SP allows remote attackers to execute arbitrary ASP code via the cpaintargument parameter to 1 calculator.asp or 2 cpaintfile.asp, which is directly fed into an eval statement...

CVE-2005-2624

Eval injection vulnerability in CPAINT 1.3-SP allows remote attackers to execute arbitrary ASP code via the cpaintargument parameter to 1 calculator.asp or 2 cpaintfile.asp, which is directly fed into an eval statement...