D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17632)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect boundary checking in the tggl.asp script, which can be exploited by an attacker to cause a denial of service...

EUVD-2006-2319

Malware in sbrugna...

EUVD-2006-2320

Malware in sbrugna...

EUVD-2023-26612

Malicious code in bioql PyPI...

Microsoft IIS 6.0 ASP Stack Exhaustion Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft IIS 6.0 ASP Stack Exhaustion Denial of Service', 'Description' = %q The vulnerability allows remote unauthenticated attackers to force...

CVE-2023-22450

In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attacker to upload an ASP script file to a webserver when logged in as manager user, which can lead to arbitrary code execution...

CVE-2023-22450

In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attacker to upload an ASP script file to a webserver when logged in as manager user, which can lead to arbitrary code execution...

D-Link DNS-343 ShareCenter < 1.05 - Command Injection

Introduction The purpose of this article is to detail the research that I have recently completed regarding the D-Link DNS 343 ShareCenter. Background The D-Link ShareCenter 4-Bay Network Storage Enclosure DNS-343 connects to your network instead of to a computer so everyone on your network can...

PHICOMM K2 (PSG1218) Input Validation Vulnerability

The PHICOMM K2 PSG1218 is a wireless router product from the Chinese company PHICOMM. An input validation vulnerability exists in PHICOMM K2 PSG1218 versions 22.5.11.5 and earlier. A remote attacker can exploit this vulnerability by sending a request to an ASP script to execute code...

Remote code execution

PHICOMM K2PSG1218 devices V22.5.11.5 and earlier allow unauthenticated remote code execution via a request to an unspecified ASP script; alternatively, the attacker can leverage unauthenticated access to this script to trigger a reboot via an ifType=reboot action...

CVE-2017-11495

CVE-2017-11495 affects PHICOMM K2 (PSG1218) devices with firmware versions 22.5.11.5 and earlier. Multiple connected sources confirm an unauthenticated remote code execution vulnerability accessible via an unspecified ASP script, with a secondary exploit path where unauthenticated access to that ...

YaBB 1.40/1.41 Login Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6004/info A cross-site scripting vulnerability has been reported in the YaBB Yet Another Bulletin Board forum login script. HTML tags or script code are not sanitized from the error output of erroneous login attempts. As ...

GoAhead Webserver 2.1.x ASP Script File Source Code Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9239/info A vulnerability in GoAhead webserver may result in the disclosure of the source code of ASP script files. The vulnerability occurs because the application fails to sanitize HTTP requests. An attacker can append...

Pre Classified Listing SQL Vulnerable

No description provided by source. Exploit Title: Pre Classified Listing SQL Vulnerable Vendor url:http://www.sellatsite.com Version:1 Price:60 USD Author: L0rd CrusAd3r aka VSN [email protected] Published: 2010-06-14 Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue, S1ayer,d3c0d3r,KD and to a...

LANDesk Lenovo ThinkManagement Console Remote Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'LANDesk Lenovo ThinkManagement Consol...

LANDesk Lenovo ThinkManagement Console Remote Command Execution

This module can be used to execute a payload on LANDesk Lenovo ThinkManagement Suite 9.0.2 and 9.0.3. The payload is uploaded as an ASP script by sending a specially crafted SOAP request to "/landesk/managementsuite/core/core.anonymous/ServerSetup.asmx" , via a "RunAMTCommand" operation with the...

Click&BaneX v1.01 - Multiple SQL Injection Vulnerabilities

Document Title: =============== Click&BaneX v1.01 - Multiple SQL Injection Vulnerabilities Release Date: ============= 2011-07-02 Vulnerability Laboratory ID VL-ID: ==================================== 218 Product & Service Introduction: =============================== Click&BaneX is a full...

Uploadform ASP Script Shell Upload

+Exploit Title: Uploadform Asp Script Remote File Upload Vulnerability +Author : Net.Edit0r + E-mail : [email protected] + Date : 2011-04-13 + dork : inurl:/uploadfiles/uploadform.asp + Versian : All ver + Category : Web Apps Remote File Upload Vulnerability + Tested on: Windows Black Hat...

T-Dreams Articles & Papers Package SQL Injection Vulnerability

Exploit for asp platform in category web applications ============================================================== T-Dreams Articles & Papers Package SQL Injection Vulnerability ==============================================================...

T-Dreams FAQ Manager SQL Injection Vulnerability

Exploit for asp platform in category web applications ================================================ T-Dreams FAQ Manager SQL Injection Vulnerability ================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 3 3 3 3 7 /' \ /'\ /'\ ...