2056 matches found
CVE-2008-3150
CVE-2008-3150 describes a directory traversal vulnerability in Neutrino Atomic Edition 0.8.4, where index.php can be abused to read and modify files (notably via data/sess.php with actions usb and del_pag). The underlying issue allows an attacker to access restricted files and, per the sources, c...
neutrino-exec.txt
!/usr/bin/perl Neutrino 0.8.4 Atomic Edition Perl exploit discovered & written by Ams [email protected] DESCRIPTION: First exploit destroys "/data/sess.php" file simply strips tags, then we are able to bypass authorization and using admin privelegies our exploit uploads basic shell to...
QNX Neutrino 0.8.4 Atomic Edition - Remote Code Execution
!/usr/bin/perl Neutrino 0.8.4 Atomic Edition Perl exploit discovered & written by Ams [email protected] DESCRIPTION: First exploit destroys "/data/sess.php" file simply strips tags, then we are able to bypass authorization and using admin privelegies our exploit uploads basic shell to...
open(O_ATOMICLOOKUP) leaks dentry
Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux RHEL 4 and 5 allows local users to cause a denial of service memory consumption via a large number of open requests involving OATOMICLOOKUP...
open(O_ATOMICLOOKUP) leaks dentry
Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux RHEL 4 and 5 allows local users to cause a denial of service memory consumption via a large number of open requests involving OATOMICLOOKUP...
PHPNuke78.txt
NewAngels Advisory 7PHP Nuke sqlquery"SELECT active, view FROM ".$prefix."modules WHERE title='$name'"; The $name variable is not checked so you could inject malicious SQL Code. In an file which is included whe have the following code: $queryString = strtolower$SERVER'QUERYSTRING'; if...
PHP Nuke <= 7.8 Multiple SQL Injections
NewAngels Advisory 7PHP Nuke = 7.8 Multiple SQL Injections ============================================================================= Software: PHP Nuke 7.8 Type: SQL Injections Risk: High Date: Sep. 10 2005 Vendor: PHP-Nuke phpnuke.org Credit: ======= Robin 'onkelfisch' Verton from...
CVE-2005-2413
PHP remote file inclusion vulnerability in apaphpinclude.inc.php in Atomic Photo Album APA allows remote attackers to execute arbitrary PHP code via the apamodulebasedir parameter...
CVE-2005-2413
PHP remote file inclusion vulnerability in apaphpinclude.inc.php in Atomic Photo Album APA allows remote attackers to execute arbitrary PHP code via the apamodulebasedir parameter...
CVE-2005-2413
The CVE-2005-2413 entry maps to a concrete vulnerability in Atomic Photo Album (APA). The flaw is a PHP remote file inclusion in apa_phpinclude.inc.php triggered via the apa_module_basedir parameter, allowing an attacker to execute arbitrary PHP code and potentially view arbitrary files on the re...
apa-include.txt
Atomic Photo Album APA apaphpinclude.inc.php remote file include : ------------------------------------------------------------ Name: Atomic Photo Album APA Version: all Homepage: http://atomicpa.sourceforge.net/ Author: pclabs / lwdz - RandomHero Date: 20 July 2005...
Atomic Photo Album (APA) apa_phpinclude.inc.php remote file include
Atomic Photo Album APA apaphpinclude.inc.php remote file include : ------------------------------------------------------------ Name: Atomic Photo Album APA Version: all Homepage: http://atomicpa.sourceforge.net/ Author: pclabs / lwdz - RandomHero Date: 20 July 2005...
Atomic Photo Album apa_phpinclude.inc.php apa_module_basedir Parameter Remote File Inclusion
Binary data 3111.prm...
Atomic Photo Album apa_phpinclude.inc.php apa_module_basedir Parameter Remote File Inclusion
The remote host is running Atomic Photo Album, a free, PHP-based photo gallery. The installed version of Atomic Photo Album allows remote attackers to control the 'apamodulebasedir' variable used when including PHP code in the 'apaphpinclude.inc.php' script. By leveraging this flaw, an attacker m...
Atomic Photo Album 0.x/1.0 - 'Apa_PHPInclude.INC.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/14368/info Atomic Photo Album is susceptible to a remote PHP file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may exploit this issue to execute arbitrary PHP code on an...
Low: Red Hat Security Advisory: glibc security update
Updated glibc packages that address several bugs and implement some enhancements are now available. The GNU libc packages known as glibc contain the standard C libraries used by applications. This errata fixes several bugs in the GNU C Library. Fixes include in addition to enclosed Bugzilla...