CVE-2007-2548

Summary: CVE-2007-2548 concerns TurnkeyWebTools SunShop Shopping Cart 4.0 with an issue in index.php described as a vulnerability tied to cookie manipulation and a remote attack vector . The exact impact is listed as unknown in the description. The available data indicate a remote, low-complexity...

Atomix MP3 - .MP3 File Buffer Overflow

Atomix MP3 - .MP3 File Buffer Overflow // source: https://www.securityfocus.com/bid/23756/info Atomix MP3 is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploit...

MoinMoin 1.5.x - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23676/info MoinMoin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

CVE-2007-2110

CVE-2007-2110 affects Oracle Database on Windows, targeting the Core RDBMS. The vulnerability (DB03) arises from the RDBMS using a NULL DACL for the Oracle process and certain shared memory sections, enabling local users to inject threads and execute arbitrary code via OpenProcess, OpenThread, an...

Sql injection

Multiple SQL injection vulnerabilities in Jupiter CMS 1.1.5 allow remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header and certain other HTTP headers, which set the ip variable that is used in SQL queries performed by index.php and certain other PHP scripts. NOTE: the...

CVE-2007-0971

Multiple SQL injection vulnerabilities in Jupiter CMS 1.1.5 allow remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header and certain other HTTP headers, which set the ip variable that is used in SQL queries performed by index.php and certain other PHP scripts. NOTE: the...

mini-traverse.txt

Hello! Miniwebsvr 0.0.6 suffers from a directory traversal flaw. "Exploit" : http://yoursite/..%00 Attack vector seems limited as you're only able to list one level down. Cheers, Daniel Nyström, [email protected] Fredrik Wessberg, [email protected]...

Miniwebsvr 0.0.6 - Directory traversal

Hello! Miniwebsvr 0.0.6 suffers from a directory traversal flaw. "Exploit" : http://yoursite/..00 Attack vector seems limited as you're only able to list one level down. Cheers, Daniel Nystrom, [email protected] Fredrik Wessberg, [email protected]...

CVE-2007-0889

Kiwi CatTools before 3.2.0 beta uses weak encryption "reversible encoding" for passwords, account names, and IP addresses in kiwidb-cattools.kdb, which might allow local users to gain sensitive information by decrypting the file. NOTE: this issue could be leveraged with a directory traversal...

Microsoft Excel Malformed Palette Record DoS PoC (MS07-002)

Exploit for unknown platform in category dos / poc =========================================================== Microsoft Excel Malformed Palette Record DoS PoC MS07-002 =========================================================== """ MS07-002 EXCEL Malformed Palette Record Vulnerability DOS POC...

Hacking AJAX DWR Applications

By Guy Karlebach & Amichai Shulman Introduction The introduction of AJAX into a web application improves the user experience significantly. However, the complexity of some AJAX frameworks and the limited field experience with them requires a careful examination of potential vulnerabilities. DWR i...

CVE-2006-6840

Unspecified vulnerability in phpBB before 2.0.22 has unknown impact and remote attack vectors related to a "negative start parameter."...

GenesisTrader 1.0 - form.php Multiple Cross-Site Scripting Vulnerabilities

GenesisTrader 1.0 - form.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/21595/info GenesisTrader is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input. These issues include...

CVE-2006-6276

HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting XSS, and poison web...

encapscms 0.3.6 - Remote File Include by Firewall

Firewall encapscms 0.3.6 - Remote File Include by Firewall BuG FounD by Firewall Application Affect: encapscms 0.3.6 Sorce Code: http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip Code: includeonce$root."core/Config.php"; includeonce$root."core/DBsql.php";...

Microsoft Outlook Express Windows地址簿文件解析溢出漏洞（MS06-016）

Microsoft Outlook Express是Microsoft Windows操作系统捆绑的邮件和新闻组客户端。 Microsoft Outlook Express在解析特制的Windows地址簿（.wab）文件时存在堆溢出漏洞，攻击者可以诱骗用户打开特制的.wab文件导致在用户系统上执行任意代码。 Microsoft Outlook Express 5.5 SP2 - Microsoft Windows 2000 SP4 Microsoft Outlook Express 6.0 - Microsoft Windows XP SP2 - Microsoft Windows...

HP-UX 11i (LIBC TZ enviroment variable) Local Root Exploit

No description provided by source. / HP-UX libc timezone environment overflow exploit ================================================ HP-UX libc contains an exploitable stack overflow in the handling of "TZ" environment variable. The problem occurs due to insufficient bounds checking in the...

HP-UX 11i - 'LIBC TZ' Enviroment Variable Privilege Escalation

/ HP-UX libc timezone environment overflow exploit ================================================ HP-UX libc contains an exploitable stack overflow in the handling of "TZ" environment variable. The problem occurs due to insufficient bounds checking in the localtimer and related functions. Any...

Another Mambo module remote inclusion vulneribility

Bug Found by h4ntu http://h4ntu.com batamhacker crew Another Mambo module remote inclusion vulneribility download : http://mamboxchange.com/frs/download.php/1498/MambWeather181.zip bug found in file : MambWeather/Savant2/Savant2Pluginoptions.php ?php / Base plugin class. / global...

CVE-2006-5377

Technical details about CVE-2006-5377 are not provided in the supplied documents. No affected products, root cause, or remediation are disclosed here. Monitor for updates in the connected sources.