9290 matches found
CVE-2009-0068
CVE-2009-0068 affects the xdg-open component of xdg-utils. The flaw arises from an interaction error where a file sent with a dangerous MIME type but wrapped as a safe type is processed via automatic type detection, enabling remote attackers to execute arbitrary code (demonstrated by overwriting ...
[SECURITY] Fedora 10 Update: clamav-0.94.2-1.fc10
Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...
activebids-sql.txt
Tybe : Remote Blind SQL Injection Vulnerability Vendor : www.activewebsoftwares.com Software : Active Bids author : Mountassif Moad http://site.il/activebids/bidhistory.asp?ItemID=354%20and%201=1 http://site.il/activebids/bidhistory.asp?ItemID=354%20and%201=0 Demo :...
ocean12faq-blindsql.txt
--------------------------------------------------------- Portal Name: Ocean12 FAQ Manager Pro Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Blind Sql Injection --------------------------------------------------------- Exploit : site.com/?Action=Cat&ID=40%20and%201=1 true...
Active Bids 3.5 - 'itemID' Blind SQL Injection
Tybe : Remote Blind SQL Injection Vulnerability Vendor : www.activewebsoftwares.com Software : Active Bids author : Mountassif Moad http://site.il/activebids/bidhistory.asp?ItemID=354%20and%201=1 http://site.il/activebids/bidhistory.asp?ItemID=354%20and%201=0 Demo :...
Ocean12 FAQ Manager Pro (ID) Blind SQL Injection Vulnerabillity
Exploit for unknown platform in category web applications =============================================================== Ocean12 FAQ Manager Pro ID Blind SQL Injection Vulnerabillity ===============================================================...
Ocean12 FAQ Manager Pro - 'ID' Blind SQL Injection
--------------------------------------------------------- Portal Name: Ocean12 FAQ Manager Pro Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Blind Sql Injection --------------------------------------------------------- Exploit : site.com/?Action=Cat&ID=40%20and%201=1 true...
[SECURITY] Fedora 8 Update: clamav-0.92.1-4.fc8
Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...
[SECURITY] Fedora 9 Update: clamav-0.93.3-2.fc9
Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...
CVE-2008-4141
CVE-2008-4141 affects the x10Media x10 Automatic MP3 Script 1.5.5. The vulnerability is a remote file inclusion that allows an attacker to supply a URL in the web_root parameter to (1) includes/function_core.php and (2) templates/layout_lyrics.php, enabling arbitrary PHP code execution on the ser...
CVE-2008-4141
Multiple PHP remote file inclusion vulnerabilities in x10Media x10 Automatic MP3 Script 1.5.5 allow remote attackers to execute arbitrary PHP code via a URL in the webroot parameter to 1 includes/functioncore.php and 2 templates/layoutlyrics.php...
Google Chrome browser multiple security vulnerabilities
Automatic file download, DoS, buffer overflows...
Google Chrome Browser 0.2.149.27 Automatic File Download Exploit
No description provided by source. Author: nerex E-mail: nerexatlivedotcom Google's new Web browser Chrome allows files e.g., executables to be automatically downloaded to the user's computer without any user prompt. This proof-of-concept was created for educational purposes only. Use the code it...
New Automatic File Download vulnerability in Google Chrome
Здравствуйте 3APA3A! Сообщаю вам о найденной мною новой Automatic File Download уязвимости в браузере Google Chrome. В браузере Chrome имеется уязвимость, которая позволяет загружать произвольные файлы, в том числе exe, без предварительного уведомления пользователя. Уязвимость связана с тегом...
New Automatic File Download vulnerability in Google Chrome
Здравствуйте 3APA3A! Сообщаю вам о найденной мною новой Automatic File Download уязвимости в браузере Google Chrome. В браузере Chrome имеется уязвимость, которая позволяет загружать произвольные файлы, в том числе exe, без предварительного уведомления пользователя. Уязвимость связана с тегом met...
Google Chrome Automatic File Download
Google's Chrome BETA allows files e.g. executable files to be automatically downloaded to the user's computer without any user prompt. To check the flaw, open a URL that points to an executable file. nerex...
New Automatic File Download vulnerability in Google Chrome
Здравствуйте 3APA3A! Сообщаю вам о найденной мною новой Automatic File Download уязвимости в браузере Google Chrome. В недавно вышедшем браузере Chrome я обнаружил уязвимость связанную с тегом frame, которая позволяет загружать произвольные файлы, в том числе exe, без предварительного уведомления...
Google Chrome 0.2.149.27 - Automatic File Download
Google Chrome 0.2.149.27 - Automatic File Download Author: nerex E-mail: nerexatlivedotcom Google's new Web browser Chrome allows files e.g., executables to be automatically downloaded to the user's computer without any user prompt. This proof-of-concept was created for educational purposes only...
Google Chrome 0.2.149.27 - Automatic File Download
Author: nerex E-mail: nerexatlivedotcom Google's new Web browser Chrome allows files e.g., executables to be automatically downloaded to the user's computer without any user prompt. This proof-of-concept was created for educational purposes only. Use the code it at your own risk. The author will...
[SECURITY] Fedora 8 Update: clamav-0.92.1-3.fc8
Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...