EUVD-2022-28258

Malicious code in bioql PyPI...

CVE-2022-23167

Attacker crafts a GET request to: /mobile/downloadfile.aspx? Filename =../.. /windows/boot.ini the LFI is UNAUTHENTICATED...

Mega File Manager - File Download Vulnerability

No description provided by source. Exploit Title: MegaFileManager FileDownload Vulnerability date: 2012-04-19 Author: i2sec-Min Gi Jo Software Link: http://www.awesomephp.com/?Download5 Version: Mega File Manager V 1.0 Tested on: Windows Description : There is no filtering on 'cimages.php'...

SafeNet Sentinel Directory Traversal

!/usr/bin/python Exploit Title: SafeNet Sentinel Protection Server 7.0 - 7.4 and Sentinel Keys Server 1.0.3 - 1.0.4 Directory Traversal Date: 04/28/2014 Exploit Author: Matt Schmidt Syph0n Vendor Homepage: http://www.safenet-inc.com/ Software Link:...

Xlight FTPd Multiple Directory Traversal in SFTP

Accensus Security Group Vulnerability Advisory L-03 Date: 7/5/2010 Vendor: http://www.xlightftpd.com/ Effected Software: Xlight FTP Server 3.5.5 Description of Vulnerability: The SFTP server contains several directory traversal vulnerabilities: get, ls, rm, rename, etc. For example get...

Jtalk HTTP Server Directory Traversal

Hello All, Does anyone know of any Directory Traversal issue with Jtalk HTTP server? I was testing one of my machine and found directory traversal on it. http://192.168.10.120/.../.../.../.../.../.../.../.../.../boot.ini Tried to enumerate the version but failed, attached below are the logs -...

iWeb HTTP Server Directory Transversal Vulnerability

No description provided by source. iWeb HTTP server Directory Transversal Vulnerability Found By: mrme Download: http://www.ashleybrown.co.uk/iweb/ Tested On: Windows XPSP3 POC: http://server/..%5C..%5C..%5Cboot.ini...

(edited) [DSECRG-09-044] SAP GUI 7.1 Insecure Methods

Digital Security Research Group DSecRG Advisory DSECRG-09-044 Application: EnjoySAP, SAP GUI for Windows 6.4 and 7.1 Versions Affected: Tested on 7100.2.7.1038 PL 7 Vendor URL: http://SAP.com Bugs: insecure method, File owervriting Exploits: YES Reported: 02.07.2009 Vendor response: 02.07.2009 Da...

Zervit Web Server 0.02 - Directory Traversal

Zervit Web Server 0.02 - Directory Traversal Zervit Webserver Directory Traversal By: e.wiZz! Site: www.balcansecurity.com Found with ServMeNot world's sexiest fuzzer :P In the wild... Site: http://zervit.sourceforge.net/ Info: Zervit is the first compact, portable HTTP/Web Server made for human...

Zervit Web Server 0.02 - Directory Traversal

Zervit Webserver Directory Traversal By: e.wiZz! Site: www.balcansecurity.com Found with ServMeNot world's sexiest fuzzer :P In the wild... Site: http://zervit.sourceforge.net/ Info: Zervit is the first compact, portable HTTP/Web Server made for human beings. It is being developed thinking in the...

MonGoose 2.4 (Windows) - WebServer Directory Traversal

MonGoose 2.4 Windows - WebServer Directory Traversal MonGoose 2.4 win webserver Directory Traversal By: e.wiZz! Site: www.balcansecurity.com Found with ServMeNot world's sexiest fuzzer :P In the wild... Info: Easy to use web server for Windows and UNIX. Mongoose provides simple and clean API for...

ftpdmin 0.96 Arbitrary File Disclosure Exploit

Exploit for windows platform in category remote exploits ============================================== ftpdmin 0.96 Arbitrary File Disclosure Exploit ============================================== !/usr/bin/perl ftpdmin 0.96 Arbitrary File Disclosure Exploit Vulnerability Disclosure by 1 Slach o...

webcamXP 5.3.2.375 Remote File Disclosure Vulnerability

No description provided by source. Directory Traversal Attack Example: http://XX.XX.XX.XX/..%2F..%2F..%2F..%2F..%2Fwindows/repair/sam http://XX.XX.XX.XX/..%2F..%2F..%2F..%2F..%2Fboot.ini -nicx0...

servu72-upload.txt

Serv-U 7.2.0.1 ftp file replacement user must have upload permissions x dmnt 2008-10-01 220 Serv-U FTP Server v7.2 ready... user test 331 User name okay, need password. pass test 230 User logged in, proceed. rnfr anyexistfile.ext 350 File or directory exists, ready for destination name. rnto...

cmslittle-lfi.txt

====================================================================== CMS little index.php template Local File Inclusion Vulnerability ====================================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground...

CMS little (index.php template) Local File Inclusion Vulnerability

No description provided by source. ====================================================================== CMS little index.php template Local File Inclusion Vulnerability ====================================================================== ,--^----------,--------,-----,-------^--, | |||||||||...

galmetapost-lfi.txt

================================================================== Galmeta Post CMS Multiple Local File Inclusion Vulnerabilities ================================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

cmsmini-lfi.txt

===================================================== CMS Mini 0.2.2 Local File Inclusion Vulnerability ===================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

jaxultrabb-lfixss.txt

=============================================================== JaxUltraBB = 2.0 LFI/XSS Multiple Remote Vulnerabilities =============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

ThaiQuickCart 3 - sLanguage Cookie Local File Inclusion

ThaiQuickCart 3 - sLanguage Cookie Local File Inclusion ===================================================================== ThaiQuickCart COOKIE:sLanguage Local File Inclusion Vulnerability =====================================================================...