20 matches found
BIT-GIT-2024-32002 Git's recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution
Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule's worktree but into a .git/ directory...
Updated xonotic packages fix security vulnerability
A bug was discovered in versions older than 0.8.6 that is believed to be exploitable by malicious server admins to crash clients or, if they defeat mitigations, execute arbitrary code. No working exploit code is known to exist at this time, See referenced release notes for other changes...
CVE-2023-29007
Git is a revision control system. Prior to versions 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and 2.40.1, a specially crafted .gitmodules file with submodule URLs that are longer than 1024 characters can used to exploit a bug in...
CVE-2021-29628
CVE-2021-29628 affects FreeBSD kernel SMAP handling. The issue arises when copyin()/copyout() disable SMAP for user memory accesses; a bug caused SMAP to remain disabled until return to user mode, bypassing protections during a system call. Impact is that SMAP protections could be bypassed and, c...
Cisco 7937G Denial-of-Service Attack
This module exploits a bug in how the conference station handles incoming SSH connections that provide an incompatible key exchange. By connecting with an incompatible key exchange, the device becomes nonresponsive until it is manually power cycled. Module Options msf use...
HackerOne: Blind SSRF in "Integrations" by abusing a bug in Ruby's native resolver.
Summary HackerOne allows bug bounty programs to integrate their reports queue with issue tracking tools such as Jira and Phabricator. By abusing a bug that I discovered in Ruby's native resolver, I am able to bypass the SSRF filter and could potentially scan your internal network. Vulnerability...
Seagate GoFlex Remote Shell
I have been scanning some ranges in my free time and came across a Seagate GoFlex Home Network Storage System which my scanner flagged as being vulnerable to shellshock but getting a remote shell was no easy task "for me anyway". I ended up having to build a payload with msfvenom and doing the...
MyioSoft Ajax Portal 3.0 - page SQL Injection
MyioSoft Ajax Portal 3.0 - page SQL Injection AjaxPortal 3.0 ajaxpbackend.php page Remote SQL Injection Vulnerability Bug found && Exploited by cOndemned Greetz: ZaBeaTy, d2, Beowulf, str0ke, Alfons Luja, 0in and others Proof of Concept :...
Flexphpsite 0.0.1 - Authentication Bypass
Flexphpsite 0.0.1 - Authentication Bypass Autore: x0r Email: [email protected] Site: http://w00tz0ne.altervista.org/index.php Cms: Flexphpsiteen Version: 0.0.1 Download: http://www.china-on-site.com/flexphpsite/downloads.html Bug In \admin\usercheck.php $sql = "select username,adminid from...
Intel Core 2 Duo T5750, Intel Atom N270 CPU cache controller bug exploit
Exploit for hardware platform in category dos / poc /---------------------------------------------------------------------------- CPU cache controller bug exploit ================================ allows you to change content of arbitrary memory cells,including the kernel memory from the user leve...
CenterIM 4.22.3 - Remote Command Execution
Application: CenterIM http://www.centerim.org/index.php/MainPage Versions: centerim = 4.22.3 OS: Linux Bug: Execution of shell commands Exploit: remote Date: 15 March 2008 Author: Brian Fonfara w00 eMail: [email protected] Web: newb.kicks-ass.net 1 Bug 2 Exploit ======= 1 Bug ======= Received...
CenterIM <= 4.22.3 Remote Command Execution Vulnerability
Exploit for linux platform in category remote exploits ========================================================= CenterIM = 4.22.3 Remote Command Execution Vulnerability ========================================================= Application: CenterIM http://www.centerim.org/index.php/MainPage...
Content Builder 0.7.5 RFI Bug
Content Builder 0.7.5 RFI Bug Script Home Page : http://www.content-builder.de/ Source Forge Script Link : http://sourceforge.net/projects/content-builder/ Script Download URL : http://www.content-builder.de/modules/download/download.php?id=821 The Content Builder is a powerful German...
mpsw-rfi.txt
magic photo storage website -- Remote File Inclusion Vendor : http://www.scriptaty.net/magic-photo-storage-website.html Demo Site : http://www.turnkeydemos.info/demo/picstorage/ Found By : k1tk4t - k1tk4t4tnewhack.org Location : Indonesia -- newhackdotorg @irc.dal.net file; commonfunction.php bug...
Web3news <= v0.95 (PHPSECURITYADMIN_PATH) Remote File Inclusion Exploit
============================================================================================== Web3news = v0.95 PHPSECURITYADMINPATH Remote File Inclusion Exploit =============================================================================================== Critical Level : Dangerous Venedor sit...
directory traversal in RaidenHTTPD 1.1.27
Donato Ferrante Application: RaidenHTTPD http://www.raidenhttpd.com/ Version: 1.1.27 Bug: directory traversal Date: 05-Feb-2005 Author: Donato Ferrante e-mail: [email protected] web: www.autistici.org/fdonato xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx 1. Descripti...
ZWS Newsletter & Mailing List Manager
hello , i'm a frenchy boy and excuse me for my bad english... i decover a bug in the newsletter ZWS , http://www.target.com/newsletter/admin.php?f=listuser&uname=test&ulevel=1 with this , you can list all user register in the newsletter with respective password. after u log with a account Admin ,...
kppp-1.6.14.txt
here exists a bug in kppp 1.6.14 where a local user dialing up into the internet can copy the stars in the password box and put them into an xterm where the stars will be unrevealed and that password will be shown. seeya rarez...
mail_bof.txt
Subject: Many kind of POP3/SMTP server softwares for Windows have buffer overflow bug To: [email protected] Many kind of POP3/SMTP server softwares for Windows have buffer overflow bug by The Shadow Penguin Securuty http://shadowpenguin.backsection.net 1. Introduction I confirmed many kin...
rsync.permissions.txt
Date: Wed, 7 Apr 1999 22:21:30 +1000 From: Andrew Tridgell To: [email protected] Subject: rsync 2.3.1 release - security fix I discovered a security hole in rsync yesterday and have released rsync 2.3.1 to fix it. The new version and patches against the last version are available at...