1345 matches found
Mozilla Firefox WYCIWYG:// URI绕过缓存区限制漏洞
BUGTRAQ ID: 24831 Mozilla Firefox是一款非常流行的开源WEB浏览器。 Firefox实现的wyciwyg://伪URI资源类型的访问控制存在漏洞,远程攻击者可能利用此漏洞获取Web浏览器相关的敏感信息。 wyciwyg://伪URI资源类型用于整理和引用本地所缓存的页面,但wyciwyg:// URI的访问控制并不充分,用户可通过XMLHttpRequest或IFRAMEd view-source:访问所缓存的文档。尽管仍正确地实现同域策略,但恶意站点可以绕过cookie设置向用户计算机存储任意标记;如果结合HTTP...
SquirrelMail GPGP Encryption Plugin 2.0 - Command Execution
SquirrelMail GPGP Encryption Plugin 2.0 - Command Execution SquirrelMail G/PGP Encryption Plug-in Remote Command Execution Vulnerability Bugtraq ID: 24782 ----------------------------- There are various vulnerabilities in this software! One is in keyringmain.php! $fpr is not escaped from...
SquirrelMail G/PGP Encryption Plug-in Remote Command Execution Vulnerability
SquirrelMail G/PGP Encryption Plug-in Remote Command Execution Vulnerability Bugtraq ID: 24782 ----------------------------- There are various vulnerabilities in this software! One is in keyringmain.php! $fpr is not escaped from shellcommands! testbox:/home/w00t cat /tmp/w00t cat: /tmp/w00t: No...
SquirrelMail G/PGP Encryption Plug-in 2.0 Command Execution Vuln
Exploit for unknown platform in category web applications ================================================================ SquirrelMail G/PGP Encryption Plug-in 2.0 Command Execution Vuln ================================================================ SquirrelMail G/PGP Encryption Plug-in Remote...
SquirrelMail G/PGP Encryption Plugin 2.0 - Command Execution
SquirrelMail G/PGP Encryption Plug-in Remote Command Execution Vulnerability Bugtraq ID: 24782 ----------------------------- There are various vulnerabilities in this software! One is in keyringmain.php! $fpr is not escaped from shellcommands! testbox:/home/w00t cat /tmp/w00t cat: /tmp/w00t: No...
MDaemon Server DomainPOP Malformed Message DoS
According to its banner, the version of MDaemon installed on the remote host contains a vulnerability in its 'DomainPOP' Mail Collection component that may cause it to crash while processing a specially crafted message. An unauthenticated, remote attacker may be able to leverage this issue to den...
Asterisk SIP Channel T.38 SDP Parsing Multiple Buffer Overflows
The version of Asterisk running on the remote host contains two stack-based buffer overflows in its SIP SDP handler when attempting to read the 'T38FaxRateManagement:' and 'T38FaxUdpEC:' options in the SDP within a SIP packet. An unauthenticated, remote attacker may be able to leverage this flaw ...
Apache Tomcat snoop.jsp URI XSS
The remote Apache Tomcat web server includes an example JSP application, 'snoop.jsp', that fails to sanitize user-supplied input before using it to generate dynamic content. An unauthenticated, remote attacker can exploit this issue to inject arbitrary HTML or script code into a user's browser to...
MS07-031: Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (935840)
The remote host is running a version of Windows that has a bug in the SSL/TLS server-key exchange handling routine that may allow an attacker to execute arbitrary code on the remote host by luring a user on the remote host into visiting a rogue website. On Windows 2000 and 2003 this vulnerability...
Trend Micro ServerProtect AgRpcCln.dll Buffer Overflow
The remote version of Trend Micro ServerProtect is vulnerable to a stack overflow involving the 'wcscpy' function of the routine 'CAgRpcClient::CreateBinding' in AgRpcCln.dll library. An unauthenticated, remote attacker may be able to leverage this issue with specially crafted RPC requests to its...
HP Tru64 5.0.1 - DOP Command Privilege Escalation
HP Tru64 5.0.1 - DOP Command Privilege Escalation source: https://www.securityfocus.com/bid/23881/info HP Tru64 for UNIX is prone to a local privilege-escalation vulnerability. Exploiting this issue allows local attackers to execute arbitrary code with superuser privileges. Successful exploits wi...
PostNuke Module v4bJournal Remote SQL Injection Vulnerability
No description provided by source. ---------------------------------------- PostNuke Journal ---------------------------------------- DISCOVERED BY :Ali Abbasi Olom Fonon Mazandaran University - Security Research Center, Babol, Iran Greetz For All Y! UnderGround Group Members www.2600.ir Greetz F...
pnv4b-sql.txt
---------------------------------------- PostNuke Journal ---------------------------------------- DISCOVERED BY :Ali Abbasi Olom Fonon Mazandaran University - Security Research Center, Babol, Iran Greetz For All Y! UnderGround Group Members www.2600.ir Greetz For All Persian Bugtraq Members...
PostNuke Module v4bJournal - SQL Injection
PostNuke Module v4bJournal - SQL Injection ---------------------------------------- PostNuke Journal ---------------------------------------- DISCOVERED BY :Ali Abbasi Olom Fonon Mazandaran University - Security Research Center, Babol, Iran Greetz For All Y! UnderGround Group Members www.2600.ir...
PostNuke Module v4bJournal - SQL Injection
---------------------------------------- PostNuke Journal ---------------------------------------- DISCOVERED BY :Ali Abbasi Olom Fonon Mazandaran University - Security Research Center, Babol, Iran Greetz For All Y! UnderGround Group Members www.2600.ir Greetz For All Persian Bugtraq Members...
MS07-018: Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939)
The remote host contains a version of the Microsoft Content Management Server that is vulnerable to a security flaw that could allow a remote user to execute arbitrary code by sending a specially malformed HTTP request. C Tenable Network Security, Inc. include"compat.inc"; if description...
Debian DSA-1277-1 : XMMS - several vulnerabilities
Multiple errors have been found in the skin handling routines in xmms, the X Multimedia System. These vulnerabilities could allow an attacker to run arbitrary code as the user running xmms by inducing the victim to load specially crafted interface skin files. %NASLMINLEVEL 70300 C Tenable Network...
RSPA Remote File Inclusion
RSPA Remote File Inclusion Really Simple PHP and Ajax RSPA RSPA is a component based event driven ajax enabled framework for PHP4 and PHP 5. It is a combination of plane PHP class and HTML/Javascript.RSPA allows calling server side PHP functions from client javascript events. Visit...
litecms-rfi.txt
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...
[MajorSecurity Advisory #38]eXV2 CMS - Session fixation and Cross-Site-Scripting Issues
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...