1084 matches found
linux/x86 execve("/bin/cat", "/etc/gshadow") - 44 bytes
/ Exploit Title : linux/x86 execve"/bin/cat", "/bin/cat", "/etc/gshadow", NULL - 44 bytes Exploit Author : Febriyanto Nugroho Tested on : Linux Debian 5.0.5 / include char shellcode = "\x31\xdb" "\x8d\x43\x0b" "\x99" "\x52" "\x68\x2f\x63\x61\x74" "\x68\x2f\x62\x69\x6e" "\x89\xe3" "\x52"...
CVE-2015-2678
Multiple cross-site scripting XSS vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter in the categories page to gxadmin/index.php or 2 page parameter to index.php...
CVE-2015-1385
Cross-site scripting XSS vulnerability in the Blubrry PowerPress Podcasting plugin before 6.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cat parameter in a powerpress-editcategoryfeed action in the powerpressadmincategoryfeeds.php page to...
PT-2015-5258 · Blubrry · Blubrry Powerpress Podcasting Plugin
Name of the Vulnerable Software and Affected Versions: Blubrry PowerPress Podcasting plugin versions prior to 6.0.1 Description: The issue allows remote attackers to inject arbitrary web script or HTML via the cat parameter in a "powerpress-editcategoryfeed" action in the "powerpressadmin...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Stark CRM 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, or 3 notes parameter to the client page; 4 insuname or 5 price parameter to the addinsurancecat page; or 6 status parameter to the...
vBulletin 4.0.x 4.1.2 - search.php?cat SQL Injection
vBulletin 4.0.x 4.1.2 - search.php?cat SQL Injection vBulletin 4.0.x = 4.1.2 AUTOMATIC SQL Injection exploit Author: D35m0nd142, Google Dork: inurl:search.php?searchtype=1 Date: 02/09/2014 Vendor Homepage: http://www.vbulletin.com/ Tested on: vBulletin 4.1.2 Usage: perl exploit.pl Tutorial video:...
BlackCat CMS 1.0.3 Cross Site Scripting
Advisory ID: HTB23228 Product: BlackCat CMS Vendor: Black Cat Development Vulnerable Versions: 1.0.3 and probably prior Tested Version: 1.0.3 Advisory Publication: August 13, 2014 without technical details Vendor Notification: August 13, 2014 Vendor Patch: August 13, 2014 Public Disclosure:...
How to Weaponize your Cat to Hack Neighbours’ Wi-Fi Passwords
What do you expect from your cat to come back with?? Perhaps with a mouse or a bird – none of your use. But what if she come back with your neighbours’ wifi details? Really Interesting! A creative security researcher has found a way to use his pet cat mapping dozens of vulnerable Wi-Fi networks i...
Code injection
WeBid 1.1.1 allows remote attackers to conduct an LDAP injection attack via the 1 js or 2 cat parameter...
Pubs Black Cat [The Fun] 'browse.groups.php' SQL Injection Vulnerability
No description provided by source...
Buddy Zone <= 1.5 - Multiple SQL Injection Vulnerabilities
No description provided by source. --==+================================================================================+==-- --==+ Buddy Zone Version 1.5 And Prior SQL Injection Vulnerability +==-- --==+================================================================================+==-- AUTHOR:...
Realtor WebSite System E-Commerce idfestival SQL Injection Vulnerability
No description provided by source. ------------------------------------------------------------------------------------------- Realtor WebSite System E-Commerce all files.php SQL Injection Vulnerability -------------------------------------------------------------------------------------------...
Joomla! 'com_cb' Component 'cat' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38916/info The 'comcb' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
Realtor WebSite System E-Commerce SQL Injection Vulnerability
No description provided by source. =============================================== Realtor WebSite System E-Commerce SQL Injection Vulnerability =============================================== .----..--.--.| |--..-----..----.| |.-----..-----. | || | || || -|| || || || | ||| ||||||| ||||| | || ||...
Cat Soft Serv-U 2.5/a/b,Windows 2000/95/98/NT 4.0 Shortcut Vulnerability
No description provided by source. Cat Soft Serv-U 2.5/a/b,Windows 2000 Advanced Server/2000 Datacenter Server/2000 Professional/2000 Server/2000 Terminal Services/95/98/NT 4.0/NT Enterprise Server 4.0/NT Server 4.0/NT Terminal Server 4.0/NT Workstation 4.0 Shortcut Vulnerability source:...
solaris/x86 setuid(0), execve(/bin/cat, /etc/shadow), exit(0) 59 bytes
No description provided by source. / ; sm4x 2008 ; /bin/cat /etc/shadow ; 59 bytes ; SunOS sol01 5.11 snv86 i86pc i386 i86pc Solaris ; port to SunOS to pwn a b0x - thank god for that default unix CRYPTDEFAULT!!!! ; this is what happens when ur work takes away root pirv on a SunOS box :-/ global...
phpBB Fishing Cat Portal Addon - 'functions_portal.php' Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28708/info Fishing Cat Portal Addon for phpBB is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue can allow an attacker to compromise the...
ChiTeX 6.1.2 - Local Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7263/info A vulnerability in ChiTex has been reported that may allow local users to obtain root privileges on vulnerable systems. The vulnerability exists due to the existence of two setuid root binaries that execute the...
photokorn 1.53/1.54 print.php cat Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17683/info Photokorn is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker ...
KAPhotoservice 7.5 album.asp cat Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18379/info KAPhotoservice is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in...