Malware Scanner < 4.7.3 and Web Application Firewall < 2.1.2 - Unauthenticated Privilege Escalation

Description The plugin does not prevent unauthenticated users from resetting any account's password, allowing them to takeover sites by resetting one of its administrators' password. curl --url 'http://vulnerable-site.tld/wp-login.php' --data...

2daybiz Template Monster Clone (edituser.php) Change Pass Exploit

No description provided by source. title Template Monster Clone Change Password /title /head head /head body bgcolor="000000" pfont size="6" color="FF0000"a href="http://www.2daybiz.com/" font color="FF0000"2daybiz/font/a Template Monster Clone /font/p TABLE border=0 width=780 align=center TR...

Maxwebportal <= 1.36 password.asp Change Password Exploit (3 - perl)

Exploit for unknown platform in category web applications ==================================================================== Maxwebportal Gr33tz To == mhp0rtal , Oilkarchack , Str0ke & AlphaST.Com And Iranian Hacking & Security Teams : IHS , Shabgard , Emperor ,Crouz & Simorgh-ev use IO::Socket...

McMurtrey/Whitaker &amp; Associates Cart32 2.6/3.0 - Remote Administration Password

source: https://www.securityfocus.com/bid/1153/info Within cart32.exe, entering any password by way of http://target/scripts/cart32.exe/cart32clientlist, a remote user could obtain vital client information such as username, password, credit card numbers, and other crucial details. Passwords will...

Security Advisory

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Piranha web GUI exposure Advisory ID: RHSA-2000:014-10 Issue date: 2000-04-18 Updated on: 2000-04-24 Product: Red Hat Linux Keywords: piranha remote CGI command Cross references: php -...