litespeedsource-disclose.txt

LiteSpeed Web Server Remote Source Code Disclosure Exploit\n"; else $out = "GET /".$argv2."\x00.txt HTTP/1.1\r\n"; $out .= "Host: ".$argv1."\r\n"; $out .= "Connection: Close\r\n\r\n"; fwrite$fp, $out; while !feof$fp $gelen = fgets$fp, 128; $dosya = strreplace"/","-",$argv2; $ac =...

LiteSpeed Source Code Disclosure/Download

This module exploits a source code disclosure/download vulnerability in versions 4.0.14 and prior of LiteSpeed. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LiteSpeed Source Code...

Yamamah SQL injection and code-disclosure vulnerability-a vulnerability warning-the black bar safety net

Yamamah website program exists SQL injectionwith the any file download code disclosure vulnerability. Download code disclosure vulnerability: EXP http://127.0.0.1/yamamah/index.php?download=file name For example: http://server/variable-path/index.php?download=includes/config.inc.php SQL injection...

CVE-2010-2333

LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension...

CVE-2010-2333

LiteSpeed Web Server 4.0.x prior to 4.0.15 is affected by CVE-2010-2333: an HTTP request containing a null byte followed by .txt can disclose the source code of scripts. This vulnerability enables an attacker to read server-side script sources, potentially exposing sensitive information. Impact i...

CVE-2010-2333

LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension...

MolyX Forum system SQL injection defects, and source code disclosure vulnerability-vulnerability warning-the black bar safety net

Magic ForumMolyX Board is a magic series of Web application software products one of the by the magic StudioMolyX Studios after several years of market, technical research and study, in the fusion of the current many Forum program technical and practical advantages on the basis for Chinese People...

CVE-2010-2263

nginx 0.8 before 0.8.40 and 0.7 before 0.7.66, when running on Windows, allows remote attackers to obtain source code or unparsed content of arbitrary files under the web document root by appending ::$DATA to the URI...

nginx Remote Source Code Disclosure and Denial of Service Vulnerabilities

nginx is prone to remote source-code-disclosure and denial of service vulnerabilities. An attacker can exploit these vulnerabilities to view the source code of files in the context of the server process or cause denial-of- service conditions. nginx 0.8.36 for Windows is vulnerable; other versions...

nginx <= 0.8.36 Remote Source Code Disclosure and DoS Vulnerabilities

nginx is prone to remote source code disclosure and denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...

Litespeed Technologies - Web Server Remote Poison Null Byte

Litespeed Technologies - Web Server Remote Poison Null Byte Litespeed Technologies Web Server Remote Poison null byte Zero-Day discovered and exploited by Kingcope in June 2010 google gives me over 9million hits Example exploit session: %nc 192.168.2.19 80 HEAD / HTTP/1.0 HTTP/1.0 200 OK Date: Su...

Litespeed Technologies - Web Server Remote Poison Null Byte

Litespeed Technologies Web Server Remote Poison null byte Zero-Day discovered and exploited by Kingcope in June 2010 google gives me over 9million hits Example exploit session: %nc 192.168.2.19 80 HEAD / HTTP/1.0 HTTP/1.0 200 OK Date: Sun, 13 Jun 2010 00:10:38 GMT Server: LiteSpeed . %cat...

Yamamah - &#039;news&#039; SQL Injection / Source Code Disclosure

Exploit Title: Yamamah Vulnerability news SQL Injection / disclosure Vulnerability Date: 12-06-2010 Author: anT!-Tr0J4n My Home : www.Dev-PoinT.com Software Link:http://www.yamamah.org Version: 1.00 Tested on: Win7/Linux DorK : N / A ========== Exploit By anT!-Tr0J4n============ =======Yamamah...

QuickTalk 1.2 Information Disclosure

======================================================================= QuickTalk v1.2 Source code disclosure Multiple Vulnerabilities ======================================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\...

QuickTalk 1.2 - Source Code Disclosure

QuickTalk 1.2 - Source Code Disclosure ======================================================================= QuickTalk v1.2 Source code disclosure Multiple Vulnerabilities =======================================================================...

QuickTalk v1.2 (Source code disclosure) Multiple Vulnerabilities

Exploit for php platform in category web applications ================================================================ QuickTalk v1.2 Source code disclosure Multiple Vulnerabilities ================================================================...

nginx Space String Remote Source Code Disclosure Vulnerability

nginx is prone to a remote source code-disclosure vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

QuickTalk 1.2 - Source Code Disclosure

======================================================================= QuickTalk v1.2 Source code disclosure Multiple Vulnerabilities ======================================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\...

GoAhead Webserver 2.18 Source Code Disclosure

Exploit Title: GoAheaad Webserver Source Code Disclosure Vulnerability Date: 5-28-10 Author: Sil3ntDre4m Software Link: http://data.goahead.com/Software/Webserver/2.1.8/webs218.zip Version: 2.18 and earlier Tested on: Windows Affects: Windows platform only Code :...

GoAheaad WebServer - Source Code Disclosure

GoAheaad WebServer - Source Code Disclosure Exploit Title: GoAheaad Webserver Source Code Disclosure Vulnerability Date: 5-28-10 Author: Sil3ntDre4m Software Link: http://data.goahead.com/Software/Webserver/2.1.8/webs218.zip Version: 2.18 and earlier Tested on: Windows Affects: Windows platform...