BitDefender 'pdf.xmd' Module PDF Parsing Remote DoS Vulnerability

This host is installed with BitDefender Internet Security and AntiVirus and is prone to denial of service vulnerability. The flaw is due to boundary error in 'pdf.xmd' module when parsing of data encoded using 'FlateDecode' and 'ASCIIHexDecode' filters. This can be exploited to cause a memory...

FlexCell Grid Control ActiveX Arbitrary File Overwrite Vulnerability

This host is installed with FlexCell Grid Control ActiveX and is prone to arbitrary File Overwrite vulnerability. OpenVAS Vulnerability Test $Id: secpodflexcellactivexfileoverwrirevuln900406.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: FlexCell Grid Control ActiveX Arbitrary File Overwrite...

MODx CMS <= 0.9.6.2 (RFI/XSS) Multiple Remote Vulnerabilities

No description provided by source. :: The Codes Like A Game Anyone Can Play With It,s :: Title: MODx CMS = 0.9.6.2 Multiple Remote Vulne RFI + XSS Vendor:...

MODx CMS 0.9.6.2 - Remote File Inclusion / Cross-Site Scripting

:: The Codes Like A Game Anyone Can Play With It,s :: Title: MODx CMS = 0.9.6.2 Multiple Remote Vulne RFI + XSS Vendor: http://modxcms.com/assets/snippets/filedownload/download.php?path=YnVpbGRz&fileName=modx-0.9.6.2.tar.gz&utmsource=0961p2&utmmedium=web&utmcampaign=download Discover by :...

http-open-proxy NSE Script

Checks if an HTTP proxy is open. The script attempts to connect to www.google.com through the proxy and checks for a valid HTTP response code. Valid HTTP response codes are 200, 301, and 302. If the target is an open proxy, this script causes the target to retrieve a web page from www.google.com...

Simple Machines Forum (SMF) < 1.1.6 Password Reset Vulnerability

Simple Machines Forum SMF is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MSSQL 7.0 Remote Denial of Service Exploit

No description provided by source. / Microsoft mssql 7.0 server is vulnerable to denial of service attack By sending a large buffer with specified data an attacker can stop the service "mssqlserver" the error noticed is different according to services' pack but the result is always the same one...

Unfixed XSS vulnerability at files.codes-sources.com

Security researcher ironzorg, has submitted on 06/06/2008 a cross-site-scripting XSS vulnerability affecting files.codes-sources.com, which at the time of submission ranked 14186 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/06/2008. It is...

roomphplanning15-sqlmulti.txt

...::::RoomPHPlanning 1.5 SQL Injection Vulnerabilities ::::... Virangar Security Team www.virangar.net www.virangar.ir -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best friend in the...

eCMS 0.4.2 (SQL/PB) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =================================================== eCMS 0.4.2 SQL/PB Multiple Remote Vulnerabilities =================================================== ...::::eCMS-v0.4.2 SQL/PB Multiple Remote Vulnerabilities ::::... -------- Discoverd ...

Fake SMTP/FTP Server Detection (possible backdoor)

Although this service answers with 3 digit ASCII codes like FTP, SMTP or NNTP servers, it sends back different codes when several NOOP commands are sent in a row. This is probably a backdoor; in this case, your system is compromised and an attacker can control it remotely. C Tenable Network...

ezContents CMS 2.0.0 Multiple Remote SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ================================================================== ezContents CMS 2.0.0 Multiple Remote SQL Injection Vulnerabilities ================================================================== ...:::::ezContents CMS Version 2.0.0 S...

EZContents CMS 2.0.0 - Multiple SQL Injections

EZContents CMS 2.0.0 - Multiple SQL Injections ...:::::ezContents CMS Version 2.0.0 SQL Injection Vulnerabilities ::::... Virangar Security Team www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & a...

Sql injection

SQL injection vulnerability in admin/traffic/knowledgesearchm.php in OSI Codes Inc. PHP Live! 3.2.2 allows remote attackers to execute arbitrary SQL commands via the questid parameter in an expandquestion action...

CVE-2008-0821

SQL injection vulnerability in admin/traffic/knowledgesearchm.php in OSI Codes Inc. PHP Live! 3.2.2 allows remote attackers to execute arbitrary SQL commands via the questid parameter in an expandquestion action...

CVE-2008-0821

SQL injection vulnerability in admin/traffic/knowledgesearchm.php in OSI Codes Inc. PHP Live! 3.2.2 allows remote attackers to execute arbitrary SQL commands via the questid parameter in an expandquestion action...

CVE-2008-0821

CVE-2008-0821 affects OSI Codes Inc. PHP Live! 3.2.2. The vulnerability is a SQL injection in admin/traffic/knowledge_searchm.php via the questid parameter in an expand_question action, allowing remote attackers to execute arbitrary SQL commands. CVSS v2 base score 7.5 (HIGH) with network attack ...

PHP Live! <= 3.2.2 (questid) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== PHP Live! = 3.2.2 questid Remote SQL Injection Vulnerability =============================================================== !Info! PHP Live! © OSI Codes Inc. enables live he...

PHP Live! 3.2.2 - &#039;questid&#039; SQL Injection (1)

!Info! PHP Live! © OSI Codes Inc. enables live help and live customer support communication directly from your website. With PHP Live!, you can provide one-on-one chat assistance in real-time, answer visitor questions and add that extra human touch to your website. !SQL Injection! Code:...

Unfixed XSS vulnerability at www.hillsdale.edu

Security researcher Codes, has submitted on 12/02/2007 a cross-site-scripting XSS vulnerability affecting www.hillsdale.edu, which at the time of submission ranked 164035 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/02/2007. It is current...