Nginx 1.25.5 Host Header Validation Vulnerability

Nginx versions 1.25.5 and below appear to have a host header filtering validation bug that could possibly be used for malice. Nginx = 1.25.5 $host variable validation bug Intro: In the "Host" header sent to Nginx web server you can't just insert a dot or something like that, because a filtering...

Razer: SQL Injection at api.easy2pay.co/add-on/get-sig.php via partner_id Parameter

The tester discovered a SQL injection vulnerability that allowed the potential extraction of sensitive user information from the Razer Gold Thailand database. Razer thanks the tester for his PoC as well as working with the Triage and dev teams to clarify the issue and get it fixed...

CVE-2018-19790: Open Redirect Vulnerability when using Security\Http

Affected versions Symfony 2.7.0 to 2.7.49, 2.8.0 to 2.8.48, 3.0.0 to 3.4.19, 4.0.0 to 4.0.14, 4.1.0 to 4.1.8 and 4.2.0 versions of the Symfony Form component are affected by this security issue. The issue has been fixed in Symfony 2.7.50, 2.8.49, 3.4.20, 4.0.15, 4.1.9 and 4.2.1. Note that no fixe...

Popular Pentesting Scanner: v3n0m

v3n0m is a free and open source scanner. Evolved from baltazar’s scanner, it has adapted several new features that improve functionality and usability. It is mostly experimental software. This program is for finding and executing various vulnerabilities. It scavenges the web using dorks and...

Internet Bug Bounty: out of bounds read crashes php-cgi

I found and disclosed CVE-2014-9427 to the PHP dev team on 17 December 2014 https://bugs.php.net/bug.php?id=68618 and a patch was committed on 30 December 2014 http://git.php.net/?p=php-src.git;a=commit;h=f9ad3086693fce680fbe246e4a45aa92edd2ac35 and the flaw is now fixed. Details of the flaw:...

Internet Bug Bounty: Misc Python bugs (Memory Corruption & Use After Free)

These bugs were reported directly to the Python dev team. http://bugs.python.org/issue22518 http://bugs.python.org/issue22520 http://bugs.python.org/issue22519 http://bugs.python.org/issue22643 http://bugs.python.org/issue22517...

IdeaBox <= 1.1 (gorumDir) Remote File Include Vulnerability

No description provided by source. $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ IdeaBox = 1.1 gorumDir Remote File Include Vulnerability $$ script site: http://ideabox.phpoutsourcing.com/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$ Find by:...

Winamp 5.5.8 (in_mod plugin) Stack Overflow Exploit (SEH)

No description provided by source. !/usr/bin/python finally got time to finish what I started... Winamp 5.5.8.2985 inmod plugin Stack Overflow SEH WINDOWS XP SP3 EN Fully Patched Bug found by http://www.exploit-db.com/exploits/15248/ POC and Exploit by fdisk @fdiskyou e-mail: fdiskyou at...

Ultimate PHP Board <= 2.0 (header_simple.php) File Include Exploit

No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...

CS-Cart <= 1.3.3 - (classes_dir) Remote File Include Vulnerability

No description provided by source. $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ CS-Cart 1.3.3 classesdir = Remote File Include Vulnerability $$ Script site: http://www.cs-cart.com $$ Dork: Powered by CS-Cart - Shopping Cart Software $$...

Tickets CAD 2.20G Multiple Vulnerabilities

No description provided by source. Exploit Title: Tickets CAD 2.20G Multiple Vulnerabilities Date: Aug 4 2012 Exploit Author: chap0 @chap0 Vendor Homepage: http://www.ticketscad.org Software Link: http://www.ticketscad.org/downloads/Tickets06222012V220G.zip Version: 2.20G Tested on: Ubuntu Ticket...

Vtiger 5.4.0 Cross Site Scripting

SOJOBO-ADV-13-05 - Vtiger 5.4.0 Reflected Cross Site Scripting I. Information ================== Name : Vtiger 5.4.0 Reflected Cross Site Scripting Software : Vtiger 5.4.0 and possibly below. Vendor Homepage : https://www.vtiger.com/ Vulnerability Type : Reflected Cross-Site Scripting Severity :...

[SOJOBO-ADV-13-01] - Zenphoto 1.4.5.2 multiple vulnerabilities

SOJOBO-ADV-13-01 - Zenphoto 1.4.5.2 multiple vulnerabilities I. Information ================== Name : Zenphoto 1.4.5.2 multiple vulnerabilities Software : Zenphoto 1.4.5.2 and possibly below. Vendor Homepage : http://www.zenphoto.org/ Vulnerability Type : SQL Injection, Reflected Cross-Site...

Tickets CAD 2.20G Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Tickets CAD 2.20G Multiple Vulnerabilities Exploit Author: chap0 @chap0 Vendor Homepage: http://www.ticketscad.org Software Link: http://www.ticketscad.org/downloads/Tickets06222012V220G.zip Version: 2.20G Tested on: Ubuntu...

Absinthe 2.0 Jailbreak for iOS 5.1.1 Devices Released

A group of developers has released a new untethered jailbreak for devices running iOS 5.1.1. The hack allows users to run unsigned apps on their devices, something that Apple doesn’t like so much. The new version of the Absinthe jailbreak tool was released publicly on Friday by the Chronic-Dev Te...

Absinthe Jailbreak for iPhone 4S Released

Less than three weeks after releasing a new jailbreak for iPhones running iOS 5.01, a team of researchers has now published a similar tool for jailbreaking the iPhone 4S and iPad2. The Absinthe jailbreak tool will allow users to run unsigned code on their devices and load apps from places other...

Apple Crash Reports Help Hackers to create a jailbreak exploit

Apple Crash Reports Help Hackers to create a jailbreak exploit iPhone "jailbreaking" has been a hot topic since Apple released its smartphone more than two years ago. According to the Latest report posted by BBC that Thousands of iPhone owners have joined forces with a team of hackers to help the...

Apple Crash Reports Help Hackers to create a jailbreak exploit

Apple Crash Reports Help Hackers to create a jailbreak exploit iPhone "jailbreaking " has been a hot topic since Apple released its smartphone more than two years ago. According to the Latest report posted by BBC that Thousands of iPhone owners have joined forces with a team of hackers to help th...

Winamp 5.5.8 (in_mod plugin) Stack Overflow Exploit (SEH)

Exploit for windows platform in category local exploits !/usr/bin/python finally got time to finish what I started... Winamp 5.5.8.2985 inmod plugin Stack Overflow SEH WINDOWS XP SP3 EN Fully Patched Bug found by http://www.exploit-db.com/exploits/15248/ POC and Exploit by fdisk This POC was...

Winamp 5.5.8 (in_mod plugin) - Local Stack Overflow (SEH)

!/usr/bin/python finally got time to finish what I started... Winamp 5.5.8.2985 inmod plugin Stack Overflow SEH WINDOWS XP SP3 EN Fully Patched Bug found by http://www.exploit-db.com/exploits/15248/ POC and Exploit by @fdiskyou e-mail: rui at deniable.org This POC was already been released here...