Ultimate PHP Board <= 2.0 (header_simple.php) File Include Exploit

No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...

linux/x86 overwrite MBR on /dev/sda with `LOL!' 43 bytes

No description provided by source. ; linux/x86 overwrite MBR on /dev/sda with LOL!' 43 bytes ; root@thegibson ; 2010-01-15 section .text global start start: ; open/dev/sda, OWRONLY; mov al, 5 xor ecx, ecx push ecx push dword 0x6164732f push dword 0x7665642f mov ebx, esp inc ecx int 0x80 ; writefd...

AT Computing atsar_linux 1.4 File Manipulation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1048/info atsar is a linux load monitoring software package released under the GPL by AT Computing. atsadc is a setuid root binary that is included in the atsar package. atsadc is setuid because it obtains informatin via...

Yamamah (news) SQL Injection and Source Code Disclosure Vulnerability

No description provided by source. Exploit Title: Yamamah Vulnerability news SQL Injection / disclosure Vulnerability Date: 12-06-2010 Author: anT!-Tr0J4n My Home : www.Dev-PoinT.com Software Link:http://www.yamamah.org Version: 1.00 Tested on: Win7/Linux DorK : N / A ========== Exploit By...

ASP-DEV Discussion Forum 2.0 Admin Directory Weak Default Permissions Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8172/info It has been reported that a vulnerability exists in ASP-DEV Discussion Forum that exposes potentially sensitive information. Because of this, an attacker may be able to gain access to user credentials. User...

ASCPU 0.60 Kernel Memory File Descriptor Leakage Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5716/info It has been reported that ascpu is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file...

deV!L`z Clanportal Gamebase Addon SQL Injection Vulnerability

No description provided by source...

Dev Web Management System <= 1.5 (cat) Remote SQL Injection Exploit

No description provided by source. ?php ---Dev15sqlxpl.php 9.54 24/12/2005 Dev =1.5 'cat' SQL injection / admin MD5 password hash disclosure coded by rgod site: http://rgod.altervista.org - this works regardless of magicquotesgpc setting usage: launch from Apache, fill in requested fields, then g...

Tickets CAD 2.20G Multiple Vulnerabilities

No description provided by source. Exploit Title: Tickets CAD 2.20G Multiple Vulnerabilities Date: Aug 4 2012 Exploit Author: chap0 @chap0 Vendor Homepage: http://www.ticketscad.org Software Link: http://www.ticketscad.org/downloads/Tickets06222012V220G.zip Version: 2.20G Tested on: Ubuntu Ticket...

deV!Lz Clanportal [DZCP] <= 1.3.6 - Arbitrary File Upload Vulnerability

No description provided by source. S Y N O P S I S / =================' - access: remote severity: high - deV!Lz Clanportal allows nearly arbitrary files to be uploaded and stored on the server's filesystem, which enables anyone, even without a user account, to upload PHP code and execute it,...

Active Auction House 3.6 - Blind SQL Injection Vulnerability

No description provided by source. ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: wishlist.asp catid Blind SQL Injection Vulnerability Vendor: www.activewebsoftwares.com Software: Active Auction House v 3.6 author: R3d-D3v!L Date: 17.dec.2009 T!ME: 10:...

ASP-DEV XM Events Diary 'cat' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/32809/info ASP-DEV XM Events Diary is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

WMMon 1.0 b2 Memory Character File Open File Descriptor Read Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5718/info It has been reported that wmmon is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file...

Linux Kernel /dev/ptmx Key Stroke Timing Local Disclosure

No description provided by source. !/bin/bash ptmx-su-pwdlen.sh -- This PoC determine the password length of a local user who runs su -. Done thanks to the ptmx keystroke timing attack CVE-2013-0160. See http://vladz.devzero.fr/013ptmx-timing.php for more information. Tested on Debian 6.0.5 kerne...

Dev Web Management System 1.5 getfile.php cat Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16063/info Dev Web Management System is prone to multiple input validation vulnerabilities. These issues may allow SQL injection and cross-site scripting attacks. Dev Web Management System versions 1.5 and earlier are pro...

deV!Lz Clanportal [DZCP] <= 1.34 (id) Remote SQL Injection Exploit

No description provided by source. ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die oo error - cannot load curl extension!; function exploitheader echo...

Hanso Player 1.4.0 - (.m3u) Denial of Service Vulnerability

No description provided by source. =================================================== Hanso Player Version 1.4.0 .m3u Denial of Service Vulnerability =================================================== .....................X-SHADOW ; ThBa7 ; KloofQ8 ; LeGEnD ; abada...

[oss-security] CVE-2014-1739: Kernel Infoleak vulnerability in,media_enum_entities&#40;&#41;

Hi, We found an infoleak vulnerability in the ioctl mediaenumentities that allows to disclose 200 bytes the kernel process' stack. The vulnerability is exploitable on versions up to linux-3.15-rc3 by local users with read access to /dev/media0. Linux distributions ship with chmod 600 /dev/media0...

Debian Security Advisory DSA 2953-1 (dpkg - security update)

Multiple vulnerabilities were discovered in dpkg that allow file modification through path traversal when unpacking source packages with specially crafted patch files. This update had been scheduled before the end of security support for the oldstable distribution squeeze, hence an exception has...

D-Bus, GLib: Privilege escalation

Background D-Bus is a daemon providing a framework for applications to communicate with one another. GLib is a library providing a number of GNOME’s core objects and functions. Description When libdbus is used in a setuid program, a user can gain escalated privileges by leveraging the...