AzDGDatingMedium 1.9.3 'l' Parameter Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/37514/info Azerbaijan Development AzDGDatingMedium is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issue...

Development Site Professional Liberal - Company Institutional SQL Injection Vulnerability

No description provided by source...

User-Mode Linux Kernel 2.4.17 -8 Memory Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3973/info User-Mode Linux UML is a patch which allows the Linux Kernel to run as a user space process. It is currently available for the Linux operating system. It may be used as an efficient tool for kernel development, ...

EZHomeTech EzServer <= 6.4.017 Stack Buffer Overflow Vulnerability

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

FreeBSD LiteSpeed Web Server 4.0.17 with PHP - Remote Exploit

No description provided by source. LiteSpeed Web Server 4.0.17 w/ PHP Remote Exploit for FreeBSD bug discovered & exploited by Kingcope Dec 2010 Lame Xploit Tested with success on FreeBSD 8.0-RELEASE - LiteSpeed WebServer 4.0.17 Standard & Enterprise x86 FreeBSD 6.3-RELEASE - LiteSpeed WebServer...

Hycus CMS Multiple Vulnerabilities

No description provided by source. Vulnerability ID: HTB22737 Reference: http://www.htbridge.ch/advisory/lfiinhycuscms.html Product: Hycus CMS Vendor: Hycus Web Development Team http://www.hycus.com/ Vulnerable Version: 1.0.3 Vendor Notification: 07 December 2010 Vulnerability Type: LFI Status: N...

Kreed <= 1.05 Format String and Denial of Service Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h / Read/Write bits to buffer 0.1.1 by Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org max 32 bits numbers supported from 0 to 4294967295. Probabl...

cPanel 5.0 Guestbook.cgi Remote Command Execution Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/6882/info A remote command execution vulnerability has been discovered in the cPanel CGI Application. This issue occurs due to insufficient sanitization of externally supplied data to the 'guestbook.cgi' script. An attack...

Blue Dove SQL Injection Vulnerability

No description provided by source. .:. Author : HackXBack [email protected] .:. Team : Sec Attack Team .:. Home : www.sec-attack.com/vb .:. Script : Blue Dove Word Press Development .:. Bug Type : Sql Injection .:. Dork : powered by Blue Dove Web Design === Exploit ===...

Pi3Web 2.0.2 SortName Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7787/info Pi3Web is prone to a buffer overflow vulnerability. This is due to insufficient bounds checking of URI parameters. This could be exploited to cause a denial of service or possibly to execute malicious...

PHPSelect Web Development Index.PHP3 Remote File Include Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class PHPSelectWebDevelopmentRemoteFileIncludePOCBase: vulID = '82263' version = '1' vulDate = '2006-09-27'...

Qcodo Development Framework 0.3.3 Full Info Disclosure

No description provided by source...

RechnungsZentrale V2 <= 1.1.3 - Remote Inclusion Vulnerability

No description provided by source. - GroundZero Security Research and Software Development 2006 - Software: RechnungsZentrale V2 Version: 1.1.3, likely older versions are affected aswell. Vendor: http://www.nfec.de/ Remote Inclusion:...

MSN Messenger 6.2.0137 PNG Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12506/info A remotely exploitable buffer overflow exists in MSN Messenger and Windows Messenger. This vulnerability is related to parsing of Portable Network Graphics PNG image header data. Successful exploitation will...

Omnis Studio 2.4 Weak Database Field Encryption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1255/info Omnis Studio 2.4 is a development tool for creating database applications. The tool gives developers the option to encrypt database entries. However, the encryption scheme used is weak and easily broken with any...

chillyCMS 1.3.0 - Multiple Vulnerabilities

No description provided by source. Exploit Title: chillyCMS 1.3.0 Multiple Vulnerabilities Google Dork: powered by chillyCMS Date: 15 February 2013 Exploit Author: Abhi M Balakrishnan Vendor Homepage: http://chillycms.bplaced.net/ Software Link:...

Twilight WebServer 1.3.3 .0 GET Request Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8181/info It has been reported that Twilight WebServer may be prone to a remote buffer overflow vulnerability. The problem may be present due to a lack of bounds checking performed on incoming GET requests. Arbitrary code...

Internet Bug Bounty: SPL ArrayObject/SPLObjectStorage Unserialization Type Confusion Vulnerabilities

This vulnerability was reported directly to the PHP development team. A detailed summary is available here: https://www.sektioneins.de/en/blog/14-08-27-unserialize-typeconfusion.html...

[SECURITY] Fedora 20 Update: php-5.5.13-3.fc20

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

openSUSE Security Update : mozilla-js192 (mozilla-js192-4460)

Mozilla XULRunner 1.9.2 was updated to the 1.9.2.17 security release. MFSA 2011-12: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain...