YaCOMAS 0.3.6 Alpha Multiple Vulnerabilities

Exploit for php platform in category web applications Software: Yacomas 0.3.6 Vendor: http://yacomas.sourceforge.net/ Vuln Type: Multiple Vulnerability Download link: http://patux.net/downloads/yacomas-0.3.6alpha.tar.gz Author: email protected X contact: profesorxatotmail.com Home: www.ccat.edu.m...

Energine 2.3.8 Multiple Vulnerabilities

Exploit for php platform in category web applications Product: Energine Vulnerable Version: 2.3.8 and probably prior versions Vendor Notification: 28 December 2010 Vulnerability Type: SQL Injection Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level: Medium Credit: High-Tech...

MyBB 1.6 Path Disclosure

Vulnerability ID: HTB22654 Reference: http://www.htbridge.ch/advisory/pathdisclosureinmybb.html Product: MyBB Vendor: MyBB http://www.mybb.com Vulnerable Version: 1.6 Vendor Notification: 13 October 2010 Vulnerability Type: Path disclosure Status: Not Fixed, Vendor Alerted, Awaiting Vendor Respon...

Magnoware DataTrack System Information Disclosure

The installed version of Magnoware DataTrack System is affected by an information disclosure vulnerability. By appending a backslash '' to a web request, it is possible for an attacker to view pages that require authorization. Although Nessus has not checked for them, the installed version is als...

Interspire Shopping Cart - Full Path Disclosure

Interspire Shopping Cart - Full Path Disclosure Exploit Title: Interspire Shopping Cart Full Path Disclosure Date: 13-12-2009 Author: Mr.aFiR Software Link: http://www.interspire.com/ Version: N/A Tested on: GNU/LINUX CVE : N/A Code : N/A / \ / \ / \ | | |/ | | | Y Y | V\ / Y| || |/ / A ||| \ | |...

iNTERNET.cms Cross-Site Scripting vulnerability

---------------------------------------------------------------------- PT-2009-22 Positive Technologies Security Advisory EXcms Root directory disclosure vulnerability ---------------------------------------------------------------------- --- Affected Software EXcms Versions prior to 2.02 Product...

EXcms Root directory disclosure vulnerability

---------------------------------------------------------------------- PT-2009-22 Positive Technologies Security Advisory EXcms Root directory disclosure vulnerability ---------------------------------------------------------------------- --- Affected Software EXcms Versions prior to 2.02 Product...

Project CMS 1.1 Beta Shell Upload

------------------------------------------------------------ MULTPLE REMOTE VULNERABILITIES --ProjectCMS v-1.1 Beta-- ------------------------------------------------------------ CMS INFORMATION: --WEB: http://projectcms.org/ --DOWNLOAD: http://projectcms.org/uploads/projectcms1.1BETA.zip --DEMO:...

ProjectCMS 1.1b Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =============================================== ProjectCMS 1.1b Multiple Remote Vulnerabilities =============================================== ---------------------------------------------------------------------------------------------- ...

CVE-2009-1332

The Online Help feature in Sun Java System Directory Server 5.2 and Enterprise Edition 5 allows remote attackers to determine the existence of files and directories, and possibly obtain partial contents of files, via unspecified vectors...

PT-2009-22: EXcms Root directory disclosure vulnerability

EXcms is a content management system CMS software, usually implemented as a Web application, for creating and managing HTML content. It is used to manage and control a large, dynamic collection of Web material HTML documents and their associated images. Vulnerability Description Positive...

jbook-disclosesql.txt

--------------------------------------------------------- Portal Name: Jbook Download : http://www.planet-source-code.com/vb/scripts/ShowCode.asp?lngWId=4&txtCodeId=6258 Author : PouyaServer , [email protected] Vulnerability : SQL,DD ---------------------------------------------------------...

Aardvark Topsites PHP Directory Disclosure Vulnerability

Aardvark Topsites PHP Directory Disclosure Vulnerability Aardvark Topsites PHP is the premier free PHP/MySQL topsites script. An attacker can see what files are in the Directory. Knowing what is there to be executed can allow for more targeted and intelligent attacks against PHP Files known to be...

Host directory full disclosure and input error

Host directory is a product of scriptsfrenzy.com and alstrasoft.com I check lastest version and maybe infected lower versions. I contacted vendor 5 times in 2 months but not received any replies. - FullPath disclosure: http://site.ext/path/ANYINCORRECTLINK Warning:...

[RLSA_02-2006] OSU httpd for OpenVMS path and directory disclosure - is this a bug or a feature?

rfdslabs security advisory Title: OSU httpd for OpenVMS path and directory disclosure - is this a bug or a feature? RLSA02-2006 Versions: OSU/3.11alhpa, OSU/3.10a probably others Vendor: David Jones, Ohio State University http://www.ecr6.ohio-state.edu/www/doc/serverinfo.html Date: 18 May 2006...

Multiple OSU httpd security vulnerabilities

Physical path and directory content disclosure...

OSU HTTP Server 3.10/3.11 - Multiple Information Disclosure Vulnerabilities

source: https://www.securityfocus.com/bid/20098/info OSU Ohio State University HTTP server is prone to multiple information-disclosure vulnerabilities. This may allow a malicious user to gain access to sensitive data; information gained may aid in further attacks. Versions 3.11a and 3.10a are...

gphotos.txt

Details The first vulnerability issue is due to an input validation error in "index.php" "diapo.php" and "affich.php" scripts that do not validate "rep","image" variables, which may be exploited to cross site scripting attacks. http://traget/index.php?rep=xss http://traget/diapo.php?rep=xss...

Dovecot IMAP: Mailbox names list disclosure with mboxes

Giving "1 LIST .. " IMAP command allows the user to see all files and directories under the mbox root's parent directory, so potentially you could see other users' mailbox names. Nothing can be done with them though, so it's not possible to read or modify them. There are also some other less than...

Vulnerabilities in lifetype

k k kkkk kk kkkk k k kkkkkk kkkkkk kkkk k k k k k k k k k k k k k k kk k k k k kk k k k k kk kkkkk k kkkkk kk kk kkkkkk k k k k k k kk k k k k k k k kk k k k k k k k k k k k k kkkk kk kkkk k k kk k k kkkk k kk k k k =- Vulnerabilities in Lifetype Author : Rusydi Hasan M a.k.a : cR45H3R Date :...