Joomla! Component File Download Tracker 3.0 - SQL Injection

Exploit Title: Joomla! Component File Download Tracker 3.0 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: http://techsolsystem.com/ Software Link: https://extensions.joomla.org/extensions/extension/directory-a-documentation/downloads/file-download-tracker/ Version: 3.0 Category:...

Security Flaw in Mac Safari Remains Unfixed for Two Years, Experts Concerned

Two years after fixing a security bug in the Windows version of its Safari browser, Apple apparently has decided that Mac users can go without a fix. Apple was initially unimpressed by Nitesh Dhanjani’s work developing what’s known as a “carpet bomb” attack, the security researcher said in an...

CVE-2010-2253

lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . dot character, which allows remote servers to create or overwrite files via 1 a 3xx redirect to a URL with a crafted filename or 2 a Content-Disposition header that suggests a crafted filename, and...

MP4 Player 4.0 - Local Crash (PoC)

MP4 Player 4.0 - Local Crash PoC !usr/bin/perl Exploits title :MP4 Player 4.0 Local Crash Poc Date : 2010/01/02 Aouther : SarBoT511 downloads :http://mp4-player.ivefound.com tested on :win xp sp2 MP4 Player 4.0 Greatz 2 : aB0 M0haM3d and lezr crew $file="SarBoT511.m4v"; $boom="A" x 2000;...