Toplist 2 SQL Injection / Backdoor Account / Shell Upload

============================================================================ | Title : toplist v 2 Backdoor account Vulnerability | | Author : indoushka | | email : [email protected] | | Tested on : windows 10 FranASSais V.Pro | | Version : v 2 | | Vendor : http://wmscripti.com | | Dork :...

Fedora 27 : fedpkg / rpkg (2017-9cac2b8b4a)

Update - Fixed chain-build - Remove hard dependency of bash-completion from fedpkg rpkg - Ignore TestModulesCli if openidc-client is unavailable cqi - Port mbs-build to rpkg mprahl - Add .vscode to .gitignore mprahl - Fix TestPatch.testrediff in order to run with old version of mock cqi - Allow t...

Citrix StoreFront 3.9 Unable to Refresh

Upgrading StoreFront from 3.6 to 3.9 works fine and when we open the Citrix StoreFront gives an error message:"unable to refresh" with error "A PowerShell SDK execution error occurred with exception thrown at defaultDocument"...

CVE-2017-1698

IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could reveal sensitive information from an error message that could lead to further attacks against the system. IBM X-Force ID: 124390...

CVE-2017-1698

IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could reveal sensitive information from an error message that could lead to further attacks against the system. IBM X-Force ID: 124390...

Information disclosure

IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could reveal sensitive information from an error message that could lead to further attacks against the system. IBM X-Force ID: 124390...

CVE-2017-1698

IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could reveal sensitive information from an error message that could lead to further attacks against the system. IBM X-Force ID: 124390...

CVE-2017-1698

CVE-2017-1698 affects IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0. The issue is information disclosure via error messages that could enable further attacks. The connected sources describe an information-disclosure vulnerability in WebSphere Portal and reference IBM’s advisory (X-Force ID 124390) ...

"An error occurred during the Create Store Wizard. Please check the log in Event Viewer and try again" While Creating Store

The objective of this article is to solve the issue with StoreFront no able to create Stores. Error Message: Here is the error message from event log which is received when trying to create new Store: System.UriFormatException: Invalid URI: The hostname could not be parsed. at...

IBM Insights Foundation for Energy Information Disclosure Vulnerability

IBM Insights Foundation for Energy is an energy analytics, data management and visualization software solution for utilities and energy companies. An information disclosure vulnerability exists in IBM Insights Foundation for Energy 2.0. An authenticated user can exploit the vulnerability to obtai...

WordPress: code.wordpress.net subdomain Takeover

Hy Wordpress sec i found as it is posible to takeover this domain http://code.wordpress.net when you navigate it you will get this error msg: Warning! Domain mapping upgrade for this domain not found. Please log in and go to the Domains Upgrades page of your blog to use this domain. $ host...

Jnes 1.0.2 - Stack Buffer Overflow

!/usr/bin/env python coding: utf-8 Exploit Title: Jnes Version 1.0.2 Stack Buffer Overflow Date: 3-11-2017 Exploit Author: crashmanucoot Contact: twitter.com/crashmanucoot Vendor Homepage: http://www.jabosoft.com/home Software Link: http://www.jabosoft.com/categories/3 Version: v1.0.2.15 Tested o...

International Islamic University Chittagong: XSS Via error message

Hi Team, found xss via error message. PoC: Navigate to http://119.18.148.140/hrd/login.php?error=%3Cscript%3Econfirm1%3C/script%3E%20ID%20or%20Password%20does%20not%20find. Regards, Mr.R3boot...

Mavenlink: [app.mavenlink.com] IDOR to view sensitive information

The researcher found an IDOR that when exploited would result in an error message that was too verbose. The verbose error message included the title of the workspace that the user was attempting to access and being denied persmission to...

CVE-2017-15651

PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message...

CVE-2017-15651

PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message...

Boozt Fashion AB: Users Unable to login using Gmail/Facebook on https://boozt-stage1.booztx.com/login

Hi Team, when i try to login in this subdomainhttps://boozt-stage1.booztx.com/login using gmail or facebook,the login form does not redirect me to gmail/facebook,it is giving the error message since it is blacklisted by the server. Steps to Reproduce: 1 Goto https://boozt-stage1.booztx.com/login ...

"Unexpected error from external database driver" error when you create or open Microsoft Excel .xls files

"Unexpected error from external database driver" error when you create or open Microsoft Excel .xls files Summary This security update resolves an issue that was introduced in the October 10, 2017, update. Because of this issue, applications that are based on the Microsoft JET Database Engine...

MAM Enrollment failing with Error Message"Request Failed"

You will see the following error messages in the Secure Hub Logs: 2016-09-06T22:55:17.691+0400INFO 4called for store with error Error Domain=com.citrix.Receiver.AuthManager Code=6 "CAMAuthManErrorCodeOutOfLicences" UserInfo=com.citrix.Receiver.AuthManager.DiagnosticDescription=The gateway is out ...

CVE-2017-14772

The CVE-2017-14772 entry concerns Skybox Manager Client Application. It describes a local, unauthenticated information-disclosure issue where an attacker can enumerate valid usernames by analyzing error messages during login attempts. The root cause is information leakage via login error handling...