210 matches found
Allaire ColdFusion Server <= 4.0 - Remote File Display, Deletion, Upload and Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/115/info To display and delete any file on the system use an URL of the following form: http://www.victim.test/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=C:\the\target\file To upload files to the sever first find out the...
RunCMS 1.6 - Remote Blind SQL Injection Exploit (IDS evasion)
No description provided by source. // / RUNCMS 1.6 BLIND SQL Injection Exploit + IDS evasion / // / exploit get hash of admin password / / / / Exploit is invisible for / / RUNCMS sql injection detecting mechanism / // // / tested on RUNCMS english version 1.6 / // // / Date of Public EXPLOIT:...
Drupal < 4.7.6 - (post comments) Remote Command Execution Exploit (2)
No description provided by source. !/usr/bin/perl $Id: milw0rmdrupalv4.pl,v 0.2 2007/02/15 13:28:29 str0ke Exp $ milw0rmdrupalv4.pl - Drupal 4.7.6 Remote Command Execution Exploit Copyright c 2007 str0ke str0ke!milw0rm.com Description ----------- Previews on comments were not passed through norma...
YourArcadeScript 2.0b1 - Blind SQL Injection
No description provided by source. !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwPOST; use Getopt::Long; '/ -.- ------------------oOO------OOo----------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Research...
Invision Power Board Army System Mod 2.1 - SQL Injection Exploit
No description provided by source. ?php / --------------------------- EXPLOIT --------------------------- Invision Power Board Army System Mod 2.1 SQL Injection Exploit Tested on: Latest version 2.1.0 Discovered on: 06.02.2006 by Alex & fRoGGz Credits to: SecuBox Labs PLEASE READ THIS ! The query...
E-commerce Group (cat.php) SQL Injection Vulnerability
No description provided by source. Exploit Title: E-commerce Group cat.php SQL Injection Vulnerability Date: 2010/05/21 Author:BLack Revenge Software Link: Version: Tested on: CVE : ============================== E-commerce Group cat.php SQL Injection Vulnerability Founder: BLaCk RevenGe Email:-...
Bs Auction Script SQL Injection Vulnerability
No description provided by source. 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Bs Auction Script Sqli Vulnerability Date : july 5,2010 Critical Level : HIGH vendor URL :http://www.brotherscripts.com/...
IISWorks FileMan fileman.mdb Remote User Database Disclosure
No description provided by source. Exploit Title: IISWorks FileMan fileman.mdb Remote User Database Disclosure Disclosure Date: July 5, 2005 Author: Known Vulnerability Software Link: http://www.scriptdungeon.com/scripts/asp/FileManASP.rar Version: OSVDB: 17824 Security Tracker ID: 1014383 Found...
Inkscape 0.41/0.42 SVG Image Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15507/info Inkscape is prone to a buffer overflow vulnerability. This issue is due to a failure in the application to do proper bounds checking on user-supplied data before copying it into a finite sized buffer. When the...
Feixun Wireless Router FWR-604H - Remote Code Execution Exploit
No description provided by source. Exploit Title: Feixun FWR-604H Wireless Router Remote Code Execution Date: 2014-01-09 Exploit Author: Arash Abedian http://www.exploit-db.com/author/?a=6187http://www.exploit-db.com/author/?a=6187 Vendor Homepage: http://feixun.com.cn Version: Hardware Version...
WikiWebHelp 0.3.3 - Cross-Site Request Forgery Vulnerability
No description provided by source. Blog: yoyahack.blogspot.com Site: foro.undersecurity.net Mail: [email protected] CMS: WikiWebHelp The entire system is vulnerable to CSRF Cross-site request forgery since this does not include a system to prevent CSRF attacks ... Example Change the...
Apple QuickTime 6.4/6.5/7.0.x PictureViewer JPEG/PICT File Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16212/info Apple QuickTime is prone to a buffer-overflow vulnerability because the application fails to do proper bounds checking on user-supplied data before copying it to finite-sized process buffers. An attacker may be...
LibTiff 3.x TIFFFetchData Integer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17732/info Applications using the LibTIFF library are prone to an integer-overflow vulnerability. An attacker could exploit this vulnerability to execute arbitrary code in the context of the vulnerable application that us...
Acritum Femitter Server 1.03 - Multiple Vulnerabilities
No description provided by source. --= Tested on: XP sp 2 Acritum Femitter Server v1.03 is a HTTP and FTP Server for Windows. I came up with few vulnerabilities of this .. some vulns are already has been revelied but some are not so lets have a look HTTP Server ----------- In the Femitter Server...
ICOMM 610 Wireless Modem - CSRF Vulnerability
Exploit for hardware platform in category web applications Exploit Title : ICOMM 610 Wireless Modem CSRF Vulnerability Google dork : N/A Date : 02/04/2014 Exploit Author : Blessen Thomas Vendor Homepage : http://www.icommtele.com/ Software Link : N/A Version : ICOMM 610 Tested on : Device softwar...
HP Data Protector Backup Client Service Remote Code Execution Exploit
Exploit for windows platform in category remote exploits require 'msf/core' class Metasploit3 'HP Data Protector Backup Client Service Remote Code Execution', 'Description' = %q This module abuses the Backup Client Service OmniInet.exe to achieve remote code execution. The vulnerability exists in...
Windows Error Reporting Used to Find Advanced Exploits
Windows Error Reporting, also known as Dr. Watson reports, are Windows crash reports sent by default unencrypted to Microsoft, which uses them to fix bugs. The reports are rich with system data that Microsoft also uses to enhance user interaction with its products. Since, however, they are sent i...
建站之星后台任意文件读取
简要描述: 下载官方最新安装包,并去官方论坛打上了所有补丁。 详细说明: 访问:http:/target/sitestar/admin/index.php?m=../../robots.txt%00&a=adminadd robots.txt是系统自带,虽然是后台文件,但是其实无需管理员权限即可访问 如图: win下:http://target/sitestar/admin/index.php?m=../../../../../../../../../../windows/win.ini%00.jpg&a=adminadd...
Mybb Ajaxfs Plugin Sql Injection vulnerability
Sql Injection vulnerability In Mybb Ajaxfs Plugin @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@ @@@ @@...
[ThreatFactor NSIA v1.0.6] Network System Integrity Analysis
ThreatFactor NSIA is a website scanner that monitors websites in real-time in order to detect defacements, compliance violations, exploits, sensitive information disclosure and other issues. ThreatFactor detects issues remotely and therefore requires no software to install, does not introduce any...