210 matches found
Blog Torrent preview 0.8 - arbitary file download
Intro ----- Blogtorrent is a collection of PHP scripts which are designed to make it simple to host files for transfer via bittorrent. Whilst it is not normal to report security problems in "preview" releases of software this software was covered prominently upon Slashdot and could be widely used...
technote-commandexec.txt
Technote Command Excution Technote Inc. from Korea offers a Site Package which includes a web board. Previous exploit discovered way back on year 2000 focused on a File Disclosure Vulnerability http://www.securityfocus.com/bid/2156/discussion/ However, command execution is also possible using the...
phpWebSite 0.7.30.8.x0.9.3 - User Module HTTP Response Splitting
phpWebSite 0.7.30.8.x0.9.3 - User Module HTTP Response Splitting source: https://www.securityfocus.com/bid/11673/info A remote HTTP response splitting vulnerability reportedly affects phpWebSite in its user module. This issue is due to a failure of the application to properly sanitize user-suppli...
libxml 2.6.12 nanoftp - Local Buffer Overflow
/ libxml 2.6.12 nanoftp bof POC infamous42mdAThotpopDOTcom n00b localho outernet gcc -Wall libsuxml.c -lxml2 n00b localho outernet ./a.out Usage: ./a.out align n00b localho outernet netstat -ant | grep 7000 n00b localho outernet ./a.out 0xbfff0360 xmlNanoFTPScanURL: Use IPv6/IPv4 format n00b...
Multiple vulnerabilities in BlackBoard
Multiple vulnerabilities in BlackBoard AuThor:Cracklove emA!l:CrackloveatGmaildotCom HoMePaGe:http://ProxySky.com Info Website: http://blackboard.unclassified.de Version: 1.5.1,Maybe prior Problem: Full path disclosure,Include file Vuls 1.Full path disclosure: Let's try to request like this:...
Zinf 2.2.1 Local Buffer Overflow Exploit
No description provided by source. / -------------------------------Advisory---------------------------------- Luigi Auriemma aluigiaaaattttttautisticiD000torg I don't know why this bug has not been tracked but moreover I don't completely know why it has not been fixed yet in the Windows version ...
MacOSXLabs RsyncX 2.1 - Local Privilege Escalation
source: https://www.securityfocus.com/bid/11211/info It is reported that RsyncX is prone to a local privilege escalation vulnerability. RsyncX is installed setuid root and setgid wheel. It is reported that RsyncX drops root privileges properly but fails to drop setgid wheel privileges before...
RiSearch 0.99 /RiSearch Pro 3.2.6 - show.pl Arbitrary File Access
source: https://www.securityfocus.com/bid/10812/info RiSearch and RiSearch Pro are reported prone to an open proxy vulnerability. It is reported that the issue presents itself due to a lack of sufficient sanitization performed on user supplied URI parameters. A remote attacker may exploit this...
Microsoft Outlook Express - JavaScript Execution
Microsoft Outlook Express - JavaScript Execution From: To: Subject:MSOE Scripting Example Content-Type:text/html click here to test milw0rm.com 2004-07-13...
Coppermine Photo Gallery 1.2.0 RC4 - init.inc.php Remote File Inclusion
Coppermine Photo Gallery 1.2.0 RC4 - init.inc.php Remote File Inclusion source: https://www.securityfocus.com/bid/10253/info Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution. These issues occur because t...
phpBBmod.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --====----====----====----====----====----====----====----====----====----===-- Product: phpBB modified by Przemo Version: v1.8 Vendor: http://przemo.org/phpBB2/ Discover by: Officerrr Vendor Response: Not contacted yet... Severity: Medium arbitary...
AllMyVisitors.txt
AllMyVisitors PHP Code Injection vulnerability Product : AllMyVisitors Vendor : www.php-resource.net Date : February 14, 2004 Problem : PHP Code Injection Vendor Contacted ? : No Source in /include/info.inc.php -------------------------------------------------------------- $AMVinfoget =...
Arbitrary File Disclosure Vulnerability in phpMyAdmin 2.5.5-pl1 and prior
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Arbitrary File Disclosure Vulnerability in phpMyAdmin 2.5.5-pl1 and prior Summary : phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the WWW. There is a vulnerability in the current stable version of phpMyAdmin...
Niti Telecom Caravan Business Server 2.00-03D - Directory Traversal
source: https://www.securityfocus.com/bid/9555/info The showcode.asp script activated in Sampleshowcode.html may be vulnerable to a directory traversal issue. A remote attacker may view any files readable by the web server using '../' escape sequences in URI requests...
Hand-Crafted Software FreeProxy 3.53.6 - FreeWeb Directory Traversal
Hand-Crafted Software FreeProxy 3.53.6 - FreeWeb Directory Traversal source: https://www.securityfocus.com/bid/9388/info It has been reported that FreeWeb server of FreeProxy may be prone to a directory traversal vulnerability that may allow a remote attacker to access information outside the...
cgi bugs
Автор эксплоита x64rst email: [email protected] Имя скрипта: Manlix SW GuestBook Версия скрипта: 0.5 Страница: http://manliks.ru/manlix -------------Межсайтовый скриптинг--------------- -------------XXS--------------------------------- скрипт mnlxswgb.php недостаточно фильтрует переменные ip,admin.В...
Mambo Open Source 4.0.14 Server - SQL Injection
source: https://www.securityfocus.com/bid/9196/info It has bee reported that Mambo Open Source 4.0.14 Server is prone to SQL injection attacks. The problem is said to occur due to insufficient sanitization of data passed to specific index.php variables. As a result, an attacker may be capable of...
Cross Site Scripting in VP-ASP
Advisory Name: Cross Site Scripting in VP-ASP Release Date: December 05st, 2003 Application: VP-ASP Version Affected: 4.50 Platform: ASP Severity: Low Discover: Xnuxer Research Lab. [email protected], [email protected] Vendor URL: http://www.vp-asp.com Reference: http://infosekuriti.com Proof Of...
DeskPro 1.1 - Multiple SQL Injections
DeskPro 1.1 - Multiple SQL Injections source: https://www.securityfocus.com/bid/8856/info It has been reported that DeskPro is prone to multiple SQL injection vulnerabilities due to insufficient sanitization of user-supplied input. The problem is reported to be present in various parameters such ...
Batalla Naval 1.0 4 - Remote Buffer Overflow (1)
source: https://www.securityfocus.com/bid/7699/info Batalla Naval is prone to a remotely exploitable buffer overflow when handling requests of excessive length. This could allow for execution of malicious instructions in the context of the game server. !/usr/bin/perl Priv8security.com remote...