Home FTP Server 'MKD' Command Directory Traversal Vulnerability

Home FTP Server is prone to a directory traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Adobe Acrobat Reader Arbitrary Dereference Proof Of Concept

Felipe Andres Manzano [email protected] http://twitter/feliam doc=''' Title: U3D CLODProgressiveMeshContinuation Split Position Index arbitrary dereference. Product: Adobe Acrobat Reader Version: =8.1.6, =9.1.3 Product Homepage: www.adobe.com CVE: 2009-2990 OSs: WinXPSPx/Linux...

Oracle Database Server SQL Query Directory Traversal (CVE-2005-0701)

The Oracle UTLFILE package is a set of PL/SQL procedures that allow a database user to manipulate files on the server. Supported operations include: read, write, rename, and remove. The files that are available to users are restricted to directories that have been specified in the utlfiledir...

Mozilla NSS - NULL Character CA SSL Certificate Validation Security Bypass

Mozilla NSS - NULL Character CA SSL Certificate Validation Security Bypass source: https://www.securityfocus.com/bid/35888/info Mozilla Network Security Services NSS is prone to a security-bypass vulnerability because it fails to properly validate the domain name in a signed CA certificate,...

Adobe Reader Acrobat - .U3D File Invalid Array Index Overflow

Adobe Reader Acrobat - .U3D File Invalid Array Index Overflow Felipe Andres Manzano [email protected] http://twitter/feliam doc=''' Title: U3D CLODProgressiveMeshContinuation Split Position Index arbitrary dereference. Product: Adobe Acrobat Reader Version: =8.1.6, =9.1.3 Product...

Omni-NFS Multiple Stack Buffer Overflow Vulnerabilities

Omni-NFS is prone to multiple stack-based buffer-overflow vulnerabilities because the application fails to properly bounds-check user-supplied network data before copying it into an insufficiently sized memory buffer. The issues affect both server and client. Exploiting these issues allows...

PHP168 Template Editor - 'Filename' Directory Traversal

source: https://www.securityfocus.com/bid/42174/info PHP168 Template Editor is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting the issue may allow an attacker to read and overwrite arbitrary files in the context of the...

Check Point response to Phrack article "Exploiting TCP Persist Timer Infiniteness" (CVE-2009-1926, VU#723308)

...

Tukanas Classifieds 1.0 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/43337/info Tukanas Classifieds is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

Squid Multiple Remote Denial of Service Vulnerabilities

Squid is prone to multiple remote denial-of-service vulnerabilities. Successfully exploiting these issues allow remote attackers to crash the affected application, denying further service to legitimate users. This issue affects Squid 3.0.STABLE16, 3.1.0.11 and prior versions. OpenVAS Vulnerabilit...

Snitz Forums 2000 'register.asp' SQL Injection Vulnerability

Snitz Forums 2000 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Mozilla Firefox 3.5 - Font tags Remote HeapSpray (2)

Mozilla Firefox 3.5 - Font tags Remote HeapSpray 2 FireFox 3.5 Heap Spray Discovered by: Simon Berry-Bryne Coded in Perl by netsoul, ALTO PARANA - Paraguay Contact: netsoul2 at gmail dot com !/usr/bin/perl -w use strict; use POE::Component::Server::HTTP; POE::Component::Server::HTTP-newPort = my...

Almnzm 2.0 - Blind SQL Injection

?php iniset"maxexecutiontime",0; printr' || || | || o,7 || . o7 || q||| o///, : / / . /QQQQQQQQQQQQQQQQQQQ\ q Almnzm 2.0 Blind SQL Inj. /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ q Cookie 3 /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ q http://www.almnzm.com |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ| |QQQQ| From Kuwait, PEACE...

Internet Explorer 7/8 Cross Site Scripting

Multiple Exploiting IE8/IE7 XSS Vulnerability Author: www.80vul.com Email:5up3rh3igmail.com Release Date: 2009/06/22 References: http://www.80vul.com/ie8/Multiple%20Exploiting%20IE8IE7%20XSS%20Vulnerability.txt Overview: Tagsnot include in ie7/8 are don't allowe to run "javascript:jscodz",but we...

FireStats 'firestats-wordpress.php' Remote File Include Vulnerability

FireStats is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible. FireStats 1.6.1 is vulnerable; prior versio...

phpBugTracker <= 1.0.4 SQLi Vulnerability

phpBugTracker is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

PHP 5.3.2 - &#039;xml_utf8_decode()&#039; UTF-8 Input Validation

source: https://www.securityfocus.com/bid/44605/info PHP is prone to a vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow attackers to provide unexpected input and possibly bypass input-validation protection mechanisms. This can aid in...

Address Book 2.5 Shell Upload

Address Book 2.5 profile Remote Shell Upload Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://www.studiolounge.net/2007/08/17/address-book-25 - vuln file: upload-file.php The upload-file.php...

ASP Product Catalog 1.0 - Cross-Site Scripting File Disclosure

ASP Product Catalog 1.0 - Cross-Site Scripting File Disclosure !/usr/bin/perl By AlpHaNiX NullArea.Net alphaathacker.bz Made in Tunisia script : ASP Product Catalog Multiple Remote Exploits download : http://sourceforge.net/project/showfiles.php?groupid=136315 script homepage :...

w3bcms Gaestebuch 3.0.0 Blind SQL Injection Exploit

Exploit for unknown platform in category web applications =================================================== w3bcms Gaestebuch 3.0.0 Blind SQL Injection Exploit =================================================== !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwPOST; use...