26 matches found
Snorby 2.6.2 - Stored Cross-site Scripting Vulnerability
-------------------------------------------------------- Snorby 2.6.2 - Stored Cross-site Scripting Vulnerability -------------------------------------------------------- Vendor ------ https://www.snorby.org/ Version ------- 2.6.2 Description ----------- During my research and testing of new IDS...
Php Blue Dragon CMS <= 2.9.1 (template.php) File Include Vulnerability
No description provided by source. ----------------------------------------------------- Advisory id: FSA:015 Author: Federico Fazzi Date: 14/06/2006, 18:20 Sinthesis: PhpBlueDragon CMS 2.9.1, File inclusion vulnerability Type: high Product: http://phpbluedragon.net/ Patch: unavailable...
FSA-016.txt
----------------------------------------------------- Advisory id: FSA:016 Author: Federico Fazzi Date: 14/06/2006, 18:57 Sinthesis: ISPConfig 2.2.3, File inclusion vulnerability Type: high Product: http://www.ispconfig.org/ Patch: unavailable -----------------------------------------------------...
PhpBlueDragon CMS 2.9.1, File inclusion vulnerability
----------------------------------------------------- Advisory id: FSA:015 Author: Federico Fazzi Date: 14/06/2006, 18:20 Sinthesis: PhpBlueDragon CMS 2.9.1, File inclusion vulnerability Type: high Product: http://phpbluedragon.net/ Patch: unavailable...
Php Blue Dragon CMS <= 2.9.1 (template.php) File Include Vulnerability
Exploit for unknown platform in category web applications ====================================================================== Php Blue Dragon CMS = 2.9.1 template.php File Include Vulnerability ======================================================================...
PHP Blue Dragon CMS 2.9.1 - template.php File Inclusion
PHP Blue Dragon CMS 2.9.1 - template.php File Inclusion ----------------------------------------------------- Advisory id: FSA:015 Author: Federico Fazzi Date: 14/06/2006, 18:20 Sinthesis: PhpBlueDragon CMS 2.9.1, File inclusion vulnerability Type: high Product: http://phpbluedragon.net/ Patch:...
PHP Blue Dragon CMS 2.9.1 - 'template.php' File Inclusion
----------------------------------------------------- Advisory id: FSA:015 Author: Federico Fazzi Date: 14/06/2006, 18:20 Sinthesis: PhpBlueDragon CMS 2.9.1, File inclusion vulnerability Type: high Product: http://phpbluedragon.net/ Patch: unavailable...
AWF CMS 1.11, Remote command execution
----------------------------------------------------- Advisory id: FSA:011 Author: Federico Fazzi Date: 11/06/2006, 22:30 Sinthesis: AWF CMS 1.11, Remote command execution Type: high Product: http://www.awf-cms.org/ Patch: unavailable ----------------------------------------------------- 1...
f_mg-2.62.py.txt
!/usr/bin/env python MiraksGalerie Federico Fazzi more info see advisory. need registerglobal = On import os, sys, socket usage = "run: python %s remoteaddr remoteport remotepath remotecmd " % os.path.basenamesys.argv0 if lensys.argv \n" includers = 'pcltar.lib.php?gpcltarlibdr=',...
Back-end0721.txt
/ Federico Fazzi, / Back-end = 0.7.2.1 jpcache.php Remote command execution / 08/06/2006 1:04 Bug: jpcache.php: line 40 --- $includedir = $PSL'classdir' . "/jpcache"; --- Proof of concept: Back-end have a default path pre-set on jpcache.php, and cracker can execute a remote command...
f_dp-6.1.x.txt
----------------------------------------------------- Advisory id: FSA:013 Author: Federico Fazzi Date: 12/06/2006, 9:31 Sinthesis: DCP-Portal 6.1.x, Remote command execution Type: high Product: http://www.dcp-portal.org/ Patch: unavailable ----------------------------------------------------- 1...
Content-Builder (CMS) 0.7.5, Remote command execution
----------------------------------------------------- Advisory id: FSA:012 Author: Federico Fazzi Date: 11/06/2006, 22:30 Sinthesis: Content-Builder CMS 0.7.5, Remote command execution Type: high Product: http://www.content-builder.de/ Patch: unavailable...
DCP-Portal 6.1.x (root) Remote File Include Vulnerability
No description provided by source. ----------------------------------------------------- Advisory id: FSA:013 Author: Federico Fazzi Date: 12/06/2006, 9:31 Sinthesis: DCP-Portal 6.1.x, Remote command execution Type: high Product: http://www.dcp-portal.org/ Patch: unavailable...
f_cbc-0.7.5.txt
----------------------------------------------------- Advisory id: FSA:012 Author: Federico Fazzi Date: 11/06/2006, 22:30 Sinthesis: Content-Builder CMS 0.7.5, Remote command execution Type: high Product: http://www.content-builder.de/ Patch: unavailable...
AWF CMS 1.11 (spaw_root) Remote File Include Vulnerability
No description provided by source. ----------------------------------------------------- Advisory id: FSA:011 Author: Federico Fazzi Date: 11/06/2006, 22:30 Sinthesis: AWF CMS 1.11, Remote command execution Type: high Product: http://www.awf-cms.org/ Patch: unavailable...
Content-Builder (CMS) 0.7.5 - Multiple Include Vulnerabilities
Content-Builder CMS 0.7.5 - Multiple Include Vulnerabilities ----------------------------------------------------- Advisory id: FSA:012 Author: Federico Fazzi Date: 11/06/2006, 22:30 Sinthesis: Content-Builder CMS 0.7.5, Remote command execution Type: high Product: http://www.content-builder.de/...
AWF CMS 1.11 (spaw_root) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ========================================================== AWF CMS 1.11 spawroot Remote File Include Vulnerability ========================================================== ----------------------------------------------------- Advisory id...
AWF CMS 1.11 - 'spaw_root' Remote File Inclusion
----------------------------------------------------- Advisory id: FSA:011 Author: Federico Fazzi Date: 11/06/2006, 22:30 Sinthesis: AWF CMS 1.11, Remote command execution Type: high Product: http://www.awf-cms.org/ Patch: unavailable ----------------------------------------------------- 1...
Content-Builder (CMS) 0.7.5 - Multiple Include Vulnerabilities
----------------------------------------------------- Advisory id: FSA:012 Author: Federico Fazzi Date: 11/06/2006, 22:30 Sinthesis: Content-Builder CMS 0.7.5, Remote command execution Type: high Product: http://www.content-builder.de/ Patch: unavailable...
MyServer-0.5.txt
/ MyServer 0.5 denial of service / / bug found by badpack3t. / / http://myserverweb.sourceforge.net / / / / $ gcc -o fms fms-0.5.c linux version / / $ gcc -o fms fms-0.5.c -DWINDOWS windows version / / / / $ ./fms / / / / Federico Fazzi / include include include if WINDOWS include pragma...