openmotif libUil buffer overflows

Multiple buffer overflows in libUil libUil.so in OpenMotif 2.2.3, and possibly other versions, allows attackers to execute arbitrary code via the 1 diagissuediagnostic function in UilDiags.c and 2 opensourcefile function in UilSrcSrc.c...

Gaming Directory 1.0 (cat_id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================ Gaming Directory 1.0 catid Remote SQL Injection Vulnerability ================================================================...

Gaming Directory 1.0 - 'cat_id' SQL Injection

--==+================================================================================+==-- --==+ Gaming Directory 1.0 SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: 5 April 2008...

fapersianhack-sql.txt

FaScript FaPersianHack v1 Remote Sql Injection BY IRCRASH AUTHOR : IRCRASH Dr.Crash Script Download : http://fascript.com/fapersianhack.zip Injection Adress : http://Sitename/ph/show.php?id= Help : In This Script Admin Username and Password Save in ./admin/pconfig.php You can open this file with...

China computer education web site management system 3. 0 vulnerability analysis-vulnerability warning-the black bar safety net

In the/edit/downfile. asp has the following code: Copy code !-- include file="fsoconfig. asp" - !-- include file="checklogin. asp" - % call downloadFileRequest"path" function downloadFilestrFile strFilename = server. MapPathstrFile Response. Buffer = True Response. Clear Set s = Server...

Microsoft Excel Malformed Palette Record DoS PoC (MS07-002)

Exploit for unknown platform in category dos / poc =========================================================== Microsoft Excel Malformed Palette Record DoS PoC MS07-002 =========================================================== """ MS07-002 EXCEL Malformed Palette Record Vulnerability DOS POC...

Grep with web vulnerabilities mining+a WIN under the GREP Software-bug warning-the black bar safety net

a. The following grephttp://www.interlog.com/tcharron/grep.htmldoes not support the-r parameter,you can use the following format: grep-in "\include|require\" C:\test\. php C:\test\admin\. php You can also use cygwin ported to the grephttp://zhouzhen.eviloctal.org/Look.asp?LogID=814 b. A...

Grep with web vulnerability discovery-vulnerability warning-the black bar safety net

Grep with web vulnerability mining Text/SuperHeiAtph4nt0m.org 2006-03-08 a. The following grephttp://www.interlog.com/tcharron/grep.htmldoes not support the-r parameter,you can use the following format: grep-in "\include|require\" C:\test\. php C:\test\admin\. php You can also use cygwin...

Grep with web vulnerability discovery-vulnerability warning-the black bar safety net

Grep with web vulnerability mining Text/SuperHeiAtph4nt0m.org 2006-03-08 a. The following grephttp://www.interlog.com/tcharron/grep.htmldoes not support the-r parameter,you can use the following format: grep-in "\include|require\" C:\test\. php C:\test\admin\. php You can also use cygwin...

Windows NT file function DoS

It may be possible to crash application using one of system APi function with oversized filename...

ssibug

ssi server sides include is a cgi proggie that comes by default with thttpd web server, I am not sure about others. ssi has a nasty bug with regards to the PATHTRANSLATED env var. As you can see the contents of PATHTRANSLATED get copied into pathtranslated which get's fopen'ed later. It does no...