Easy LAN Folder Share 3.2.0.100 - Buffer Overflow Vulnerability

No description provided by source. Exploit Title: Easy LAN Folder Share Version 3.2.0.100 Buffer Overflow vulnerabilitySEH Date: 14-06-2013 Exploit Author: ariarat Vendor Homepage: http://www.mostgear.com Software Link: http://download.cnet.com/Easy-LAN-Folder-Share/3000-20854-10909166.html...

SquirrelMail 1.4.x Folder Name Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10246/info It has been reported that SquirrelMail is affected by a cross-site scripting vulnerability in the handling of folder name displays. This issue is due to a failure of the application to properly sanitize...

Snaps! Gallery 1.4.4 - Remote User Pass Change Exploit

No description provided by source. ?php / \|/// \ - - // @ @ ----oOOo---oOOo--------------------------------------------------- Y! Underground Group [email protected] Dj7xpl.2600.ir ----ooooO-----Ooooo-------------------------------------------------- \ / \ /...

PowerISO 4.0 - Local Buffer Overflow PoC

No description provided by source. !/usr/bin/env python Poweriso 4.0 Local Buffer Overflow PoC Found By: DrIDE Tested On: XPSP3 Usage: Create New ISO, Add a New Folder, Paste to Rename Folder, Click Save Notes: This must have been fixed somewhere between 4.0 and 4.7 ''' EAX 00ADDDC0 ECX 00000000...

TinyBrowser (TinyMCE Editor File browser) 1.41.6 - Multiple Vulnerabilities

No description provided by source. ============================================================================== TinyBrowser TinyMCE Editor File browser 1.41.6 - Multiple Vulnerabilities ============================================================================== Discovered by Aung Khant, YGN...

Yet Another NOCC <= 0.1.0 - Local File Inclusion Vulnerability

No description provided by source. Yet Another NOCC 0.1.0 = Local File Inclusion Vulnerabilities YANOCC is a simple and fast webmail client which can handle POP3, SMTP, and IMAP servers. YANOCC is based on NOCC's code and is written with PHP4. It features multi-language support, MIME attachments,...

easysite 2.3 - Multiple Vulnerabilities

No description provided by source. + EasySite v2.3 Multiple Remote Vulnerabilities + Discovered By SirGod + www.mortal-team.org + Greetz : E.M.I.N.E.M, Ras ,Puscasmarin ,ToxicBlood,MesSiAH,xZu,HrN + Local File Inclusion...

FTP Sprite 1.2.1 iOS - Persistent XSS Vulnerability

No description provided by source. Title: ====== FTP Sprite v1.2.1 iOS - Persistent Web Vulnerability Date: ===== 2013-07-12 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1007 VL-ID: ===== 1007 Common Vulnerability Scoring System: ====================================...

Amiro.CMS <= 5.4.0.0 folder disclosure

No description provided by source. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ONSEC-09-005 Amiro.CMS root folder disclosure Objective: Amiro CMS = 5.4.0.0 Type: Disclosure of ways Threat: Medium Date Discovered: 01.07.2009 Date of...

Microsoft Outlook2000/Express 6.0 Arbitrary Program Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6923/info Microsoft Outlook and Outlook Express may execute arbitrary programs through objects embedded in HTML email messages. When an email message or newsgroup message is viewed using Outlook, a temporary object is...

CCRP Folder Treeview Control (ccrpftv6.ocx) - IE Denial of Service Exploit

No description provided by source. !-- ------------------------------------------------------------------------------- CCRP Folder Treeview Control ccrpftv6.ocx Internet Explorer Denial of Service author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org Tested on Windows...

MailEnable Enterprise <= 2.0 (ASP Version) Multiple Vulnerabilities

No description provided by source. Hi, I'm Soroush Dalili from GrayHatz Security Group GSG. I found multiple bugs in MailEnable Enterprise Edition ASP Version = 2.0 that I listed them below: 1 - Any user can login to web administration site. 2 - Authenticated normal user can gain ADMIN or SYSADMI...

IISWorks FileMan fileman.mdb Remote User Database Disclosure

No description provided by source. Exploit Title: IISWorks FileMan fileman.mdb Remote User Database Disclosure Disclosure Date: July 5, 2005 Author: Known Vulnerability Software Link: http://www.scriptdungeon.com/scripts/asp/FileManASP.rar Version: OSVDB: 17824 Security Tracker ID: 1014383 Found...

PHP-NUKE version <= 6.9 - 'cid' SQL Injection Remote Exploit

No description provided by source. !/usr/bin/perl -w use IO::Socket; THIS CODE PUBLIC NOW = \ \ / | \ | / | / / \ | | \ | /\ \ / || /// | / / / / based on 'cid' sql injection vuln in Download module, more info about this vuln u can see here: http://rst.void.ru/texts/advisory10.htm work only...

Patient folder (THEME ASP) Local SQL Injection Vulnerability

No description provided by source. ============================================================ Patient folder THEME ASP Local SQL Injection Vulnerability ============================================================ ----------------------------------- By: SA H4x0r - Emails: [email protected] - Date...

UploadImage/UploadScript 1.0 - Remote Change Admin Password Exploit

No description provided by source. ?php / \|/// \ - - // Y! Underground Group @ @ ----oOOo---oOOo--------------------------------------------------- ! Portal : UploadImage v1.0 & UploadScript v1.0 ! Download : http://www.uploadscript.net ! Type : Remote Change Admin Password Exploit ! Home :...

Chilkat Software FTP2 ActiveX Component Remote Code Execution

No description provided by source. !-- Chilkat Software FTP2 ActiveX Component ChilkatFtp2.DLL 2.6.1.1 Remote Code Execution poc by rgod tested against Internet Explorer 7 on Vista should also work with 8/9 ActiveX Settings: CLSID: 302124C4-30A0-484A-9C7A-B51D5BA5306B Progid:...

RealOne Player for Linux 2.2 Alpha Insecure Configuration File Permission Local Privilege Escalation

No description provided by source. source: http://www.securityfocus.com/bid/8571/info The configuration files for the RealOne Player are installed in the a hidden folder in a users home directory. The issue presents itself, because configuration files stored in this directory are installed with...

phpg 1.6 (xss/pd/dos) Multiple Vulnerabilities

No description provided by source. PHPg 1.6 has a few XSSes, path disclosures, and a DoS vulnerability. Home: http://black-dwarf.com HS: http://www.hotscripts.com/Detailed/86225.html Found by: Anarchy Angel - http://hha.zapto.org Temp XSS: http://site.com/phpg/index.php?url= XSS Temp XSS:...

Sonium Enterprise Adressbook <= 0.2 (folder) Include Vulnerability

No description provided by source. +-------------------------------------------------------------------- + + Sonium Enterprise Adressbook Version 0.2 folder RFI + + Original advisory: + http://www.bb-pcsecurity.de/Websecurity/342/org/SoniumEnterpriseAdressbookVersion0.2folderRFI.htm +...