FCKeditor exploit summary-vulnerability warning-the black bar safety net

Fckeditor exploit summary View Editor Version FCKeditor/whatsnew.html ------------------------------------------------------------- 2. Version 2.2 version Apache+linux environments in the upload files back plus a. Breakthrough! Test passed...

Sysax Multi-Server 5.64 Create Folder Buffer Overflow

Sysax Multi-Server 5.64 Create Folder Buffer Overflow. Remote exploit for windows platform $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use...

UBUNTU-CVE-2012-3454

eXtplorer 2.1.0b6 uses world writable permissions for the /var/lib/extplorer/ftptmp directory, which allows local users to delete or overwrite arbitrary files...

Sysax Multi Server 5.64 Buffer Overflow

require 'msf/core' require 'base64' class Metasploit3 'Sysax Multi Server 5.64 Create Folder BoF', 'Description' = %q This module exploits a stack buffer overflow in the create folder function in Sysax Multi Server 5.64. This issue was fixed in 5.66. You must have valid credentials to trigger the...

WordPress Front End Upload v0.5.4.4 Arbitrary PHP File Upload

Exploit for php platform in category web applications Exploit Title: WordPress Front End Upload v0.5.4.4 Arbitrary PHP File Upload Vulnerability Date: 7/23/12 Exploit Author: Chris Kellum Vendor Homepage: http://mondaybynoon.com/ Software Link:...

MS12-051: Vulnerability in Microsoft Office for Mac Could Allow Elevation of Privilege (2721015) (Mac OS X)

The remote Mac OS X host is running a version of Microsoft Office for Mac that is affected by a privilege escalation vulnerability in the way that folder permissions are set in certain installations. If an attacker places a malicious executable in the Office 2011 folder and lures a user into...

Microsoft Office Privilege Elevation Vulnerability (2721015) - Mac OS X

This host is missing an important security update according to Microsoft Bulletin MS12-051. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

AdminStudio LaunchHelp.dll ActiveX Arbitrary Code Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

AdminStudio LaunchHelp.dll ActiveX Arbitrary Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'AdminStudio LaunchHelp.dll ActiveX...

Umbraco CMS Remote Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Umbraco CMS Remote Command Execution'...

Microsoft IIS - Short FileFolder Name Disclosure

Microsoft IIS - Short FileFolder Name Disclosure PoC: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/19525.zip Paper: http://www.exploit-db.com/docs/19527.pdf Security Research - IIS Short File/Folder Name Disclosure Website : http://soroush.secproject.com/blog...

Microsoft IIS - Short File/Folder Name Disclosure

PoC: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19525.zip Paper: http://www.exploit-db.com/docs/19527.pdf Security Research - IIS Short File/Folder Name Disclosure Website : http://soroush.secproject.com/blog/ I. BACKGROUND --------------------- "IIS is a web...

[SECURITY] Fedora 15 Update: roundcubemail-0.7.2-2.fc15

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

WordPress Sitemile Auctions plugin arbitrary file upload vulnerability-vulnerability warning-the black bar safety net

Affected system: WordPress Sitemile Auctions Plugin 2. x Description: -------------------------------------------------------------------------------- WordPress is a PHP language and MySQL database development Blog（blog, blogengine, users can support PHP and MySQL database server on build your ow...

IObit Protected Folder protection bypass

It's possible to bypass protection, e.g. by changing return value of password checking function...

IObit Protected Folder Authentication Bypass

From IObit: "Protected Folder is designed to password-protect your folders and files from being seen, read or modified in Windows 7, Vista, XP and Server 2008, 2003. It works like a safety box, just drag and drop the folders or files you want to hide or protect into Protected Folder, then no one...

Simple Document Management System 1.1.5 / 2.0 SQL Injection

Simple Document Management System 1.1.5 / 2.0 Multiple Vulnerabilities bug found by Jose Luis Gongora Fernandez a.k.a JosS twitter: @JossGongora contact: sys-projectathotmaildotcom website: http://www.hack0wn.com/ download: http://mirror.us.cc.com.au/pub/cafuego/sdms ----------- version 2.0...

WordPress Foxypress Plugin 'uploadify.php' Arbitrary File Upload Vulnerability

WordPress Foxypress Plugin is prone to file upload vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

WordPress Plugin Omni Secure Files 0.1.13 - Arbitrary File Upload

WordPress Plugin Omni Secure Files 0.1.13 - Arbitrary File Upload Exploit Title: Wordpress Omni-secure-files 0.1.13 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/omni-secure-files/ Date: 07/06/2012 Exploit Author: Adrien Thierry Vendor Homepage: http://omni-secure.com/ Software Link...

Debian Security Advisory DSA 2464-2 (icedove)

The remote host is missing an update to icedove announced via advisory DSA 2464-2. OpenVAS Vulnerability Test $Id: deb24642.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2464-2 icedove Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...