1545 matches found
PHP MultiPart Form-Data Denial of Service PoC
Exploit for unknown platform in category web applications ============================================= PHP MultiPart Form-Data Denial of Service PoC ============================================= !/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin...
PHP MultiPart Form-Data Denial of Service PoC
No description provided by source. !/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print "" print " PHP...
PHP - MultiPart Form-Data Denial of Service (PoC)
!/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print "" print " PHP MultiPart Form-Data Denial of Service...
PHP file upload DoS
POST request multipart/form-data with a large number of uploaded files causes resources exhaustion...
PHP "multipart/form-data" denial of service
Description ------------ PHP version 5.3.1 was just released. This release contains a patch for a denial of service condition we've reported on 27 October 2009. The problem is related with PHP's handling of RFC 1867 Form-based File Upload in HTML. When you send a POST request to a PHP script with...
firefox, nspr security update
CentOS Errata and Security Advisory CESA-2009:1530 Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open sour...
PHP web alerts, a variety of PHP application\0 filter vulnerability-vulnerability warning-the black bar safety net
Vulnerability description: When the PHP program with the specified PATH, in the PATH of the file Backdoor was added%0 0 can upload any file. Test procedure: NEATPIC PHP directory direct-reading version 1.2.3 This document participants: Vulnerability experiment: Xiaolu,Lilo,SuperHei,Darkness All B...
CVE-2009-1576
Unspecified vulnerability in Drupal 5.x before 5.17 and 6.x before 6.11, as used in vbDrupal before 5.17.0, allows user-assisted remote attackers to obtain sensitive information by tricking victims into visiting the front page of the site with a crafted URL and causing form data to be sent to an...
Cross site request forgery (csrf)
Unspecified vulnerability in Drupal 5.x before 5.17 and 6.x before 6.11, as used in vbDrupal before 5.17.0, allows user-assisted remote attackers to obtain sensitive information by tricking victims into visiting the front page of the site with a crafted URL and causing form data to be sent to an...
VisionLMS 1.0 (changePW.php) Remote Password Change Exploit
No description provided by source. html head titleVisionLMS 1.0 | Change Password/title p VisionLMS 1.0 Remote Password Changebr Coded by Mr.tro0oqybr E-mail [email protected] --- Yemeni hackerbr Greetz All my Friendsbr /p form enctype="multipart/form-data" method="post" name="form"...
VisionLms 1.0 - 'changePW.php' Remote Password Change
VisionLMS 1.0 | Change Password VisionLMS 1.0 Remote Password Change Coded by Mr.tro0oqy E-mail [email protected] --- Yemeni hacker Greetz All my Friends kjkjkj-- milw0rm.com 2009-04-28...
Breach Security ModSecurity for Apache DoS
Module hangs on incomplete HTTP POST multipart/form-data request...
ModSecurity 2.5.9 - Remote Denial of Service
ModSecurity 2.5.9 - Remote Denial of Service ============================================= INTERNET SECURITY AUDITORS ALERT 2009-001 - Original release date: February 25th, 2009 - Last revised: March 19th, 2009 - Discovered by: Juan Galiana Lara - Severity: 7.8/10 CVSS Base Scored...
HP LaserJet printers crossite request forgery
Crossite request forgery with form data in conjunctions with insecure default access...
Andy's PHP KnowledgeBase 0.92.9 - Arbitrary File Upload
============================================================== Andy's PHP Knowledgebase Arbitrary File Upload Vulnerability ============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...
CVE-2008-3644
Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache...
Design/Logic Flaw
Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache...
CVE-2008-3644
Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache...
CVE-2008-3644
Summary: CVE-2008-3644 affects Apple Safari prior to 3.2. The issue is that Safari does not reliably prevent caching of form data in fields with autocomplete disabled, allowing local users to read sensitive information from the browser page cache. The vulnerability is described in the NVD entry f...
7Shop 1.1 - Arbitrary File Upload
!/usr/bin/perl use warnings; use strict; use LWP::UserAgent; use HTTP::Request::Common; my $fname = rand1000 . ".php"; int.. yes i know PU! print Spoofing + + Discovered && Coded By: t0pP8uZz + + + + Contact IRC: irc.rizon.net sectalk + + Vendor not notified! Later versions maybe vuln! + + + +...