234 matches found
phpMyBackupPro 2.5 Shell Upload
Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PHPMYBACKUPPRO-v2.5-FILEUPLOADVULN.txt Vendor: ============================= www.phpmybackuppro.net project site: sourceforge.net/projects/phpmybackup/ Product: ===========================...
phpMyBackupPro 2.5 - Remote Command Execution / Cross-Site Request Forgery
Exploit for php platform in category web applications + Credits: hyp3rlinx Vendor: ============================= www.phpmybackuppro.net project site: sourceforge.net/projects/phpmybackup/ Product: =========================== phpMyBackupPro v.2.5 PMBP phpMyBackup Pro is a very easy to use, free,...
phpMyBackupPro 2.5 - Remote Command Execution / Cross-Site Request Forgery
Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PHPMYBACKUPPRO-v2.5-RCE.txt Vendor: ============================= www.phpmybackuppro.net project site: sourceforge.net/projects/phpmybackup/ Product: ===========================...
Chamilo LCMS Connect 4.1 Cross Site Scripting
Affected Vendor: http://lcms.chamilo.org/ Date: 27/03/2015 Discovered by: Joel Vadodil Varghese Type of vulnerability: Stored XSS Tested on: Windows 7 Product: LCMS Connect Version: 4.1 Description: Chamilo is an open-source under GNU/GPL licensing e-learning and content management system, aimed ...
Oracle: Security Advisory (ELSA-2009-1278)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Chamilo LCMS Connect 4.1 Cross Site Request Forgery
Hi Team, Affected Vendor: http://lcms.chamilo.org/ Date: 27/03/2015 Discovered by: Joel Vadodil Varghese Type of vulnerability: XSRF Tested on: Windows 7 Product: LCMS Connect Version: 4.1 Description: Chamilo is an open-source under GNU/GPL licensing e-learning and content management system, aim...
Linux Kernel 3.16.1 FUSE Privilege Escalation Exploit
FUSE-based exploit that leverages a flaw in fs/namespace.c where it does not properly restrict clearing MNTNODEV, MNTNOSUID, and MNTNOEXEC and changing MNTATIMEMASK during a remount of a bind mount, which allows local users to gain privileges. Linux kernels through 3.16.1 are affected. / FUSE-bas...
Linux Kernel < 3.16.1 - 'Remount FUSE' Local Privilege Escalation
/ FUSE-based exploit for CVE-2014-5207 Copyright c 2014 Andy Lutomirski Based on code that is: Copyright C 2001-2007 Miklos Szeredi This program can be distributed under the terms of the GNU GPL. See the file COPYING. gcc -Wall fusesuid.c pkg-config fuse --cflags --libs -o fusesuid mkdir test...
TomatoCart 1.x - SQL Injection
TomatoCart 1.x - SQL Injection Title: TomatoCart v1.x latest-stable Remote SQL Injection Vulnerability Background: TomatoCart is open source ecommerce solution developed and maintained by a number of 64,000+ users from 50+ countries and regions. It's distributed under the terms of the GNU General...
Zenoss Monitoring System 4.2.5-2108 64bit - Stored XSS
No description provided by source. Exploit Title: Stored XSS vulnerability in Zenoss core open source monitoring system Date: 12/05/2014 Exploit author: Dolev Farhi dolevatopenflare.org Vendor homepage: http://zenoss.com Software Link: http://www.zenoss.com Version: Core 4.2.5-2108 64bit Tested o...
Joomla Component DBQuery <= 1.4.1.1 RFI Vulnerability
No description provided by source. @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@...
Joomla Component alphacontent <= 2.5.8 (id) SQL Injection Vulnerability
No description provided by source. Joomla Component comalphacontent SQL Injection Vulnerability found by: cO2 Algeria Security Crew Contact: c02athotmail.de Website: http://www.dzw0rm.ch Greetings: to all hackers DZ ScriptName : 'Joomla' ModuleName : 'AlphaContent' Version : '2.5.8 ' DORK 1 :...
VamCart 0.9 CMS - Multiple Vulnerabilities
No description provided by source. Title: ====== VamCart v0.9 CMS - Multiple Web Vulnerabilities Date: ===== 2012-06-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=622 VL-ID: ===== 622 Common Vulnerability Scoring System: ==================================== 4...
BitchX <= 1.0c20 Local Buffer Overflow Exploit
No description provided by source. / Tested on BitchX-1.0c19 /str0ke / / P.o.C Exploit Code for BitchX made for Version BitchX-1.0c20cvs -- Date 20020325 C 2004. GroundZero Security Research and Software Development http://www.groundzero-security.com released under the GNU GPL -...
Joomla component com_universal Remote File Inclusion Vulnerability exploit
No description provided by source. Joomla component comuniversal = Remote File Inclusion Vulnerability exploit +Software: Joomla component comuniversal UWCMS Universal Web CMS +Version: 1.0.0 +License: http://www.gnu.org/copyleft/gpl.html GNU/GPL +Source: http://uwcms.sourceforge.net +CWE ID : 98...
Practico 13.9 - Multiple Vulnerabilities
No description provided by source. ? Practico 13.9 Multiple Vulnerabilities Vendor: Practico Product web page: http://www.codigoabierto.org Affected version: 13.9 Summary: Practico is a free CMS software project released under license GNU GPL v2.0 for creating web applications in a completely...
logahead UNU edition 1.0 - Remote Upload File / Code Execution Vuln
No description provided by source. -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahea...
lionmax software www file share pro 2.4x Multiple Vulnerabilities (1)
No description provided by source. source: http://www.securityfocus.com/bid/9425/info WWW File Share Pro has been reported prone to multiple remote vulnerabilities. The first reported issue is that a remote attacker may employ the upload functionality of the vulnerable software to overwrite...
phpMyBackupPro <= 2.2 - Local File Inclusion Vulnerability
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ posdubatgmail.com 2012-07-03 phpMyBackupPro = 2.2 Local File Inclusion Vulnerability Script: phpMyBackupPro is a ver...
Joomla Component NeoGallery 1.1 - SQL Injection Vulnerability
No description provided by source. joomla SQL Injectioncomneogallery AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORK 1 : allinurl:comneogallery EXPLOIT :...