891 matches found
SuSE 11.1 Security Update : ruby (SAT Patch Number 5716)
This update of ruby provides 1.8.7p357, which contains many stability fixes and bug fixes while maintaining full compatibility with the previous version. A detailailed list of changes is available from http://svn.ruby-lang.org/repos/ruby/tags/v187357/ChangeLog . The most important fixes are : -...
Call of Duty, Spider-Man and other 7 Largest Video Game Sites Hacked
Call of Duty, Spider-Man and other 7 Largest Video Game Sites Hacked Today Turkish Hackers from group "GrayHatz" hack and Deface Call of Duty, Spider-Man and other 7 Largest Video Game Sites. Hacked Sites Include: - Call of Duty® Official Video Game Site : Link and Mirror - X-Men Origins:...
Infinity 0-day Denial of Service
Exploit for windows platform in category dos / poc ================================ Infinity 0-day Denial of Service ================================ The largest Exploit Database in the world ! 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /,...
CVE-2009-3949
CVE-2009-3949 affects VivaPrograms Infinity 2.0.5 and earlier (cp/profile.php). The root cause is missing administrative authentication for the donewauthor action, allowing remote attackers to create administrative accounts via the name, password, and conf_password parameters. Exploitation is net...
CVE-2009-3949
cp/profile.php in VivaPrograms Infinity 2.0.5 and earlier does not require administrative authentication for the donewauthor action, which allows remote attackers to create administrative accounts via the name, password, and confpassword parameters...
Sql injection
SQL injection vulnerability in VivaPrograms Infinity Script 2.x.x, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username field...
Directory traversal
Directory traversal vulnerability in VivaPrograms Infinity Script 2.x.x, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the optionsstyledir parameter to the default URI...
CVE-2009-3212
SQL injection vulnerability in VivaPrograms Infinity Script 2.x.x, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username field...
CVE-2009-3211
Directory traversal vulnerability in VivaPrograms Infinity Script 2.x.x, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the optionsstyledir parameter to the default URI...
CVE-2009-3211
CVE-2009-3211 describes a directory traversal vulnerability in VivaPrograms Infinity Script 2.x.x. When magic_quotes_gpc is disabled, remote attackers can read arbitrary files by injecting a .. into the options[style_dir] parameter of the default URI. The NVD entry lists a base score of 6.8 (Medi...
CVE-2009-3212
The CVE-2009-3212 entry describes an SQL injection in VivaPrograms Infinity Script 2.x.x when magic_quotes_gpc is disabled. The underlying issue is improper sanitization/escaping of the username field, enabling remote attackers to craft inputs that alter SQL queries. Impact is described as arbitr...
CVE-2009-3212
SQL injection vulnerability in VivaPrograms Infinity Script 2.x.x, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username field...
Infinity <= v2.X.X (Local File Disclosure/Auth Bypass) Vulnerabilities
-----------------Infinity = v2.X.X Local File Disclosure/Auth Bypass Vulnerabilities------------------------- Script : Infinity version : 2.X.X Language: PHP Site: http://www.dimofinf.net/ Author: SwEET-DeViL need magicquotesgpc = Off -----...
Infinity 2.x.x Local File Disclosure
------------------Infinity ---------------------------------------------------------------------------------------------------------------- - +LFD Exploit: http://WWW.Site.Com/inf/?optionsstyledir=../include/db.php%00 http://WWW.Site.Com/inf/?optionsstyledir=../../../../../../etc/passwd%00...
Infinity 2.x - 'options[style_dir]' Local File Disclosure
------------------Infinity ---------------------------------------------------------------------------------------------------------------- - +LFD Exploit: http://WWW.Site.Com/inf/?optionsstyledir=../include/db.php%00 http://WWW.Site.Com/inf/?optionsstyledir=../../../../../../etc/passwd%00...
Infinity <= 2.x.x options[style_dir] Local File Disclosure Vulnerability
No description provided by source. ------------------Infinity = v2.X.X Local File Disclosure / Auth Bypass Vulnerabilities------------------------- ---------------------------------------------------------------------------------------------------------------- Script : Infinity version : 2.X.X...
Infinity <= 2.x.x options[style_dir] Local File Disclosure Vulnerability
Exploit for unknown platform in category web applications ======================================================================== Infinity ---------------------------------------------------------------------------------------------------------------- - +LFD Exploit:...
Infinity 2.x - options[style_dir] Local File Disclosure
Infinity 2.x - optionsstyledir Local File Disclosure ------------------Infinity ---------------------------------------------------------------------------------------------------------------- - +LFD Exploit: http://WWW.Site.Com/inf/?optionsstyledir=../include/db.php%00...
Microsoft GDI Plugin - .png Infinite Loop Denial of Service (PoC)
Microsoft GDI Plugin - .png Infinite Loop Denial of Service PoC ! /usr/bin/perl CALgdiplugpoc.pl MircosoftgdiplugpnginfinityloopD.o.S POC by Code Audit Labs public 2009-04-17 http://www.vulnhunt.com/ Affected ======== test on full updated winxp sp3 other version should be affected CVE: please...
Microsoft GDI Plugin .png Infinite Loop Denial of Service PoC
Exploit for unknown platform in category dos / poc ============================================================= Microsoft GDI Plugin .png Infinite Loop Denial of Service PoC ============================================================= ! /usr/bin/perl CALgdiplugpoc.pl...