9689 matches found
JBossEAP status servlet info leak
JBoss Enterprise Application Platform aka JBossEAP or EAP before 4.2.0.CP03, and 4.3.0 before 4.3.0.CP01, allows remote attackers to obtain sensitive information about "deployed web contexts" via a request to the status servlet, as demonstrated by a full=true query string...
Cisco IOS shellcode explanation
Hi, Lots of people have been asking for details about the slightly unorthodox shellcode I used within the IOS FTP exploit, so here goes: .equ vtyinfo, 0x8182da60 //contains a pointer to the VTY info structure .equ terminate, 0x80e4086c lis 4,vtyinfo@ha la 4,vtyinfo@l4 xor 8,8,8 //Clear r8 lwzx...
AIX 530007 : U819262
The remote host is missing AIX PTF U819262 which is related to the security of the package devices.common.IBM.mpio.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
Unfixed XSS vulnerability at www.declanbutler.info
Security researcher doublecheck, has submitted on 26/07/2008 a cross-site-scripting XSS vulnerability affecting www.declanbutler.info, which at the time of submission ranked 7084928 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/09/2008. It...
CVE-2008-3315
Multiple cross-site scripting XSS vulnerabilities in Claroline 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the 1 query string to a announcements/messages.php; b lostPassword.php and c profile.php in auth/; d calendar/myagenda.php; e group/group.php; f learningPath.php...
CVE-2008-3186
Multiple cross-site scripting XSS vulnerabilities in Chipmunk Blog Blogger allow remote attackers to inject arbitrary web script or HTML via the membername parameter to 1 members.php, 2 comments.php, 3 photos.php, 4 archive.php, or 5 cat.php. NOTE: the provenance of this information is unknown; t...
Download Accelerator Plus - DAP 8.x m3u File Buffer Overflow Exploit (c)
No description provided by source. include stdio.h include stdlib.h / DAP 8.x .m3u File BOF C Exploit for XP SP2,SP3 English SecurityFocus Advisory: Download Accelerator Plus DAP is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied inpu...
No title provided
The initrequestinfo function in sapi/cgi/cgimain.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATHTRANSLATED, which might allow remote attackers to execute arbitrary code via a crafted URI...
eSHOP100 (SUB) Remote SQL Injection Vulnerability
No description provided by source. ...:::::eSHOP100 SQL Injection Vulnerbility ::::.... AUTHOR : JuDge AUTHOR Email:[email protected],[email protected] Script WebSite:http://www.eshop100.co.uk Dork:: DescRipTiON: pull customers info from database EX...
mod_perl PerlRun denial of service
PerlRun.pm in Apache modperl before 1.30, and RegistryCooker.pm in modperl 2.x, does not properly escape PATHINFO before use in a regular expression, which allows remote attackers to cause a denial of service resource consumption via a crafted URI...
mod_perl PerlRun denial of service
PerlRun.pm in Apache modperl before 1.30, and RegistryCooker.pm in modperl 2.x, does not properly escape PATHINFO before use in a regular expression, which allows remote attackers to cause a denial of service resource consumption via a crafted URI...
eshop100-sql.txt
, .ss$$$$$$$$$$s, - $. s$$$$$$$$$$$$$$$$Ss - "$$$$$$$$$$$$$$$$$$o$$$ , - s$$$$$$$$$$$$$$$$$$$$$$$$s, ,s - s$$$$$$$$$"$$$$$$""""$$$$$$"$$$$$, - s$$$$$$$$$$s""$$$$ssssss"$$$$$$$$" - s$$$$$$$$$$' """ss"$"$s"" - s$$$$$$$$$$, """""$ .s$$s - s$$$$$$$$$$$$s,... s$$' - ssss$$$$$$$$$$$$$$$$$$$$s. .$$"$. ,...
eSHOP100 (SUB) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================= eSHOP100 SUB Remote SQL Injection Vulnerability ================================================= - , .ss$$$$$$$$$$s, - $. s$$$$$$$$$$$$$$$$Ss - "$$$$$$$$$$$$$$$$$$o$$$ , -...
eSHOP100 - SUB SQL Injection
eSHOP100 - SUB SQL Injection - , .ss$$$$$$$$$$s, - $. s$$$$$$$$$$$$$$$$Ss - "$$$$$$$$$$$$$$$$$$o$$$ , - s$$$$$$$$$$$$$$$$$$$$$$$$s, ,s - s$$$$$$$$$"$$$$$$""""$$$$$$"$$$$$, - s$$$$$$$$$$s""$$$$ssssss"$$$$$$$$" - s$$$$$$$$$$' """ss"$"$s"" - s$$$$$$$$$$, """""$ .s$$s - s$$$$$$$$$$$$s,... s$$' -...
jokeswebsite-sql.txt
|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...
Easysitenetwork Jokes Complete Website 2.1.3 - jokeid SQL Injection
Easysitenetwork Jokes Complete Website 2.1.3 - jokeid SQL Injection || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection...
Tips Complete Website 1.2.0 (tipid) SQL Injection Vulnerability
Exploit for unknown platform in category web applications =============================================================== Tips Complete Website 1.2.0 tipid SQL Injection Vulnerability ===============================================================...
Easysitenetwork Jokes Complete Website 2.1.3 - 'jokeid' SQL Injection
|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...
Riddles Complete Website 1.2.1 - riddleid SQL Injection
Riddles Complete Website 1.2.1 - riddleid SQL Injection || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | |...
sharecms-sql.txt
============================================================== ShareCMS 0.1 Multiple Remote SQL Injection Vulnerabilities ============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...