Debian DSA-3114-1 : mime-support - security update

Timothy D. Morgan discovered that run-mailcap, an utility to execute programs via entries in the mailcap file, is prone to shell command injection via shell meta-characters in filenames. In specific scenarios this flaw could allow an attacker to remotely execute arbitrary code. %NASLMINLEVEL 7030...

BMC Track-It multiple security vulnerabilities

Code execution, information leakageб SQL injection...

Rash CMS SQL Injection Vulnerability

No description provided by source. ========================================== Rash CMS SQL Injection Vulnerability ========================================== InformatioN Title : Rash CMS SQL Injection Vulnerability Author : keracker Vendor or Software Link : http://rashcms.com Email :...

Microsoft IIS 4.0 - Buffer Overflow Vulnerability (4)

No description provided by source. source: http://www.securityfocus.com/bid/307/info Microsoft IIS reported prone to a buffer overflow vulnerability in the way IIS handles requests for several file types that require server side processing. This vulnerability may allow a remote attacker to execut...

Worksforweb iAuto - Multiple Cross-Site Scripting HTML Injection Vulnerabilities

Worksforweb iAuto - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/54812/info Worksforweb iAuto is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successfu...

Thousand Bo enterprise website management system HitCount. Asp page injection vulnerability-vulnerability warning-the black bar safety net

Program have joined the anti-injection code, in NoSql. asp file 7kccopyd-code % If EnableStopInjection = True Then Dim FyPost, FyGet, FyIn, FyInf, FyXh, Fydb, Fydbstr FyIn = "’|;|and|exec|insert|select|delete|update|count||%|chr|mid|master|truncate|char|declare" FyInf = SplitFyIn, "|" If Request...

AB-Unreal-Server

AB Unreal Server is prone to a remote buffer overflow because it fails to perform adequate boundary-checks on user-supplied data. Successfully exploiting will allow an attacker to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a...

NetCat CMS - Multiple Vulnerabilities

Exploit Title: NetCat CMS Code exec, SQL-injection Google Dork: none Date: 28.11.2010 Author: brainpillow Software Link: http://netcat.ru/ Version: UNKNOWN On different versions of this software next vulnerabilities are availible: =======================================================...

VLC Media Player < 1.1.4 Patch Subversion Arbitrary DLL Injection Code Execution (deprecated)

Binary data 5651.prm...

Thousand Bo enterprise website management system Oday-vulnerability warning-the black bar safety net

Program have joined the anti-injection code, in NoSql. asp file 7kccopyd-code % If EnableStopInjection = True Then Dim FyPost, FyGet, FyIn, FyInf, FyXh, Fydb, Fydbstr FyIn = "’|;|and|exec|insert|select|delete|update|count||%|chr|mid|master|truncate|char|declare" FyInf = SplitFyIn, "|" If Request...

Worry-free shopping system oday released-vulnerability warning-the black bar safety net

Actually code appear in a number of SQLintection, but in the Conn. asp: Set Conn = Nothing Response. Write "database connection error" Response. End End If %!-- include file="sqlcheck. asp" - Opened sqlcheck. the asp,part of the code is as follows: For Fyx=0 to uboundFyCs If FyCsFyx"" Then If...

Phenix 3.5b SQL Injection

======================================================================================= Topic : Phenix Bug type : SQL Injection Author : ItSecTeam Remote : Yes Status : Bug ===================== Content ====================== Advisory Content : Phenix Script :...

Let the administrator help you restart the machine-vulnerability warning-the black bar safety net

Let the administrator help you restart the machine Sometimes, we go through the database backup a batch to the Startup menu, you want the server on the next restart to run our batch processing. But we, Ah, etc., the server is not restarting, what should I do? Allow administrator to help us restar...

Let the administrator help you restart the server-the vulnerabilities and early warning-the black bar safety net

Source: dark group Sometimes, we go through the database backup a batch to the Startup menu, you want the server on the next restart to run our batch processing. But we, Ah, etc., the server is not restarting, what to do? Allow administrator to help us restart it. Oh The following injection code...

Let the administrator help you restart the server-the vulnerabilities and early warning-the black bar safety net

Go from: http://www.darkst.com/bbs/thread-38959-1-1.html Sometimes, we go through the database backup a batch to the Startup menu, you want the server on the next restart to run our batch processing. But we, Ah, etc., the server is not restarting, what to do? Allow administrator to help us restar...

Make the server a reboot infinite loop-bug warning-the black bar safety net

The injection loop Source: Chinese hackers Alliance Sometimes, we go through the database backup a batch to the Startup menu, you want the server on the next restart to run our batch processing. But we, Ah, etc., the server is not restarting, what should I do? Allow administrator to help us resta...

mforum-admin.txt

================================================= MFORUM 0.1a Arbitrary Add-Admin Vulnerability ================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------|...

MFORUM 0.1a Arbitrary Add-Admin Vulnerability

No description provided by source. ================================================= MFORUM 0.1a Arbitrary Add-Admin Vulnerability ================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

anatacms-admin.txt

=============================================== Anata CMS 1.0b5 Arbitrary Add-Admin Exploit =============================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------| ,-------, | /...

Anata CMS 1.0b5 (change.php) Arbitrary Add Admin Vulnerability

Exploit for unknown platform in category web applications ============================================================== Anata CMS 1.0b5 change.php Arbitrary Add Admin Vulnerability ============================================================== ,--^----------,--------,-----,-------^--, | ||||||||...