199 matches found
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.3.1.el6uek - proc: fix oops on invalid /proc/ /maps access Linux Torvalds - Revert 'capabilities: do not grant full privs for setuid w/ file caps + no effective caps' Joe Jin - mm: Use MMFCOMPAT instead ia32compat to prevent kabi be broken Joe Jin - proc: enable writing to /proc/pid/me...
Multiple vulnerabilities in Traq
Vulnerability ID: HTB23046 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesintraq.html Product: Traq Vendor: Jack Polgar http://traqproject.org/ Vulnerable Version: 2.2 and probably prior Tested Version: 2.2 Vendor Notification: 07 September 2011 Vulnerability Type: XSS, SQL...
Traq 2.2 Cross Site Scripting / SQL Injection
Vulnerability ID: HTB23046 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesintraq.html Product: Traq Vendor: Jack Polgar http://traqproject.org/ Vulnerable Version: 2.2 and probably prior Tested Version: 2.2 Vendor Notification: 07 September 2011 Vulnerability Type: XSS, SQL...
Jax Calendar v1.34 Remote Permission Bypass Vulnerability
Exploit for php platform in category web applications ========================================================= Jax Calendar v1.34 Remote Permission Bypass Vulnerability ========================================================= FOUND BY: R4M! - email protected DORK: inurl:?do=editentry SCRIPT: Ja...
Jax Calendar 1.34 - Remote Admin Access
Jax Calendar 1.34 - Remote Admin Access Exploit Title: Jax Calendar 1.34 Remote Admin Access Exploit Date: December 30th, 2009 Author: Sora Software Link: http://www.jtr.de/scripting/php Version: 1.34 Tested on: Windows Vista and Linux Backtrack 3 ---------------------------- Jax Calendar 1.34...
Jax Calendar 1.34 Remote Admin Access Exploit
No description provided by source. Exploit Title: Jax Calendar 1.34 Remote Admin Access Exploit Date: December 30th, 2009 Author: Sora Software Link: http://www.jtr.de/scripting/php Version: 1.34 Tested on: Windows Vista and Linux Backtrack 3 ---------------------------- Jax Calendar 1.34 Remote...
Joomla JS Jobs 1.0.5.6 SQL Injection
Joomla Component comjsjobs Multiple SQL injection vulnerability Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : December 9, 2009 Software Information + Vendor : http://www.joomshark.com/ + Download :...
Mambo Component com_koesubmit 1.0.0 - Remote File Inclusion
Mambo comkoesubmit 1.0.0 Remote File Inclusion Author : Don Tukulesto rootatindonesiancoderdotcom Homepage : http://www.indonesiancoder.com Date : Friday, Semptember 18, 2009 ------------------------------------------------------------------------------------------------------- | |.-----..--|...
Mandriva Update for jackit MDVA-2008:200 (jackit)
Check for the Version of jackit OpenVAS Vulnerability Test Mandriva Update for jackit MDVA-2008:200 jackit Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
Mandriva Update for jackit MDVA-2008:200 (jackit)
Check for the Version of jackit OpenVAS Vulnerability Test Mandriva Update for jackit MDVA-2008:200 jackit Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
myevent-xss.txt
░░░▒▒▒▓▓▓▓█████████████████████████████████████████████████████▓▓▓▓▒▒▒░░░ ░░░▒▒▒▓▓▓▓ ▓▓▓▓▒▒▒░░░ ░░░▒▒▒▓▓▓▓ XSS Vulnerability ▓▓▓▓▒▒▒░░░ ░░░▒▒▒▓▓▓▓ myEvent viewevent.php XSS Vulnerability ▓▓▓▓▒▒▒░░░ ░░░▒▒▒▓▓▓▓ http://mywebland.com/ ▓▓▓▓▒▒▒░░░ ░░░▒▒▒▓▓▓▓ ▓▓▓▓▒▒▒░░░...
Unfixed XSS vulnerability at www.jacksparrowcostumes.com
Security researcher xylitol, has submitted on 19/06/2008 a cross-site-scripting XSS vulnerability affecting www.jacksparrowcostumes.com, which at the time of submission ranked 7643574 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2008. ...
Fedora 8 : xine-lib-1.1.11-1.fc8 (2008-2569)
Wed Mar 19 2008 Ville Skytta - 1.1.11-1 - 1.1.11 security update, 438182, CVE-2008-0073. - Drop jack and wavpack build conditionals. - Specfile cleanups. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...
[SECURITY] Fedora 8 Update: xine-lib-1.1.10-1.fc8
This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...
CVE-2007-2285
CVE-2007-2285 affects the Ext JS example component: layout/feed-proxy.php in Jack Slocum Ext 1.0 alpha1. The vulnerability is a directory traversal that allows a remote attacker to read arbitrary files by manipulating the feed parameter via "..". Public sources confirm the same description across...
Apache 1.3.372.0.592.2.3 mod_rewrite - Remote Overflow
Apache 1.3.372.0.592.2.3 modrewrite - Remote Overflow !/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must...
Ubuntu 4.10 / 5.04 / 5.10 : perl vulnerability (USN-222-1)
Jack Louis of Dyad Security discovered that Perl did not sufficiently check the explicit length argument in format strings. Specially crafted format strings with overly large length arguments led to a crash of the Perl interpreter or even to execution of arbitrary attacker-defined code with the...
WebWizXSS.txt
Bug : XSS in Web Wiz Forums cookie stealing Bug founded by : [email protected] Comment : I found this bug in +- 1 hour after some bitch asked me to help him, but he haven't do shit LOL Greets to : HaCkZaTaN, Johnnie Walker, Morinex, j0ker, Woopie, siLgi, bcuzZ. Big Fuck to : cobradrive, 0x1fe er...
802.11b DoS exploit
While working to develop code for WIDZ that is equivalent to a standard Intrusion Detection system’s RESET or SHUN functionality, an effective 802.11b disruption of service attack has been discovered. I haven’t spotted any other postings so here we go…. FATA-jack - a modified version of the...