IP Board 3.x CSRF - Token hjiacking Vulnerability

Usage Info Latest and propabbly previous IPB verions suffers on vulnerability, which allows attacker to steal CSRF token of specific user. Function, which allows users to share forum links, does not properly sanitize user input. Mentioned token is attached in request as GET parameter, so it's abl...

Sagem Fast 3304-V2 - Authentication Bypass

No description provided by source. Title : Sagem F@st 3304-V2 Authentication Bypass Vendor : http://www.sagemcom.com Severity : High Tested on : Firefox, Google Chrome, Internet Explorer Tested Router : Sagem F@st 3304-V2 3304, 3464, 3504 may also be affected Date : 2014-09-04 Author : Yassine...

logoshows bbs 2.0 (dd/ich) Multiple Vulnerabilities

No description provided by source. Logoshows BBS 2.0 DD ZoRLu yildirimordulari.com - z0rlu.blogspot.com - turkguvenligi.info ref: http://www.milw0rm.com/exploits/9389 vuln: http://www.logoshows.com/bbs/database/globepersonnel.mdb Logoshows BBS 2.0 ICH yildirimordulari.com - z0rlu.blogspot.com -...

MOD Guthabenhack 1.3 For Woltlab Burning Board SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8321/info MOD Guthabenhack For Woltlab Burning Board reported prone to an SQL injection vulnerability. It has been reported that MOD Guthabenhack fails to sufficiently sanitize user input. It has been reported that this m...

PHPJabbers Post Comments 3.0 Cookie Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31467/info PHPJabbers Post Comments is prone to an authentication-bypass vulnerability because it fails to adequately verify user-supplied input used for cookie-based authentication. An attacker can exploit this...

FlexCell Grid Control 5.6.9 - Remote File Overwrite Exploit

No description provided by source. HTML BODY b Author : Houssamix br/ br/ br/ FlexCell Grid Control 5.6.9 Remote File Overwrite Exploit br/ ExportToXML is vuln to br/ b/ object id=hsmx classid=clsid:2A7D9CCE-211A-4654-9449-718F71ED9644/object SCRIPT / Report for Clsid:...

Firebug 1.03 Rep.JS Script Code Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23349/info Firebug is prone to a script-code-injection vulnerability because it fails to adequately escape user-supplied data. An attacker can exploit this issue to execute arbitrary script code in the context of the...

Sagem Fast 3304-V2 - Authentication Bypass (1)

Title : Sagem F@st 3304-V2 Authentication Bypass Vendor : http://www.sagemcom.com Severity : High Tested on : Firefox, Google Chrome, Internet Explorer Tested Router : Sagem F@st 3304-V2 3304, 3464, 3504 may also be affected Date : 2014-09-04 Author : Yassine Aboukir Contact : [email protected]...

IE Zero Day Used in Targeted Attacks Against Japanese Firms

Attackers exploiting a zero-day vulnerability in Microsoft’s Internet Explorer browser have compromised several popular local Japanese media outlets and have infected systems belonging to government, high tech and manufacturing organizations in Japan. Researchers at FireEye said the attacks appea...

McKesson Active-X 11.0.10.38 Enumeration

McKesson Rad Station ActiveX File/Variable Enumeration McKesson Rad Station File Enumeration This proof of concept will check if a file exists on the victim's machine or display the contents of an environmental variable. It uses the member OpenTextFile from DXVLauncherLib.McKLauncher and returns ...

FBI Used Firefox Exploit to Shutdown Illegal Site Running on Tor Network

TOR is the dark side of the Internet, the so-called dark web, which provides a safe haven to privacy advocates but is also where drugs, assassins for hire and other weird and illegal activities can allegedly be traded. A claimed zero-day vulnerability in Firefox 17 was used by the FBI to identify...

Firefox Zero-Day Exploit used by FBI to shutdown Child porn on Tor Network hosting; Tor Mail Compromised

TOR is the dark side of the Internet, the so-called dark web, which provides a safe haven to privacy advocates but is also where drugs, child pornography, assassins for hire and other weird and illegal activities can allegedly be traded. A claimed zero-day vulnerability in Firefox 17 was used by...

EspCMS 后台登录绕过漏洞再利用(再利用！)

简要描述： 声明下，此漏洞0413提交到360漏洞平台，之后0422官方修复了该漏洞。 现在提交到wooyun是绕过官方修复的方法，继续利用。 可以算是老漏洞提死回生，不应该算是同一个漏洞提交到两个地方，希望有关部门能够明白，尽管代码非常像。 详细说明：...

Microsoft Internet Explorer 8 - Fixed Col Span ID (Full ASLR + DEP Bypass) (MS12-037)

Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR + DEP Bypass MS12-037 function strtointstr return str.charCodeAt10x10000 + str.charCodeAt0; var free = "EEEE"; while free.length 500 free +=...

Internet Explorer 6, 7 and 8 vulnerable to remote code execution

Last Friday, we reported that the website of the U.S. Council of Foreign Relations was allegedly compromised by Chinese hackers who exploited the zero-day bug that was only discovered that same day. The CFR website was compromised with JavaScript that served malicious code to older IE browsers an...

Cisco DPC2100 - Denial of Service

Cisco DPC2100 - Denial of Service Exploit Title: Cisco DPC2100 Denial of Service Date: 09/01/2010 Author: Daniel Smith Software Link: http://www.cisco.com/ Version: HW:2.1/SW:v2.0.2r1256-060303 Tested on: OSX 10.6/Win7 CVE: CVE-2011-1613 =======================================================...

Sagem F@ST 2604 Cross Site Request Forgery

================================================================================ || | | || || || |/ | || |/ | | | | | | | | | | | \ | | | | \ ================================================================================ Exploit Title: Sagem F@ST 2604 CSRF Vulnerability ADSL Router Author: KinG...

#RefRef - Denial of Service ( DDoS ) Tool Developed by Anonymous

RefRef - Denial of Service DDoS Tool Developed by Anonymous Anonymous is developing a new DDoS tool which is said to exploit SQL vulnerabilities to support the group's future campaigns. So far, what they have is something that is platform neutral, leveraging JavaScript and vulnerabilities within...

JoomlaXi Cross Site Scripting

1.JoomlaXi persistent XSS vulnerabilty vendor: www.joomlaxi.com Author: 3psil0nLambDa a.k.a Karthik Email: [email protected] My blog: epsilonlambda.co.cc Google dork: © 2008-2010 JoomlaXi...

High-speed Ankang School Site program v3. 1. 1 cookie injection vulnerability-vulnerability warning-the black bar safety net

PS:seems to be oyaya kernel. Use the system notes: 1. The present program consists of extreme well-being and development,the symbolic charge a little Fee for everyone to use! 2. The present system for sharing procedures,the user the freedom to choose whether to use,in use, any problems and losses...