68kb Knowledge Base v1.0.0rc3 edit main settings CSRF

Exploit for php platform in category web applications ===================================================== 68kb Knowledge Base v1.0.0rc3 edit main settings CSRF ===================================================== Exploit Title: 68kb Knowledge Base v1.0.0rc3 edit main settings CSRF Date:...

openSUSE Security Update : compiz-fusion-plugins-main (compiz-fusion-plugins-main-1990)

The expo plugin in Compiz Fusion allowed local users with physical access to bypass the screen-saver by just dragging it aside. CVE-2008-6514: CVSS v2 Base Score: 6.2 %NASLMINLEVEL 70300 if !definedfunc"nasllevel" || nasllevel = 70000 && nasllevel = 70200 && nasllevel = 80000 && nasllevel 80502...

openSUSE Security Update : compiz-fusion-plugins-main (compiz-fusion-plugins-main-1990)

The expo plugin in Compiz Fusion allowed local users with physical access to bypass the screen-saver by just dragging it aside. CVE-2008-6514: CVSS v2 Base Score: 6.2 %NASLMINLEVEL 70300 if !definedfunc"nasllevel" || nasllevel = 70000 && nasllevel = 70200 && nasllevel = 80000 && nasllevel 80502...

vBulletin Blog 4.0.2 - Title Cross-Site Scripting

vBulletin Blog 4.0.2 - Title Cross-Site Scripting Vbulletin Blog 4.0.2 XSS Vulnerability Author: FormatXformat Version: Vbulletin 4.0.2 Dork: Powered by vBulletin™ Version 4.0.2 Copyright © 2010 vBulletin Solutions, Inc. All rights reserved. The script is affected by Permanent XSS vulnerability, ...

eGroupWare 1.6.002 and eGroupWare premium line 9.1 - Multiple Vulnerabilities

Advisory Name: Remote Command Execution in EGroupware Vulnerability Class: Remote Command Execution Release Date: 2010-03-09 Affected Applications: Confirmed in EGroupware 1.4.001+.002 and 1.6.001+.002. EGroupware Premium Line 9.1 and 9.2 is also affected. Other versions may also be affected...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php/Special/Main/Templates in WikyBlog 1.7.2 and 1.7.3 rc2 allows remote attackers to inject arbitrary web script or HTML via the which parameter in a copy action...

Mandriva Update for phonon-gstreamer MDVA-2010:034 (phonon-gstreamer)

Check for the Version of phonon-gstreamer OpenVAS Vulnerability Test Mandriva Update for phonon-gstreamer MDVA-2010:034 phonon-gstreamer Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribut...

DZOIC ClipHouse - Authentication Bypass

DZOIC ClipHouse - Authentication Bypass ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: DZOIC ClipHouse suffer from auth bypass remote sql injection Vendor: www.dzoic.com ? Software: DZOIC ClipHouse - PR!CE : $149.00 ? author: R3d-D3v!L ? TEAM: ArAB!AN...

Miniweb 2.0 Full Path Disclosure

Exploit for unknown platform in category web applications ================================ Miniweb 2.0 Full Path Disclosure ================================ Miniweb 2.0 Full Path Disclosure Name Miniweb 2.0 Vendor http://www.miniweb2.com X. INDEX I. ABOUT THE APPLICATION II. DESCRIPTION III...

PHP MultiPart Form-Data Denial of Service PoC

Exploit for unknown platform in category web applications ============================================= PHP MultiPart Form-Data Denial of Service PoC ============================================= !/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to 1 Wizardtracking.asp, 2 wizardoe2.asp, 3 your-register.asp, 4 main-whyregister.asp, and 5 your.asp in home/, and other unspecified vectors...

CVE-2009-3905

Multiple cross-site scripting XSS vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to 1 Wizardtracking.asp, 2 wizardoe2.asp, 3 your-register.asp, 4 main-whyregister.asp, and 5 your.asp in home/, and other unspecified vectors...

Mandrake Security Advisory MDVSA-2009:278 (compiz-fusion-plugins-main)

The remote host is missing an update to compiz-fusion-plugins-main announced via advisory MDVSA-2009:278. OpenVAS Vulnerability Test $Id: mdksa2009278.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:278 compiz-fusion-plugins-main Authors: Thomas Rein...

Mandriva Linux Security Advisory : compiz-fusion-plugins-main (MDVSA-2009:278)

A vulnerability has been found and corrected in compiz-fusion-plugins-main : The Expo plugin in Compiz Fusion 0.7.8 allows local users with physical access to drag the screen saver aside and access the locked desktop by using Expo mouse shortcuts, a related issue to CVE-2007-3920 CVE-2008-6514...

Neufbox NB4-R1.5.10-MAIN Persistent XSS Vulnerability

No description provided by source. 0000000000000000000000000000000000 000000000000000000000 00000000000000000000000000000000000 0000000000000000 00000000000000000000000000000000 + Neufbox NB4-R1.5.10-MAIN Persistent XSS + Author : 599eme Man + Contact : [email protected] + Thanks : Moudi, Kim,...

Neufbox NB4-R1.5.10-MAIN - Persistent Cross-Site Scripting

0000000000000000000000000000000000 000000000000000000000 00000000000000000000000000000000000 0000000000000000 00000000000000000000000000000000 + Neufbox NB4-R1.5.10-MAIN Persistent XSS + Author : 599eme Man + Contact : [email protected] + Thanks : Moudi, Kim, Neocoderz, Syltrox66, Sheiry, Shimik Root...

Neufbox NB4-R1.5.10-MAIN - Persistent Cross-Site Scripting

Neufbox NB4-R1.5.10-MAIN - Persistent Cross-Site Scripting 0000000000000000000000000000000000 000000000000000000000 00000000000000000000000000000000000 0000000000000000 00000000000000000000000000000000 + Neufbox NB4-R1.5.10-MAIN Persistent XSS + Author : 599eme Man + Contact : [email protected] +...

Neufbox NB4-R1.5.10-MAIN Persistent XSS Vulnerability

Exploit for hardware platform in category remote exploits ===================================================== Neufbox NB4-R1.5.10-MAIN Persistent XSS Vulnerability ===================================================== + Neufbox NB4-R1.5.10-MAIN Persistent XSS + Author : 599eme Man...

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow / HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: https://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Koh...

Multiple HTTP Server Low Bandwidth Denial of Service #2

No description provided by source. ?php / DOS for the vulnerbility at http://isc.sans.org/diary.html?storyid=6601 I wrote it in PHP because I find it funny to make PHP attack apache... I set it at 200 processes and it kill my test servers pretty quick. have fun kiddiez... greetz: m1m1, t4dp0le,...