Mega File Manager 'name' Parameter Directory Traversal Vulnerability

Mega File Manager is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. Remote attackers can use specially crafted requests with directory- traversal sequences '../' to retrieve arbitrary files in the context of the application. Exploiting this...

Mega File Manager 1.0 File Download

Exploit Title: MegaFileManager FileDownload Vulnerability date: 2012-04-19 Author: i2sec-Min Gi Jo Software Link: http://www.awesomephp.com/?Download5 Version: Mega File Manager V 1.0 Tested on: Windows Description : There is no filtering on 'cimages.php' parameter 'name'. PoC :...

Mega File Manager - File Download

Mega File Manager - File Download Exploit Title: MegaFileManager FileDownload Vulnerability date: 2012-04-19 Author: i2sec-Min Gi Jo Software Link: http://www.awesomephp.com/?Download5 Version: Mega File Manager V 1.0 Tested on: Windows Description : There is no filtering on 'cimages.php' paramet...

Mega File Manager - File Download Vulnerability

Exploit for php platform in category web applications Exploit Title: MegaFileManager FileDownload Vulnerability date: 2012-04-19 Author: i2sec-Min Gi Jo Software Link: http://www.awesomephp.com/?Download5 Version: Mega File Manager V 1.0 Tested on: Windows Description : There is no filtering on...

K-Lite Mega Codec Pack 5.7.0 (.avi) use-after-free vulnerability

Exploit for windows platform in category local exploits Application :K-Lite Mega Codec Pack 5.7.0 .avi use-after-free vulnerability Auther : Senator of Pirates E-Mail : email protected FaceBook : /SenatorofPirates Bug : ---- Registers: eax=aa000080 ebx=00000000 ecx=719b3800 edx=00100000...

Path disclousure in MEGA PORTAL

Product: MEGA PORTAL Vendor: http://www.got.my Demo: http://www.got.my/MEGA-PORTAL/ Vulnerability Type: Path disclosure Risk level: medium Credit: Hector.x90 Vulnerability Details: A remote user can determine the full path to the web root directory and other potentially sensitive information. The...

Mega-D: March, 2010

The takedown of Mega-D, also known as Ozdok, was spearheaded by researchers at anti-botnet firm FireEye. The botnet, a byproduct of PC infections linked to the Mega-D Trojan, comprised tens of thousands of machines and was responsible for sending out a large portion of the spam on the Internet–at...

Mega Menager 3.4.0.9 DLL Hijacking

============ Advisory 02/03/2011 ============= / PoC Title: Mega Menager BOOL WINAPI DllMain HANDLE hinstDLL, DWORD fdwReason, LPVOID lpvReserved switch fdwReason case DLLPROCESSATTACH: exploit; case DLLTHREADATTACH: case DLLTHREADDETACH: case DLLPROCESSDETACH: break; return TRUE; int exploit...

Wordpress jQuery Mega Menu 1.0 Plugin Local File Inclusion

Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................WordPress jQuery Mega Menu 1.0 Vulnerability...........Local File Inclusion...

WordPress Plugin jQuery Mega Menu 1.0 - Local File Inclusion

WordPress Plugin jQuery Mega Menu 1.0 - Local File Inclusion Source: http://packetstormsecurity.org/files/view/98753/WordPressjQueryMegaMenu1.0-lfi.txt ------------------------------------------------------------------------ Software................WordPress jQuery Mega Menu 1.0...

WordPress jQuery Mega Menu Plugin 1.0 - Local File Inclusion

This vulnerability can be exploited to include arbitrary files. Solution Update the plugin...

WordPress jQuery Mega Menu 1.0 Local File Inclusion

------------------------------------------------------------------------ Software................WordPress jQuery Mega Menu 1.0 Vulnerability...........Local File Inclusion...

WordPress Plugin jQuery Mega Menu 1.0 - Local File Inclusion

Source: http://packetstormsecurity.org/files/view/98753/WordPressjQueryMegaMenu1.0-lfi.txt ------------------------------------------------------------------------ Software................WordPress jQuery Mega Menu 1.0 Vulnerability...........Local File Inclusion...

Alleged Mega-D Botnet Controller Pleads Not Guilty

The man accused of running the Mega-D spam-spewing botnet has pleaded not guilty to charges that he was using the botnet to send millions of spam messages a day, some of them laden with malware. Oleg Nikolaenko was arraigned in U.S. District Court in Wisconsin on Friday on charges that he violate...

FBI Arrests Alleged Head of Mega-D Botnet Operation

The FBI has arrested the man that they allege is behind the notorious Mega-D botnet, which at one point accounted for nearly a third of all of the spam on the Internet. The arrest came to light this week after the man was caught entering the U.S. last month on his way to a car show. The man that...

ФБР подозревает россиянина в организации крупнейшей спам-сети

Цитата: Федеральное Бюро Расследований США ведет следствие в отношении молодого россиянина, подозреваемого в запуске интернет-проекта Mega-D, который, как предполагается, ранее генерировал до трети спама в мировой паутине. Сеть Mega-D, за созданием которой, по данным ФБР, стоит подозреваемый в...

Joomla 1.6.0-Alpha2 Cross Site Scripting

Title:Joomla1.6.0-Alpha2 XSS Vulnerabilities Date: 2010-05-02 Author: mega-itec.com Software Link: http://joomlacode.org/gf/download/frsrelease/11322/45252/Joomla1.6.0-Alpha2-Full-Package.zip Version: 1.6.0-alpha2 Tested on: relevant os CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...

Joomla! 1.6.0 Alpha2 - Cross-Site Scripting

Joomla! 1.6.0 Alpha2 - Cross-Site Scripting Title:Joomla1.6.0-Alpha2 XSS Vulnerabilities Date: 2010-05-02 Author: mega-itec.com Software Link: http://joomlacode.org/gf/download/frsrelease/11322/45252/Joomla1.6.0-Alpha2-Full-Package.zip Version: 1.6.0-alpha2 Tested on: relevant os CVE : Code :...

Joomla! 1.6.0 Alpha2 - Cross-Site Scripting

Title:Joomla1.6.0-Alpha2 XSS Vulnerabilities Date: 2010-05-02 Author: mega-itec.com Software Link: http://joomlacode.org/gf/download/frsrelease/11322/45252/Joomla1.6.0-Alpha2-Full-Package.zip Version: 1.6.0-alpha2 Tested on: relevant os CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...

Apple Mega Patch Covers 88 Mac OS X Vulnerabilities

Apple Mega Patch Covers 88 Mac OS X Vulnerabilities Apple today released one of its biggest Mac OS X security updates in recent memory, covering a whopping with fixes for 88 documented vulnerabilities. The Mac OS X v10.6.3 update, which is considered “critical,” covers flaws that could lead to...