10 matches found
SA-CORE-2012-003 - Drupal core - Arbitrary PHP code execution and Information disclosure
Multiple vulnerabilities were discovered in Drupal core. Arbitrary PHP code execution A bug in the installer code was identified that allows an attacker to re-install Drupal using an external database server under certain transient conditions. This could allow the attacker to execute arbitrary PH...
Asterisk <= 1.0.12 / 1.2.12.1 (chan_skinny) Remote Heap Overflow (PoC)
Exploit for multiple platform in category dos / poc ====================================================================== Asterisk The following proof of concept causes the chanskippy to crash in different locations and due to memory corruption as well as double free calls, this is based on the...
SHOUTcast Server DoS detector vulnerability
This detects SHOUTcast Server's version. If the version equals 1.8.2 it is vulnerable to a denial of service attack. OpenVAS Vulnerability Test $Id: shoutcastversion.nasl 5676 2017-03-22 16:29:37Z cfi $ Description: SHOUTcast Server DoS detector vulnerability Authors: Noam Rathaus Copyright:...
Flash FTP Server Directory Traversal Vulnerability
Flash FTP Server easy-to-set-up FTP server for all Windows platforms. Some bugs were found that will allow a malicious user to write and read anywhere on the disk. OpenVAS Vulnerability Test $Id: flashftpserverdirectorytraversal.nasl 6053 2017-05-01 09:02:51Z teissa $ Description: Flash FTP Serve...
FSP Suite Directory Traversal Vulnerability
The FSP Suite daemon has been found to improperly filter out paths with trailing / or starting with /. This would allow an attacker access to files that reside outside the bounding FSP root directory. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a...
WebLibs File Disclosure Vulnerability (Dec 2004) - Active Check
WebLibs is prone to a file disclosure vulnerability. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
WebCalendar SQL Injection (Nov 2005) - Active Check
The remote installation of WebCalendar may allow an attacker to cause an SQL Injection vulnerability in the program allowing an attacker to cause the program to execute arbitrary SQL statements. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced...
phpMyWebhosting SQL Injection Exploit
Exploit for unknown platform in category web applications ===================================== phpMyWebhosting SQL Injection Exploit ===================================== !/usr/bin/perl Exploit code by Noam Rathaus of Beyond Security Ltd. The following exploit code will use a valid username and...
phpMyWebhosting - SQL Injection
!/usr/bin/perl Exploit code by Noam Rathaus of Beyond Security Ltd. The following exploit code will use a valid username and password combination, to cause an SQL injection. Using the SQL injection, the Perl script elevates the privileges of the user provided to administrative. use IO::Socket; us...
PlaySms 0.7 - SQL Injection
PlaySms 0.7 - SQL Injection !/usr/bin/perl PlaySMS version 0.7 and prior SQL Injection PoC Written by Noam Rathaus of Beyond Security Ltd. use IO::Socket; use strict; my $host = $ARGV0; my $remote = IO::Socket::INET-new Proto = "tcp", PeerAddr = $host, PeerPort = "80" ; unless $remote die "cannot...