Local File Inclusion in PluXml

High-Tech Bridge SA Security Research Lab has discovered vulnerabiliy in PluXml, which can be exploited to perform Local File Inclusion attacks. 1 Local File Inclusion in PluXml 1.1 Input passed via the "defaultlang" POST parameter to /update/index.php is not properly verified before being used i...

[USN-1395-1] PyPAM vulnerability

========================================================================== Ubuntu Security Notice USN-1395-1 March 08, 2012 python-pam vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : python-pam vulnerability (USN-1395-1)

Markus Vervier discovered that PyPAM incorrectly handled passwords containing NULL bytes. An attacker could exploit this to cause applications using PyPAM to crash, or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description block directly from t...

Ubuntu Update for python-pam USN-1395-1

Ubuntu Update for Linux kernel vulnerabilities USN-1395-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13951.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for python-pam USN-1395-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net...

PyPAM 0.4.2 Double-Free Corruption

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 === LSE Leading Security Experts - Security Advisory 2012-03-01 === PyPAM -- Python bindings for PAM - Double Free Corruption - - --------------------------------------------------------- Affected Versio...

USN-1395-1: PyPAM vulnerability

Markus Vervier discovered that PyPAM incorrectly handled passwords containing NULL bytes. An attacker could exploit this to cause applications using PyPAM to crash, or possibly execute arbitrary code...

webgrind 1.0 Local File Inclusion

webgrind 1.0 file param Local File Inclusion Vulnerability Vendor: Joakim Nygard and Jacob Oettinger Product web page: http://code.google.com/p/webgrind Affected version: 1.0 v1.02 in trunk on github Summary: Webgrind is an Xdebug profiling web frontend in PHP5. Desc: webgrind suffers from a file...

webgrind 1.0 - file Local File Inclusion

webgrind 1.0 - file Local File Inclusion webgrind 1.0 file param Local File Inclusion Vulnerability Vendor: Joakim Nygard and Jacob Oettinger Product web page: http://code.google.com/p/webgrind Affected version: 1.0 v1.02 in trunk on github Summary: Webgrind is an Xdebug profiling web frontend in...

webgrind 1.0 (file param) Local File Inclusion Vulnerability

Summary Webgrind is an Xdebug profiling web frontend in PHP5. Description webgrind suffers from a file inclusion vulnerability LFI when input passed thru the 'file' parameter to index.php is not properly verified before being used to include files. This can be exploited to include files from loca...

Multiple vulnerabilities in 11in1

Advisory ID: HTB23071 Product: 11in1 Vendor: 11in1 Vulnerable Versions: 1.2.1 stable 12-31-2011 and probably prior Tested Version: 1.2.1 stable 12-31-2011 Vendor Notification: 25 January 2012 Public Disclosure: 15 February 2012 Vulnerability Type: Local File Inclusion, Сross-Site Request Forgery...

11in1 1.2.1 Stable 12-31-2011 Cross Site Request Forgery / Local File Inclusion

Advisory ID: HTB23071 Product: 11in1 Vendor: 11in1 Vulnerable Versions: 1.2.1 stable 12-31-2011 and probably prior Tested Version: 1.2.1 stable 12-31-2011 Vendor Notification: 25 January 2012 Public Disclosure: 15 February 2012 Vulnerability Type: Local File Inclusion, Сross-Site Request Forgery...

Multiple vulnerabilities in ImpressCMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in ImpressCMS, which can be exploited to perform cross-site scripting and local file inclusion attacks. 1 Multiple Arbitrary XSS vulnerabilities in ImpressCMS: CVE-2012-0986 1.1 Input appended to the URL after...

Local file inclusion in VtigerCRM

Vulnerability ID: HTB23054 Reference: https://www.htbridge.ch/advisory/localfileinclusioninvtigercrm.html Product: VtigerCRM Vendor: vtiger.com http://www.vtiger.com Vulnerable Version: 5.2.1 and probably prior Tested Version: 5.2.1 Vendor Notification: 19 October 2011 Vulnerability Type: Local...

VtigerCRM 5.2.1 Local File Inclusion

Vulnerability ID: HTB23054 Reference: https://www.htbridge.ch/advisory/localfileinclusioninvtigercrm.html Product: VtigerCRM Vendor: vtiger.com http://www.vtiger.com Vulnerable Version: 5.2.1 and probably prior Tested Version: 5.2.1 Vendor Notification: 19 October 2011 Vulnerability Type: Local...

iManager Plugin 1.2.8 - lang Local File Inclusion

iManager Plugin 1.2.8 - lang Local File Inclusion iManager Plugin v1.2.8 lang Local File Inclusion Vulnerability Vendor: net4visions.com Product web page: http://www.net4visions.com Affected version: lang.'.php' ; 70: $this - charset = $langcharset; 71: $this - dir = $langdirection; 72: $this -...

iBrowser Plugin 1.4.1 Local File Inclusion

iBrowser Plugin v1.4.1 lang Local File Inclusion Vulnerability Vendor: net4visions.com Product web page: http://www.net4visions.com Affected version: lang.'.php' ; 70: $this - charset = $langcharset; 71: $this - dir = $langdirection; 72: $this - langdata = $langdata; 73: unset $langdata ; 74:...

iBrowser Plugin v1.4.1 (lang) Local File Inclusion Vulnerability

Exploit for php platform in category web applications iBrowser Plugin v1.4.1 lang Local File Inclusion Vulnerability Vendor: net4visions.com Product web page: http://www.net4visions.com Affected version: lang.'.php' ; 70: $this - charset = $langcharset; 71: $this - dir = $langdirection; 72: $this...

Nginx Code Execution with Null Bytes to several hidden points and critical points-vulnerability warning-the black bar safety net

Last night, the Black pot on the microblogging made a foreigner explosion Nginx vulnerability, the beginning and few people pay attention, the ego immediately frame environmental testing to verify that my product is good handy online and tried the two sites also verify this vulnerability, so...

Nginx %0 0 empty bytes to execute arbitrary code(php)vulnerability-vulnerability warning-the black bar safety net

Ngnix in the encounter%0 0 empty bytes when the back-end FastCGI process is inconsistent, resulting in images embedded in the PHP code and then by accessing the xxx. jpg%0 0. php to execute the code Affected versions: nginx 0.5. nginx 0.6. nginx 0.7 = 0.7.65 nginx 0.8 = 0.8.37 In vulnerable...

Nginx %00空字节执行任意代码(php)漏洞

Possible Arbitrary Code Execution with Null Bytes, PHP, and Old Versions of nginx Ngnix在遇到%00空字节时与后端FastCGI处理不一致，导致可以在图片中嵌入PHP代码然后通过访问xxx.jpg%00.php来执行其中的代码 In vulnerable versions of nginx, null bytes are allowed in URIs by default their presence is indicated via a variable named zeroinuri define...