1502 matches found
WordPress Plugin WP Comment Remix 1.4.3 - SQL Injection
Advisory: http://chxsecurity.org/advisories/adv-3-full.txt PoC Mirror: http://chxsecurity.org/proof-of-concepts/wp-comment-remix-143.zip Attention: This is a Proof-of-Concept it was never intended to be fully functional Notes: Uses cURL / // Script Header function head print "\n WP Comment Remix...
Microsoft Organization Chart 2 - Remote Code Execution
Microsoft Organization Chart 2 - Remote Code Execution source: https://www.securityfocus.com/bid/31059/info Microsoft Organization Chart is prone to a remote code-execution vulnerability because of a memory-access violation. Remote attackers can exploit this issue by enticing victims into opening...
Unfixed XSS vulnerability at fop164.org
Security researcher JoCk3r, has submitted on 25/08/2008 a cross-site-scripting XSS vulnerability affecting fop164.org, which at the time of submission ranked 17279493 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/08/2008. It is currently...
Unfixed XSS vulnerability at www2006.org
Security researcher gudgip, has submitted on 17/08/2008 a cross-site-scripting XSS vulnerability affecting www2006.org, which at the time of submission ranked 419223 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/09/2008. It is currently...
Unfixed XSS vulnerability at hijacker.rpc1.org
Security researcher loxaXcracker, has submitted on 16/08/2008 a cross-site-scripting XSS vulnerability affecting hijacker.rpc1.org, which at the time of submission ranked 64214 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/09/2008. It is...
NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ================================================================== NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow Exploit ==================================================================...
ErfurtWiki <= R1.02b (css) Local File Inclusion Vulnerabilities
No description provided by source. / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org ...
ErfurtWiki R1.02b - Local File Inclusion
ErfurtWiki R1.02b - Local File Inclusion / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title...
Campus Bulletin Board v3.4 Multiple Remote Vulnerabilities
/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title :: Campus Bulletin Board v3.4 Multiple Remote...
Unfixed XSS vulnerability at www.amin007.org
Security researcher SMD, has submitted on 25/05/2008 a cross-site-scripting XSS vulnerability affecting www.amin007.org, which at the time of submission ranked 4361292 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 25/05/2008. It is currently...
Unfixed XSS vulnerability at www.lz95.org
Security researcher doublecheck, has submitted on 25/05/2008 a cross-site-scripting XSS vulnerability affecting www.lz95.org, which at the time of submission ranked 265803 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 25/05/2008. It is...
Unfixed XSS vulnerability at ga1.org
Security researcher PaPPy, has submitted on 23/05/2008 a cross-site-scripting XSS vulnerability affecting ga1.org, which at the time of submission ranked 167136 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 23/05/2008. It is currently unfixed...
Unfixed XSS vulnerability at www.type911.org
Security researcher death-angel, has submitted on 04/10/2008 a cross-site-scripting XSS vulnerability affecting www.type911.org, which at the time of submission ranked 712788 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 04/10/2008. It is...
Unfixed XSS vulnerability at www.crics8.org
Security researcher Camilo-TcK, has submitted on 03/09/2008 a cross-site-scripting XSS vulnerability affecting www.crics8.org, which at the time of submission ranked 2321522 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/09/2008. It is...
Unfixed XSS vulnerability at www.room211.org
Security researcher SaMTHG, has submitted on 03/09/2008 a cross-site-scripting XSS vulnerability affecting www.room211.org, which at the time of submission ranked 28152619 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/09/2008. It is...
Unfixed XSS vulnerability at www.pack630.org
Security researcher SaMTHG, has submitted on 03/09/2008 a cross-site-scripting XSS vulnerability affecting www.pack630.org, which at the time of submission ranked 22025336 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/09/2008. It is...
Unfixed XSS vulnerability at ilkmp3.org
Security researcher SeYMeN, has submitted on 03/05/2008 a cross-site-scripting XSS vulnerability affecting ilkmp3.org, which at the time of submission ranked 257662 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/05/2008. It is currently...
Unfixed XSS vulnerability at www.amd64.org
Security researcher Hanno Boeck, has submitted on 15/02/2008 a cross-site-scripting XSS vulnerability affecting www.amd64.org, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/03/2008. It is currently...
SkyFex Client ActiveX控件'start'方法缓冲区溢出漏洞
SkyFex Client是一款远程控制桌面软件。 SkyFex Client包含的ActiveX控件存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 ActiveX控件对"start"方法缺少正确的边界错误,构建恶意的WEB页,诱使用户访问,可触发缓冲区溢出,精心构建提交数据可能以应用程序进程权限执行任意指令。 SkyFex SkyFex Client 1.0.2 .77 厂商解决方案 ---------- 目前没有解决方案提供: https://skyfex.com/ SkyFex Client 1.0 "Start" Method Remote Stack...
xml2owl 0.1.1 - 'showcode.php' Remote Command Execution
--------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg --------------------------------------------------------------- Remote...