431 matches found
Concrete CMS: FULL PATH DISCLOSUR
Full Path Disclosure FPD vulnerabilities enable the attacker to see the path to the webroot/file. e.g.: /home/omg/htdocs/file/. Certain vulnerabilities, such as using the loadfile within a SQL Injection query to view the page source, require the attacker to have the full path to the file they wis...
CVE-2014-0359
Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a guiinputtest.pl params parameter to servlet/Installer...
CVE-2013-7298
queryparams.cpp in cxxtools before 2.2.1 allows remote attackers to cause a denial of service infinite recursion and crash via an HTTP query that contains %% double percent characters...
Practico 13.9 - Multiple Vulnerabilities
Practico 13.9 Multiple Vulnerabilities Vendor: Practico Product web page: http://www.codigoabierto.org Affected version: 13.9 Summary: Practico is a free CMS software project released under license GNU GPL v2.0 for creating web applications in a completely visual and fast fashion. Without...
XML-RPC PingBack API Remote DoS Exploit (through xmlrpc.php)
Exploit for php platform in category dos / poc Exploit Title: XML-RPC PingBack API Remote Denial of Service exploit through xmlrpc.php Date: 04/01/2013 Category: Remote Exploit Author: D35m0nd142 Tested on: Debian Linux !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common; use...
BroadWorks - Call Detail Record Security Bypass
BroadWorks - Call Detail Record Security Bypass source: https://www.securityfocus.com/bid/44597/info BroadWorks is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and to obtain sensitive information. Successful exploits will...
CVE-2010-1909
Buffer overflow in the RunCmd method in the SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to execute arbitrary code via vectors involving "CreateProcess params." NOTE: some of these details are obtained...
Buffer overflow
Buffer overflow in the RunCmd method in the SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to execute arbitrary code via vectors involving "CreateProcess params." NOTE: some of these details are obtained...
CVE-2010-1909
Buffer overflow in the RunCmd method in the SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to execute arbitrary code via vectors involving "CreateProcess params." NOTE: some of these details are obtained...
TCPDF 4.5.0364.9.5 - params Attribute Remote Code Execution
TCPDF 4.5.0364.9.5 - params Attribute Remote Code Execution source: https://www.securityfocus.com/bid/39315/info TCPDF is prone to a security weakness that may allow attackers to execute arbitrary code. An attacker can exploit this issue in conjunction with other latent vulnerabilities to execute...
Apple iTunes Playlists Name Handling Buffer Overflow (CVE-2005-0043)
iTunes is a popular digital music player by Apple Computer. iTunes is capable of creating new playlists and opening up existing ones which conform to the PLS or M3U file formats. The PLS and M3U file formats are proprietary formats used for playing digital music streams. There exists a stack buff...
HP LoadRunner 9.5 remote file creation PoC
Exploit for unknown platform in category dos / poc ========================================== HP LoadRunner 9.5 remote file creation PoC ========================================== Title: HP LoadRunner 9.5 remote file creation PoC CVE-ID: OSVDB-ID: Author: Pyrokinesis Published: 2009-09-29 Verifie...
dhclient: stack overflow leads to arbitrary code execution as root
Stack-based buffer overflow in the scriptwriteparams method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option...
MemHT Portal 4.0.1 SQL Injection Code Execution Exploit
No description provided by source. !/usr/bin/perl =about MemHT 4.0.1 Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Due to weak params filtering we are able to make SQL-Injection. So, 1. Look at 'inc/ajax/ajaxrating.php', line 29. It is not enough to...
MemHT Portal 4.0.1 SQL Injection Code Execution Exploit
Exploit for unknown platform in category web applications ======================================================= MemHT Portal 4.0.1 SQL Injection Code Execution Exploit ======================================================= !/usr/bin/perl =about MemHT 4.0.1 Perl exploit AUTHOR discovered &...
MemHT Portal 4.0.1 - SQL Injection / Code Execution
!/usr/bin/perl =about MemHT 4.0.1 Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Due to weak params filtering we are able to make SQL-Injection. So, 1. Look at 'inc/ajax/ajaxrating.php', line 29. It is not enough to check whether script has been...
Cross site scripting
Cross-site scripting XSS vulnerability in UPM/English/login/login.asp in Commtouch Enterprise Anti-Spam Gateway 4 and 5 allows remote attackers to inject arbitrary web script or HTML via the PARAMS parameter...
CVE-2008-3082
Cross-site scripting XSS vulnerability in UPM/English/login/login.asp in Commtouch Enterprise Anti-Spam Gateway 4 and 5 allows remote attackers to inject arbitrary web script or HTML via the PARAMS parameter...
CVE-2008-3082
Cross-site scripting XSS vulnerability in UPM/English/login/login.asp in Commtouch Enterprise Anti-Spam Gateway 4 and 5 allows remote attackers to inject arbitrary web script or HTML via the PARAMS parameter...
Commtouch反垃圾邮件企业网关PARAMS参数跨站脚本漏洞
BUGTRAQ ID: 29957 Commtouch Anti-Spam是由以色列Commtouch公司开发的企业级垃圾邮件防护平台。 Commtouch Anti-Spam产品向用户定期发送邮件报告,列出所阻断的可疑垃圾邮件,然后用户可以在邮件中点击相关链接确认是否应放行可疑邮件。点击链接后,用户会被定向到一个登录页面,而这个登录页面没有正确的过滤PARAMS参数。如果攻击者发送了包含有恶意链接的邮件消息的话,用户受骗点击了消息中的链接就会导致跨站脚本攻击。 Commtouch Anti-Spam Enterprise Gateway 5 Commtouch Anti-Spam...