Pragyan CMS Code Execution / SQL Injection

Affected Software Pragyan CMS Product Link: http://sourceforge.net/projects/pragyan/ Technical Description 1 Code execution in INSTALL/install.php script not correctly validate entered fields. possibly write at password field string: ";echo exec$GET"a";echo " or in another fields with turned of...

NitroSecurity ESM 8.4.0a - Remote Code Execution

NitroSecurity ESM 8.4.0a - Remote Code Execution -- Product description: NitroView ESM is an enterprise-class security information and event management system that identifies, correlates, and remediates threats faster than any other SIEM on the market. -- Problem Description: During research it w...

Solarwindws TFTP Server 10.4.0.13 Denial Of Service

!/usr/bin/python print "\n" print " Nullthreat Network" print " Solarwinds TFTP Server Ver. 10.4.0.13" print " Elliott "Nullthreat" Cutright" print " [email protected]" print "" print "\n" Summary: An long Write Request 1000 A's will cause SolarWinds TFTP Server to crash. Tested on:...

McAfee Email Gateway (formerly IronMail) - Internal Information Disclosure

Advisory Name: Internal Information Disclosure in McAfee Email Gateway formerly IronMail Vulnerability Class: Information Disclosure Release Date: Tue Apr 6, 2010 Affected Applications: Secure Mail Ironmail ver.6.7.1 Affected Platforms: FreeBSD 6.2 / Apache-Coyote 1.1 Local / Remote: Local...

McAfee Email Gateway (formerly IronMail) - Local Privilege Escalation

McAfee Email Gateway formerly IronMail - Local Privilege Escalation Advisory Name: Local Privilege Escalation in McAfee Email Gateway formerly IronMail Vulnerability Class: Local Privilege Escalation Release Date: Tue Apr 6, 2010 Affected Applications: Secure Mail Ironmail ver.6.7.1 Affected...

NSOADV-2009-001: Symantec ConsoleUtilities ActiveX Control Buffer Overflow

Security Advisory NSOADV-2009-001 Title: Symantec ConsoleUtilities ActiveX Control Buffer Overflow Severity: Critical Advisory ID: NSOADV-2009-001 Found Date: 09.09.2009 Date Reported: 15.09.2009 Release Date: 02.11.2009 Author: Nikolas Sotiriu Mail: nso-research at sotiriu.de URL:...

Traidnt UP 2.0 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =========================================== Traidnt UP 2.0 Remote SQL Injection Exploit =========================================== !/usr/bin/ruby ============================================= Traidnt UP v2.0 Exploit SQL Injection...

IGSuite 3.2.4 - Reverse Shell Blind SQL Injection

IGSuite 3.2.4 - Reverse Shell Blind SQL Injection !/usr/bin/perl 05/18/2008 - IGSuite 3.2.4 Blind SQL Injection - ksOSe 05/21/2008 - Vendor notified 05/23/2008 - A patch was pushed via the igsuited daemonnot enabled by default Fix: run igsuited --update-igsuite or upgrade to 3.2.5-beta. Tested on...

IGSuite 3.2.4 - Reverse Shell / Blind SQL Injection

!/usr/bin/perl 05/18/2008 - IGSuite 3.2.4 Blind SQL Injection - ksOSe 05/21/2008 - Vendor notified 05/23/2008 - A patch was pushed via the igsuited daemonnot enabled by default Fix: run igsuited --update-igsuite or upgrade to 3.2.5-beta. Tested on IGSuite 3.2.4 on linux with MySQL, needs ncin pat...

Team SHATTER Security Advisory: IBM DB2 UDB Arbitrary file overwrite in SYSPROC.NNSTAT procedure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory IBM DB2 UDB Arbitrary file overwrite in SYSPROC.NNSTAT procedure April 17th 2008 Risk Level: High Affected versions: All versions of IBM DB2 Database Server. Remotely exploitable: Yes Authentication to Database Server is...

DSECRG-08-015.txt

Digital Security Research Group DSecRG Advisory DSECRG-08-015 Application: Dokeos E-Learning System Versions Affected: 1.8.4 Vendor URL: http://dokeos.com Bugs: Multiple SQL Injections,Multiple Blind SQL Injections,Multiple XSS, etc. Exploits: YES Reported: 25.01.2008 Vendor response: 28.01.2008...

[DSECRG-08-008] Textpattern 4.0.5 Multiple Security Vulnerabilities

Digital Security Research Group DSecRG Advisory DSECRG-08-008 Application: Txp CMS Versions Affected: 4.0.5 Vendor URL: http://www.textpattern.com Bugs: DOS, multiple XSS, etc. Exploits: YES Reported: 11.01.2008 Vendor response: 14.01.2008 Patch Released: 03.02.2008 Date of Public Advisory:...

Team SHATTER Advisory: IBM DB2 Buffer overflow in sysproc.auth_list_groups_for_authid

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory IBM DB2 Buffer overflow in sysproc.authlistgroupsforauthid August 31st 2007 Risk Level: High Affected versions: DB2 9.1 Fixpack 2 Enterprise server edition Remote exploitable: Yes Credits: This vulnerability wa...

EVA-Web 1.1 < 2.2 - 'index.php3' Remote File Inclusion

/ \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ Program Title EVA-Web 1.1=2.2 Remote File Inclusion Note A patch was released some time ago..but there was never an exploit released.. Script Download...

kiwicat-exec.txt

Path traversal security vulnerability in Kiwi CatTools TFTP up to 3.2.8 server can lead to information disclosure and remote code execution Risk: High DISCUSSION Kiwi CatTools TFTP server doesn't properly verify filename in PUT and GET request which can be used to download/upload any file from/to...

[KAPDA::#61] - PacPoll <= 4.0 Multiple Vulnerabilities

KAPDA New advisory Vulnerable product : PacPoll = 4.0 Vendor: http://www.pacosdrivers.com/asp/poll/poll.asp Vulnerability: Admin Logon bypass , SQLInjection Date : -------------------- Found : 2006/10/10 Vendor Contacted : N/A Release Date : 2006/10/25 Vulnerabilities: -------------------- Admin...

CYBSEC-SAPBC2.txt

The following advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSECSecurityAdvisoryArbitraryFileReadorDeleteinSAPBC.pdf CYBSEC S.A. www.cybsec.com Advisory Name: Arbitrary File Read/Delete in SAP BC Business Connector Vulnerability Class: Improper Input...

Interspire TrackPoint NX XSS Vulnerability

I.Vulnerability Interspire TrackPoint NX Cross Site Scripting Vulnerability II.Vendor Interspire www.interspire.com III.Affected Systems - Interspire TrackPoint NX 0.1 IV.About TrackPoint is a web based sales tracking software. V.Description An attacker is able to inject HTML and client-side scri...

[Hat-Squad] Remote Heap Corruption Vulnerability in Interaction SIP Proxy

Hat-Squad Advisory: Remote Heap Corruption Vulnerability in Interaction SIP Proxy Product: Interaction SIP Proxy Vendor: Interactive Intelligence Inc. http://www.inin.com Systems Affected: Vonexus Enterprise Interaction Center Interaction SipProxy 3.0.010 Release Date: 12/21/2005 Vendor Status:...

mailEnableDoS.txt

Synopsis: MailEnable Imap Remote DOS. Product: MailEnable Pro MailEnable Enterprise http://www.mailenable.com Version: Confirmed on MailEnable Pro 1.7 and MailEnable Enterprise 1.1 Author: Josh Zlatin-Amishav Date: November 24, 2005 Background: MailEnable's mail server software provides a powerfu...