ColdFusion Zero day vulnerability : Remote File Disclosure of Password Hashes

ColdFusion Zero day vulnerability : Remote File Disclosure of Password Hashes Yesterday Blackhatacademy Released Fully automated MySQL5 boolean based enumeration tool. Today Another post expose the most critical ColdFusion vulnerability affects about a tenth of all ColdFusion servers at the...

OrderSys <= 1.6.4 Sql Injection Vulnerabilities

Dear All, I have found multiple sql injection vulnerabilities in OrderSys = 1.6.4. The vendor knows the vulnerabilities and he is fixing them as stated in the enclosed advisory. See also http://www.bioinformatics.org/phplabware/labwiki/index.php?page=releasenotes Since the developer is currently...

Concrete5 5.4.2.1 Cross Site Scripting / SQL Injection

Exploit Title: Concrete5 = 5.4.2.1 SQL Injection and XSS Vulnerabilities Date: 2011-10-04 Author: Ryan Dewhurst ryandewhurst at gmail @ethicalhack3r www.ethicalhack3r.co.uk Software Link: http://sourceforge.net/projects/concretecms/files/concrete5/5.4.2.1/ Version: 5.4.2.1 tested 1.Vulnerability...

Concrete5 CMS < 5.4.2.1 - Multiple Vulnerabilities

Exploit Title: Concrete5 = 5.4.2.1 SQL Injection and XSS Vulnerabilities Date: 2011-10-04 Author: Ryan Dewhurst ryandewhurst at gmail @ethicalhack3r www.ethicalhack3r.co.uk Software Link: http://sourceforge.net/projects/concretecms/files/concrete5/5.4.2.1/ Version: 5.4.2.1 tested 1.Vulnerability...

JagoanStore CMS Arbitary file upload vulnerability

Software: JagoanStore CMS Vendor: www.jagoanstore.com Price: Rp.900.000 IDR Vuln Type: Arbitary file upload Author: eidelweiss contact: eidelweissatwindowslivedotcom Home: www.eidelweiss-advisories.blogspot.com Gratz: Devilzc0de, YOGYACARDERLINK, and YOU !!! References:...

Planeteria Design ASP SQL Injection

+------------------------------------------------------------------------------------------+ |------------------ Planeteria Design ASP MsSQL Injection Vulnerability -----------------| +------------------------------------------------------------------------------------------+ + Google Dork :...

JagoanStore CMS Arbitary file upload vulnerability

Exploit for php platform in category web applications =================================================================== JagoanStore CMS Arbitary file upload vulnerability =================================================================== Software: JagoanStore CMS Vendor: www.jagoanstore.com...

JagoanStore CMS Shell Upload

=================================================================== JagoanStore CMS Arbitary file upload vulnerability =================================================================== Software: JagoanStore CMS Vendor: www.jagoanstore.com Price: Rp.900.000 IDR Vuln Type: Arbitary file upload...

Joomla! Component mod_spo - SQL Injection

Exploit Title: Simple Page Option LFI Google Dork: inurl:modspo Date: 15/07/2011 Author: SeguridadBlanca.Blogspot.com or SeguridadBlanca Software Link: http://joomlacode.org/gf/download/frsrelease/11841/47776/modspo1.5.16.zip Version: 1.5.x Tested on: Backtrack and Windows 7 Simple Page Option –...

AIX 610005 : U841422

The remote host is missing AIX PTF U841422 which is related to the security of the package bos.rte.security.6.1 You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

Security Alert : vBulletin 4.X Security SQL Injection & CSRF/XSRF Exploits available !

Security Alert : vBulletin 4.X - SQL Injection & CSRF/XSRF Exploits available ! Two Serious Security Flaws are detected in vBulletin 4.X Versions and also their Security SQL Injection & CSRF/XSRF Exploits are now also available. Impact of these Flaws: Lots of big Forums are on vBulletin 4.X...

Google & Mozilla Patches Browsers Before Pwn2Own Hacker Contest !

Now that the annual Pwn2Own hacking contest is around the corner, both Google and Mozilla are busy patching flaws in their respective browsers to appear competent in the contest. Both internet giants have reportedly updated their browsers for the contest that is due to take place next week at the...

Windows Escalate Locked Desktop Unlocker

This module unlocks a locked Windows desktop by patching the respective code inside the LSASS.exe process. This patching process can result in the target system hanging or even rebooting, so be careful when using this module on production systems. This module requires Metasploit:...

CA20101231-01: Security Notice for CA ARCserve D2D (updated)

CA20101231-01: Security Notice for CA ARCserve D2D Issued: December 31, 2010 Last Updated: January 26, 2011 CA Technologies support is alerting customers to a security risk with CA ARCserve D2D. A vulnerability exists that can allow a remote attacker to execute arbitrary code. CA has issued an...

Klaus-rabus Dipl.Graphics-Designer Ecommerce Cross Site Scripting / Local File Inclusion

================================================================ Klaus-rabus Dipl.Graphics-Designer Ecommerce V.1.x Multiple Vulnerabilities ================================================================ Vendor: Dipl. Graphics-Designer KH Site : Http://www.klaus-rabus.de Author : R3VANBASTARD...

Critical PHP Bug Security Notice and Patch

Earlier this week, a PHP Security Notice was made due to a critical bug in PHP that could cause PHP to fail should a value of 2.2250738585072011e-308 be set to a PHP value. More information can be found here: http://bugs.php.net/bug.php?id=53632...

Pligg 1.1.2 Blind SQL Injection and XSS Vulnerabilities

Exploit for php platform in category web applications Credit: Michael Brooks Special thanks to Eric Heikkinen for patching these quickly. Blind SQL Injection http://host/pligg1.1.2/search.php?adv=1&status= 'and+sleep9or+sleep9or+1%3D' &search=on&advancesearch= Search...

Pligg CMS 1.1.2 - Blind SQL Injection Cross-Site Scripting

Pligg CMS 1.1.2 - Blind SQL Injection Cross-Site Scripting Credit: Michael Brooks Special thanks to Eric Heikkinen for patching these quickly. Blind SQL Injection http://host/pligg1.1.2/search.php?adv=1&status= 'and+sleep9or+sleep9or+1%3D' &search=on&advancesearch= Search...

Mitel's AWC Command Execution

http://www.procheckup.com/vulnerabilitymanager/vulnerabilities/pr10-14 PR10-14 Unauthenticated command execution within Mitel's AWC Mitel Audio and Web Conferencing Advisory publicly released: Tuesday, 21 December 2010 Vulnerability found: Wednesday, 21 July 2010 Vendor informed: Monday, 26 July...

5) Duh. Patch.

Much as we like to blame cybercriminals or unscrupulous merchants, much of the responsibility for security is in our hands. In particular: we’re responsible for the security of our computers and mobile devices. That’s especially true when we’re planning to use those systems to go shopping online,...