Limny 2.0 - Cross-Site Request Forgery (Create Admin User)

Limny 2.0 - Cross-Site Request Forgery Create Admin User /¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯\ :Limny 2.0 CSRF : / /Discovered By: \ |Luis Santana | / Overview ¯¯¯¯¯¯¯¯¯¯ The Limny 2.0 CMS is vulnerable to a Cross-Site-Request Forgery exploit which allows for a malicious attacker to create their own...

MSN Editor 0DAY-vulnerability warning-the black bar safety net

Simple to say under the use of the method. Click on the image upload will appear after the upload page, the address is http://www.xxx.cn/admin/uploadPic.asp?language=&editImageNum=0&editRemNum= With ordinary picture after uploading, the address is...

FreeBSD ZFS ZIL不安全文件权限漏洞

Bugraq ID: 37657 FreeBSD是一款基于BSD的操作系统。 FreeBSD ZFS存在安全漏洞，本地攻击者可以利用漏洞获得敏感信息或提升特权。 当重播setattr事务时，重播代码默认会以不安全的权限设置属性，当记录这些事务信息时没有再次更改这些属性。 系统崩溃或掉电等情况下会把部分文件以07777属性设置。这可导致获得敏感信息或提升特权。 FreeBSD FreeBSD 8.0-STABLE FreeBSD FreeBSD 8.0-RELEASE FreeBSD FreeBSD 7.2-STABLE FreeBSD FreeBSD 7.1-STABLE FreeBSD...

phpwind 7.5 apps/groups/index.php远程包含漏洞

apps/groups/index.php 里$route和$basePath变量没有初始化,导致远程包含或者本地包含php文件,导致执行任意php代码 ?php if $route == "groups" requireonce $basePath . '/action/mgroups.php'; elseif $route == "group" requireonce $basePath . '/action/mgroup.php'; elseif $route == "galbum" requireonce $basePath . '/action/mgalbum.php';...

CentOS 5 : krb5 (CESA-2009:0408)

Updated krb5 packages that fix various security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and servers to authentica...

AIX 610003 : U828452

The remote host is missing AIX PTF U828452 which is related to the security of the package devices.iscsi.disk.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

AIX 530007 : U826224

The remote host is missing AIX PTF U826224 which is related to the security of the package devices.chrp.IBM.lhea.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc...

F-SECURE - Generic PDF detection bypass

No description provided by source. F-SECURE multiple products - Generic PDF detection bypass Cheap plug : If you are interested in client-side vulnerabilities visit HACK.LU starting tomorrow 28-30 Oct with : Workshop: Bypassing the Perimeter: Client Side Exploitation - Nitesh Dhanjani, Billy K Ri...

FreeBSD Security Advisory FreeBSD-SA-09:13.pipe

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-09:13.pipe Security Advisory The FreeBSD Project Topic: kqueue pipe race conditions Category: core Module: kern Announced: 2009-10-02 Credits: Przemyslaw Frasunek...

[ONSEC-09-017] Blogolet PHP including

ONSEC-09-017 Blogolet PHP including Цель: Blogolet CMS Тип: PHP инъекция Угроза: Высокая Дата обнаружения: 21.09.2009 Дата оповещения разработчика: 21.09.2009 Дата выхода исправления: 21.09.2009 Автор: Vladimir Vorontsov OnSec Russian Security Group onsec dot ru Описание: Уязвимость существует...

Fedora 10 : drupal-6.14-1.fc10 (2009-9751)

Fixes SA-CORE-2009-008 http://drupal.org/node/579482 Remember to log in to your site as the admin user before upgrading this package. After upgrading the package, browse to http://host/drupal/update.php to run the upgrade script. Multiple vulnerabilities and weaknesses were discovered in Drupal...

Dnsmasq < 2.50 Heap Overflow & Null pointer Dereference Vulns

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server 1. Advisory Information Title: Dnsmasq Heap Overflow and...

Discuz! Plugin Crazy Star < = 2.0 Sql injection Vulnerability-vulnerability warning-the black bar safety net

========================Author============================ + Founded : ZhaoHuAn + Contact : ZhengXingatshandagamesdotcom + Blog : http://www.patching.net/zhaohuan/ + Date : August, 26th 2 0 0 9 Double Seventh Festival ========================Soft Info========================= Software: Discuz!...

Discuz! Plugin Crazy Star <= 2.0 (fmid) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =================================================================== Discuz! Plugin Crazy Star = 2.0 fmid SQL Injection Vulnerability ===================================================================...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

osTicket Admin Login Blind SQL Injection

nGenuity Information Services - Security Advisory Advisory ID: NGENUITY-2009-007 osTicket Admin Login Blind SQL Injection Application: osTicket v1.6 RC4 Vendor: osTicket Vendor website: http://www.osticket.com Author: Adam Baldwin [email protected] I. BACKGROUND "osTicket is a widely-us...

osTicket 1.6 RC4 Admin Login Blind SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================== osTicket 1.6 RC4 Admin Login Blind SQL Injection Vulnerability ============================================================== nGenuity Information Services - Security Advisory...

osTicket 1.6 RC4 - Admin Login Blind SQL Injection

nGenuity Information Services - Security Advisory Advisory ID: NGENUITY-2009-007 osTicket Admin Login Blind SQL Injection Application: osTicket v1.6 RC4 Vendor: osTicket Vendor website: http://www.osticket.com Author: Adam Baldwin [email protected] I. BACKGROUND "osTicket is a widely-us...

Patch Counting: Horseshoes and Hand Grenades

Like the old saying goes, “Close only counts in horseshoes and hand grenades.” I’ve developed a corollary this week, “The ‘number of flaws’ only matters to vulnerability assessment scanners and journalists.” I’ve read many news stories this week talking about the record number of...

FreeBSD Security Advisory FreeBSD-SA-09:09.pipe

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-09:09.pipe Security Advisory The FreeBSD Project Topic: Local information disclosure via direct pipe writes Category: core Module: kern Announced: 2009-06-10...