PHP "multipart/form-data" Denial of Service Exploit (Python)

No description provided by source. !/usr/bin/python -- coding: utf-8 -- Author: Eren Turkay eren .-. pardus.org.tr, 2009/11/20 http://www.pardus.org.tr/eng/ Credits: Bogdan Calin from Acunetix Description: Exploit to cause denial of service on any host that runs PHP via temporary file exhaustion...

cotonti CMS 0.9.4 - Multiple Vulnerabilities

Cotonti CMS v0.9.4 Multiple Remote Vulnerabilities Vendor: Cotonti Team Product web page: http://www.cotonti.com Affected version: 0.9.4 Siena Summary: Cotonti is a powerful open-source web development framework and content manager with a focus on security, speed and flexibility. Desc: Input pass...

iBrowser Plugin 1.4.1 Local File Inclusion

iBrowser Plugin v1.4.1 lang Local File Inclusion Vulnerability Vendor: net4visions.com Product web page: http://www.net4visions.com Affected version: lang.'.php' ; 70: $this - charset = $langcharset; 71: $this - dir = $langdirection; 72: $this - langdata = $langdata; 73: unset $langdata ; 74:...

Tugux CMS 1.2 (pid) arbitrary file deletion defect and repair-vulnerability warning-the black bar safety net

Tugux CMS 1.2 pid Remote Arbitrary File Deletion Vulnerability Vendor: Tugux Studios Product web page: http://www.tugux.com Affected version: 1.2 Summary: Tugux CMS is a free open source content management system CMS and application that powers the entire web. Desc: Input passed to the 'pid'...

TCExam 11.2.011 Cross Site Scripting

TCExam =11.2.011 Multiple Cross-Site Scripting Vulnerabilities Vendor: Tecnik.com s.r.l. Product web page: http://www.tcexam.org Affected version: 11.2.009, 11.2.010 and 11.2.011 Summary: TCExam is a FLOSS system for electronic exams also know as CBA - Computer-Based Assessment, CBT -...

Pacer Edition CMS 2.1 - 'l' Local File Inclusion

Pacer Edition CMS 2.1 l param Local File Inclusion Vulnerability Vendor: The Pacer Edition Product web page: http://www.thepaceredition.com Affected version: RC 2.1 SVN: 867 Summary: The 'Pacer Edition' is a Content Management SystemCMS written using PHP 5.2.9 as a minimum requirement. The Pacer...

Pacer Edition CMS 2.1 (rm) Remote Arbitrary File Deletion Exploit

Summary The 'Pacer Edition' is a Content Management SystemCMS written using PHP 5.2.9 as a minimum requirement. The Pacer Edition CMS was based from Website baker core and has been completely redesigned with a whole new look and feel along with many new advanced features to allow you to build sit...

Tugux CMS 1.2 XSS / LFI / SQL Injection / URL Redirection

Title: Tugux CMS 1.2 Multiple Remote Vulnerabilities ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯ Vendor: Tugux Studios ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯ Product web page: http://www.tugux.com...

PHP 5.3.1 xmlrpc扩展空指针引用拒绝服务漏洞

No description provided by source...

TutorialMS v1.4 (show) Remote SQL Injection Vulnerability

Exploit for php platform in category web applications TutorialMS v1.4 show Remote SQL Injection Vulnerability . . --------------------------------------------------------------------------------- | | | Vendor: TutorialMS.com | | Product web page: http://www.tutorialms.com | | Affected version: 1....

DoceboLms 4.0.4 - Multiple Persistent Cross-Site Scripting Vulnerabilities

DoceboLms 4.0.4 - Multiple Persistent Cross-Site Scripting Vulnerabilities DoceboLMS 4.0.4 Multiple Stored XSS Vulnerabilities function xss1document.forms"xss1".submit; function xss2document.forms"xss2".submit; input type="hidden" name="authentic...

CultBooking 2.0.4 Local File Inclusion

CultBooking 2.0.4 lang Local File Inclusion Vulnerability Vendor: Cultuzz Digital Media GmbH Product web page: http://www.cultuzz.com Affected version: 2.0.4 Summary: Open source hotel booking system Internet Booking Engine IBE. Via a central api called CultSwitch it is possible to make bookings...

Mandriva Update for php MDVSA-2010:068 (php)

Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDVSA-2010:068 php Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

CVE-2010-0397

The xmlrpc extension in PHP 5.3.1 does not properly handle a missing methodName element in the first argument to the xmlrpcdecoderequest function, which allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash and possibly have unspecified oth...

CVE-2010-0397

The xmlrpc extension in PHP 5.3.1 does not properly handle a missing methodName element in the first argument to the xmlrpcdecoderequest function, which allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash and possibly have unspecified oth...

PHP 5.3.1 - session_save_path() Safe_mode() Restriction Bypass Exploiot

PHP 5.3.1 - sessionsavepath Safemode Restriction Bypass Exploiot source: https://www.securityfocus.com/bid/38182/info PHP is prone to a 'safemode' restriction-bypass vulnerability. Successful exploits could allow an attacker to write session files in arbitrary directions. This vulnerability would...

PHP 5.3.1 open_basedir bypass

hi, in php 5.3.1 security changelog, we can read, that safemode bypass in tempnam has been already fixed. But safemode in 5.3 line is deprecated. We can understand security fix for openbasedir bypass, but not for safemode in 5.3. Annoying is the fact, that exploit for bypass openbasedir or safemo...

PHP 5.3.1 version before the denial of service attack vulnerability(with test code)-vulnerability warning-the black bar safety net

Code: PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan said Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print"" print "PHP MultiPart Form-Data Denial of Service proof of...

CVE-2009-3558

The posixmkfifo function in ext/posix/posix.c in PHP before 5.2.12 and 5.3.x before 5.3.1 allows context-dependent attackers to bypass openbasedir restrictions, and create FIFO files, via the pathname and mode arguments, as demonstrated by creating a .htaccess file...

PHP "multipart/form-data" denial of service

No description provided by source. Description ------------ PHP version 5.3.1 was just released. This release contains a patch for a denial of service condition we've reported on 27 October 2009. The problem is related with PHP's handling of RFC 1867 Form-based File Upload in HTML. When you send ...