1196 matches found
Joomla! Component Ozio Gallery 2 - Multiple Vulnerabilities
Joomla! Component Ozio Gallery 2 - Multiple Vulnerabilities Ozio Gallery 2 v 2.4 Open Mail Relay: To: From: Subject: Message: Directory Traversal: path:...
Joomla Component com_answers Multiple Vulnerabilities
Exploit for php platform in category web applications ===================================================== Joomla Component comanswers Multiple Vulnerabilities ===================================================== Exploit Title: Joomla Component Answers v2.3beta Multiple Vulnerabilities Date: 25...
Joomla! Component Answers 2.3beta - Multiple Vulnerabilities
Exploit Title: Joomla Component Answers v2.3beta Multiple Vulnerabilities Date: 25 May 2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/communication/forum/12652 Version: 2.3beta Tested on: PHP5, MySQL5 Blind SQL Injection =================== Requires: magicquotes OFF...
Joomla! Component Ozio Gallery 2 - Multiple Vulnerabilities
Ozio Gallery 2 v 2.4 Open Mail Relay: To: From: Subject: Message: Directory Traversal: path:...
Damianov.net Shoutbox 1.0 Cross Site Scripting
Exploit Title: damianov.net Shoutbox XSS Vulnerability Date: 13.05.2010 Author: Valentin Category: webapps/0day Version: 1.0 Tested on: Debian, Apache2, PHP5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title =...
PHP-Nuke 7.0 / 8.1 / 8.1.35 Wormable Remote Code Execution
!/usr/bin/php ?php / Wormable Remote Code Execution in PHP-Nuke 7.0/8.1/8.1.35newist as of release Vendor's Website:http://phpnuke.org/ Secuirty Researcher: Michael Brooks https://sitewat.ch Original Advisory: http://blog.sitewat.ch/2010/05/vulnerabilities-in-php-nuke.html Google hack: "Francisco...
Wormable Remote Code Execution in PHP-Nuke 7.0/8.1/8.1.35
No description provided by source. !/usr/bin/php ?php / Wormable Remote Code Execution in PHP-Nuke 7.0/8.1/8.1.35newist as of release Vendor's Website:http://phpnuke.org/ Secuirty Researcher: Michael Brooks https://sitewat.ch Original Advisory:...
PHP-Nuke 7.08.18.1.35 - Wormable Remote Code Execution
PHP-Nuke 7.08.18.1.35 - Wormable Remote Code Execution !/usr/bin/php ?php / Wormable Remote Code Execution in PHP-Nuke 7.0/8.1/8.1.35newist as of release Vendor's Website:http://phpnuke.org/ Secuirty Researcher: Michael Brooks https://sitewat.ch Original Advisory:...
PHP-Nuke 7.0/8.1/8.1.35 - Wormable Remote Code Execution
!/usr/bin/php ?php / Wormable Remote Code Execution in PHP-Nuke 7.0/8.1/8.1.35newist as of release Vendor's Website:http://phpnuke.org/ Secuirty Researcher: Michael Brooks https://sitewat.ch Original Advisory: http://blog.sitewat.ch/2010/05/vulnerabilities-in-php-nuke.html Google hack: "Francisco...
Rad User Manager Cross Site Scripting
Exploit Title: Rad User Manager XSS Vulnerabilities Date: 01.05.2010 Author: Valentin Category: webapps/0day Version: 2.90 Tested on: Debian Linux, Apache2, PHP5, MySQL5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information...
phpBB modified by Przemo <= 1.12.6p4 Denial Of Service Exploit
Exploit for php platform in category dos / poc ============================================================== phpBB modified by Przemo = 1.12.6p4 Denial Of Service Exploit ============================================================== ?php Exploit Title: phpBB modified by Przemo = 1.12.6p4 Denial...
chCounter - indirect SQL Injection Cross-Site Scripting
chCounter - indirect SQL Injection Cross-Site Scripting Exploit Title: chCounter indirect SQL Injection and XSS Vulnerabilities Date: 29.04.2010 Author: Valentin Category: webapps/0day Version: 3.1.1 Tested on: Debian, Apache2, PHP5, MySQL5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...
Simple forged X-Forwarded-For-bug warning-the black bar safety net
On the forged X-Forwarded-For purposes I will not say more. In the invasion of a PHP station, the GPC is ON, Character type injection all., while in PHP5, the GPC the default is open. But GPC for$SERVER without any effect, So you can fake the$SERVER to achieve the injection to the purpose. IP. in...
[SECURITY] [DSA-2018-1] New php5 packages fix null pointer dereference
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2018-1 [email protected] http://www.debian.org/security/ Raphael Geissert March 18, 2010 http://www.debian.org/security/faq -...
Debian DSA-2018-1 : php5 - DoS (crash)
Auke van Slooten discovered that PHP 5, an hypertext preprocessor, crashes because of a NULL pointer dereference when processing invalid XML-RPC requests. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Securit...
[SECURITY] [DSA-2018-1] New php5 packages fix null pointer dereference
------------------------------------------------------------------------ Debian Security Advisory DSA-2018-1 [email protected] http://www.debian.org/security/ Raphael Geissert March 18, 2010 http://www.debian.org/security/faq -...
ONECMS v2.5 SQL Injection Vulnerability
Exploit for unknown platform in category web applications ======================================= ONECMS v2.5 SQL Injection Vulnerability ======================================= Exploit Title: ONECMS v2.5 SQL INJECTION Date: 05.03.2010 Author: Ctacok and .:melkiy:. Software Link:...
SuSE 11 Security Update : PHP5 (SAT Patch Number 1978)
This update of PHP5 fixes : - CVE-2008-5624: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P : Permissions, Privileges, and Access Control CWE-264 - CVE-2008-5625: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P : Permissions, Privileges, and Access Control CWE-264 - Cross-Site...
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 6846)
This update of PHP5 fixes : - CVE-2008-5625: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P: Permissions, Privileges, and Access Control CWE-264 CVE-2008-5814: CVSS v2 Base Score: 2.6 LOW AV:N/AC:H/Au:N/C:N/I:P/A:N: Cross-Site Scripting XSS CWE-79 CVE-2009-2626: CVSS v2 Base Score: 6.4...
[SECURITY] [DSA-2001-1] New php5 packages fix multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2001-1 [email protected] http://www.debian.org/security/ Raphael Geissert February 19, 2010 http://www.debian.org/security/faq -...