ROOT-OS-UBUNTU-PLUCKY-CVE-0000-0000 CVE-0000-0000 in rootio-bash - Patched by Root

Root has patched CVE-0000-0000 in the rootio-bash package for Root:Ubuntu:plucky. Multiple fixed versions available...

CVE-2025-2486

The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some previous versions inserted a secure-boot-based...

CVE-2024-40896

In libxml2 2.11 before 2.11.9, 2.12 before 2.12.9, and 2.13 before 2.13.3, the SAX parser can produce events for external entities even if custom SAX handlers try to override entity content by setting "checked". This makes classic XXE attacks possible...

CVE-2024-53856

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows an attacker to trigger rpgp crashes by providing crafted data. This vulnerability is fixed in 0.14.1...

CVE-2024-10978

Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or change different rows from those intended. An attack requires the application to use SET ROLE, SET SESSION AUTHORIZATION, or an equivalent feature. The problem arises when an application query uses...

Constructr CMS 3.03 Arbitrary File Upload

No description provided by source. !/usr/bin/env perl Constructr CMS 3.03 Arbitrary File Upload Author: plucky Email: [email protected] Vulnerable Page: /constructr/backend/media.php line App Download: http://sourceforge.net/projects/constructr/ Date: 23/03/2011 THX TO: yawn, shrod, h473 and...

Constructr CMS 3.03 - Arbitrary File Upload

Constructr CMS 3.03 - Arbitrary File Upload !/usr/bin/env perl Constructr CMS 3.03 Arbitrary File Upload Author: plucky Email: [email protected] Vulnerable Page: /constructr/backend/media.php line App Download: http://sourceforge.net/projects/constructr/ Date: 23/03/2011 THX TO: yawn, shrod, h4...

Constructr CMS 3.03 - Arbitrary File Upload

!/usr/bin/env perl Constructr CMS 3.03 Arbitrary File Upload Author: plucky Email: [email protected] Vulnerable Page: /constructr/backend/media.php line App Download: http://sourceforge.net/projects/constructr/ Date: 23/03/2011 THX TO: yawn, shrod, h473 and DoMinO use strict; use warnings; use...

Constructr CMS 3.03 Shell Upload

!/usr/bin/env perl Constructr CMS 3.03 Arbitrary File Upload Author: plucky Email: [email protected] Vulnerable Page: /constructr/backend/media.php line App Download: http://sourceforge.net/projects/constructr/ Date: 23/03/2011 THX TO: yawn, shrod, h473 and DoMinO use strict; use warnings; use...

iGaming CMS 1.5 - Blind SQL Injection

!/usr/bin/env perl =pod iGaming CMS Example: perl exploit.pl http://website.net/iGamingCMS1.5/ 1 Vulnerability: polls.class.php line 10-17 if !empty$REQUEST'id' $poll = $db-Execute" SELECT id,title FROM sppolls WHERE id = '" . $REQUEST'id' . "'"; $result = $db-Execute"SELECT FROM sppollsoptions...

iGaming CMS 1.5 Blind SQL Injection

!/usr/bin/env perl =pod iGaming CMS Example: perl exploit.pl http://website.net/iGamingCMS1.5/ 1 Vulnerability: polls.class.php line 10-17 if !empty$REQUEST'id' $poll = $db-Execute" SELECT id,title FROM sppolls WHERE id = '" . $REQUEST'id' . "'"; $result = $db-Execute"SELECT FROM sppollsoptions...