Squid proxy server DoS

Crash on request with empty header strings...

Maian Gallery 2 - Local File Download

!/usr/bin/python This vulnerability uses filegetcontents so we have some limitations, we cant execute PHP and we cant read files that the web server will interpret such as PHP, conf etc tested on: Ubuntu Linux 2.6.32 with php v5.3.2 registerglobals = Off PRIVATE 0DAY - code by mrme Vulnerability...

ColdUserGroup 1.06 - Blind SQL Injection

!/usr/bin/python ColdGen - coldusergroup v1.06 0day Remote Blind SQL Injection Exploit Vendor: http://www.coldgen.com/ Found by: mrme ----------------------------------------------- Script provided 'as is', without any warranty. Use for educational purposes only. Do not use this code to do anythi...

Как сделать впн из простого вебшелла.

Как сделать впн из вебшелла --- специально для rdot.org --- копирование только со ссылкой на источник Преамбула, или зачем это вообще нужно: Вопрос обеспечения собственной безопасности всегда актуален. Сокс цепочка соксов скрывает от жертвы IP атакующего, но траффик идёт в открытом виде, и может...

Websense Enterprise 6.3.3 Via: Bypass Still Exists

discovered by mrhinkydink PRODUCT: Websense Enterprise EXPOSURE: Trivial Web Policy Bypass III LINK: http://mrhinkydink.blogspot.com/2010/08/websenseisa-via-bypass-redux.html SYNOPSIS ======== On May 29, 2010 I demonstrated that by adding a "Via:" header to an HTTP request it is possible for a us...

CMSQLite 1.2 / CMySQLite 1.3.1 - Remote Code Execution

!/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Natural Killer "; if $argc 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n";...

PH Pexplorer <= 0.4.7.1 (lang.php) Remote Code Execution Exploit

Exploit for php platform in category web applications ================================================================ PH Pexplorer Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail : submitatinj3ct0r.com 1 0 0 1 1 0 I'm...

Internet Explorer HTTPS Proxy (CVE-2005-2830)

Microsoft Internet Explorer is a popular web browser bundled with the Microsoft Windows operating system. The browser is capable of communication with HTTP and HTTPS compliant servers. The browser may also be set up to use a proxy for accessing remote resources. An information disclosure...

CVE-2010-1637

The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number...

Nginx 0.7.65/0.8.39 (dev) - Source Disclosure / Download

TITLE: NGINX ENGINE X SERVER http://nginx.org/en/ ref-1 ======TESTED VERSIONS===== Unix versions are not vulnerable it only affects to NTFS file system Windows Stable versions: nginx/0.7.66 -- Not vulnerable nginx/0.7.65 -- Vulnerable nginx/0.7.64 -- Vulnerable nginx/0.7.63 -- Vulnerable...

HTTP Open Proxy Detection

Checks if an HTTP proxy is open. False positive are avoided verifying the HTTP return code and matching a pattern. The CONNECT method is verified only the return code. HTTP headers are shown regarding the use of proxy or load balancer. This module requires Metasploit:...

Joomla! Component mod_VisitorData 1.1 - Remote code Execution

Joomla! Component modVisitorData 1.1 - Remote code Execution Joomla Module Camp26 Visitor Data 1.1 Remote code Execution ============================================================ - Discovered by : Chip D3 Bi0s - Email : [email protected] - Date : 2010-04-28 - Severity : 9/10 CVSS scored...

CCProxy <= 6.2 - Telnet Proxy Ping Overflow

CCProxy. CVE-2004-2416. Remote exploit for windows platform $Id: ccproxytelnetping.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information...

Wing FTP Server HTTP Directory Traversal Vulnerability

Christian Navarrete has discovered a vulnerability in Wing FTP Server, which can be exploited by malicious people to disclose sensitive information. The vulnerability is caused due to an input validation error when processing HTTP requests. This can be exploited to access files outside the web ro...

Practical Web Security testing of HTTP truncated smuggling vulnerability-vulnerability warning-the black bar safety net

In this article, we will detailed to introduce the reader for the HTTP truncated and HTTP smuggling attack security testing techniques. We will by example demonstrate how to use the HTTP Protocol, certain properties, or the use of Web application weaknesses, or different proxy for HTTP message of...

Fedora Update for curl FEDORA-2010-2762

Check for the Version of curl OpenVAS Vulnerability Test Fedora Update for curl FEDORA-2010-2762 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

PHP File Sharing System 1.5.1 Directory Traversal / XSS / Shell Upload

Title: PHP File Sharing System 1.5.1 Multiple Vulnerabilities Date: March 8, 2010 Author: blake Download: http://sourceforge.net/projects/phpfilesadmin/ Version: 1.5.1 Tested on: Windows XP SP3 with xampplite 1 XSS http://192.168.1.149/fss/index.php?cam= 2 Directory transversal...

PHP File Sharing System v1.5.1 Multiple Vulnerabilities

Exploit for unknown platform in category web applications ======================================================= PHP File Sharing System v1.5.1 Multiple Vulnerabilities ======================================================= Title: PHP File Sharing System 1.5.1 Multiple Vulnerabilities Author:...

Fedora Update for squid FEDORA-2010-3064

Check for the Version of squid OpenVAS Vulnerability Test Fedora Update for squid FEDORA-2010-3064 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Joomla! Component user_id com_sqlreport - Blind SQL Injection

============================================================================== »Joomla Component userid comsqlreport Blind SQL Injection Vulnerability ============================================================================== » Script: Joomla » Language: PHP » Founder: Snakespc...