6092 matches found
php session extension global variable clobber
PHP 4 before 4.4.5, and PHP 5 before 5.2.1, when registerglobals is enabled, allows context-dependent attackers to execute arbitrary code via deserialization of session data, which overwrites arbitrary global variables, as demonstrated by calling sessiondecode on a string beginning with...
php session extension global variable clobber
PHP 4 before 4.4.5, and PHP 5 before 5.2.1, when registerglobals is enabled, allows context-dependent attackers to execute arbitrary code via deserialization of session data, which overwrites arbitrary global variables, as demonstrated by calling sessiondecode on a string beginning with...
php session extension global variable clobber
PHP 4 before 4.4.5, and PHP 5 before 5.2.1, when registerglobals is enabled, allows context-dependent attackers to execute arbitrary code via deserialization of session data, which overwrites arbitrary global variables, as demonstrated by calling sessiondecode on a string beginning with...
solaris/sparc connect-back (with XNOR encoded session) 600 bytes
No description provided by source. / black-RXenc-con-back-SOLARIS.c MIPS This is a relitivly small 600 byte shellcode that encodes all network trafic between the exploited process and the attacker. All clear-text shell i/o is encoded using a simple NOT algo before being transmitted on the wire...
PT-2007-2219 · Phorum · Phorum
Name of the Vulnerable Software and Affected Versions: Phorum version 5.1.18 Description: A cross-site scripting XSS issue in the register.php file allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The vendor disputes this issue, stating that characters are...
Imail 8.10-8.12 (RCPT TO) Remote Buffer Overflow Exploit (meta)
No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same...
Ipswitch IMail Server 8.10-8.12 - RCPT TO Remote Buffer Overflow (Metasploit)
This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...
Webfwlog <= 0.92 (debug.php) Remote File Disclosure Vulnerability
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + D.Script:ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-stable/All/webfwlog-0.92.tbz + D.Scrpit:http://webfwlog.sourceforge.net/...
Webfwlog 0.92 - debug.php Remote File Disclosure
Webfwlog 0.92 - debug.php Remote File Disclosure ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + D.Script:ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-stable/All/webfwlog-0.92.tbz + D.Scrpit:http://webfwlog.sourceforge.net/...
Aztek Forum 4.0 Multiple Vulnerabilities Exploit
No description provided by source. !/usr/bin/php ?php errorreportingEALL ^ ENOTICE; / header Aztek Forum 4.1 Multiple Vulnerabilities Exploit header ================================================== sploit Owner - root status Trying to register a new user sploit Login/Password - phpsploit8435...
Aztek Forum 4.0 - Multiple Vulnerabilities
Aztek Forum 4.0 - Multiple Vulnerabilities !/usr/bin/php Aztek Forum 4.1 Multiple Vulnerabilities Exploit header ================================================== sploit Owner - root status Trying to register a new user sploit Login/Password - phpsploit8435 status Trying to get database...
Online Media Technologies NCTsoft NCTAudioFile2 ActiveX buffer overflow
Overview The Online Media Technologies NCTsoft NCTAudioFile2 ActiveX control contains a buffer overflow vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Online Media Technologies NCTsoft provides an ActiveX control...
Upload Service 1.0 (top.php maindir) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ======================================================================== Upload Service 1.0 top.php maindir Remote File Inclusion Vulnerability ========================================================================...
Adobe Acrobat allows pointer overwrite via specially crafted PDF file
Overview Adobe Acrobat and Adobe Reader fail to properly handle a specially crafted PDF file, which may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Adobe Acrobat and Adobe Reader are applications designed to create and view Portable Document Format PDF...
CVE-2006-6487
Cross-site scripting XSS vulnerability in index.php in DT Guestbook dtguestbook 1.0f, when registerglobals is enabled, allows remote attackers to inject arbitrary web script or HTML via the error parameter...
Directory traversal
Directory traversal vulnerability in index.php in L2J Statistik Script 0.09 and earlier, when registerglobals is enabled and magicquotes is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the page parameter, as demonstrated by injecting PHP...
Magic Photo Storage Website - userregister.php?_config[site_path] Remote File Inclusion
Magic Photo Storage Website - userregister.php?configsitepath Remote File Inclusion source: https://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting...
L2J Statistik Script <= 0.09 (index.php page) Local File Include Exploit
No description provided by source. ? print ' | \ | \ \ / | | | | | | | \ \ \ / \ \ | \ \ / \ | \ | | | / \ | \ \ \ / / | | | | | | | | | | ||/ // |./ |/\ ./ |/ ||...
QUOTE&ORDERING SYSTEM 1.0 (ordernum) Multiple Vulnerabilities
No description provided by source. Title : QUOTE&ORDERING SYSTEM 1.0 ordernum Multiple Vulnerabilities Author : ajann Contact : : S.Page : ... $$ : $250.00 SQL--------------------------------------------------------- Register & Login Before Injection.. http://target/path//search.asp?ordernum=SQL...
Aratix <= 0.2.2b11 (inc/init.inc.php) Remote File Include Vulnerability
No description provided by source. +------------------------------------------------------------------------------------------- + Aratix = 0.2.2b11 inc/init.inc.php Remote File Include Vulnerability +------------------------------------------------------------------------------------------- +...