Linksys WRT54GL Remote Command Execution

Some Linksys Routers are vulnerable to OS Command injection. You will need credentials to the web interface to access the vulnerable part of the application. Default credentials are always a good starting point. admin/admin or admin and blank password could be a first try. Note: This is a blind O...

SonicWALL GMS/VIEWPOINT 6.x Analyzer 7.x - Remote Command Execution

!/usr/bin/perl Title: SonicWALL GMS/VIEWPOINT 6.x Analyzer 7.x Remote Root/SYSTEM exploit Name: sgmsRCE.pl Author: Nikolas Sotiriu lofi Use it only for education or ethical pentesting! The author accepts no liability for damage caused by this tool. use strict; use HTTP::Request::Common qwPOST; us...

pfSense 2.0.1 - Cross-Site Scripting Cross-Site Request Forgery Remote Command Execution

pfSense 2.0.1 - Cross-Site Scripting Cross-Site Request Forgery Remote Command Execution Exploit Title: pfSense 2.0.1 XSS & CSRF Remote root Access Date: 04/01/2013 Author: Yann CAM @ Synetis Vendor or Software Link: www.pfsense.org Version: 2.0.1 Category: XSS & CSRF Remote root Access Google...

LAN.FS Messenger 2.4 - Command Execution

LAN.FS Messenger 2.4 - Command Execution Title: ====== LAN.FS Messenger v2.4 - Command Execution Vulnerability Date: ===== 2012-11-14 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=760 VL-ID: ===== 760 Common Vulnerability Scoring System:...

LAN.FS Messenger v2.4 - Command Execution Vulnerability

Document Title: =============== LAN.FS Messenger v2.4 - Command Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=760 Release Date: ============= 2012-11-13 Vulnerability Laboratory ID VL-ID: ==================================== 760...

Novell ZENworks Asset Management rtrlet File Upload Traversal

Added: 10/09/2012 CVE: CVE-2011-2653 BID: 50966 OSVDB: 77583 Background Novell ZENworks is a resource management solution consisting of a management server and management agents. Problem The Asset Management module ZAM of ZENworks version 7.5 fails to validate the name of uploaded files via POST...

Joomla Component com_fabrik File Upload Vulnerability

Exploit for php platform in category web applications $ $ +================================================= ================+ | Joomla Component comFabrik Remote Shell Upload Vulnerability | +================================================= ================+ Google Dork :...

MachForm Remote Shell Upload

| @@@@@@@@ @@@@@@@@@ @@ @@ @@@@@ @@ @@ @@@@@@@@ | | @ @ @ @ @ @ @ @ @ @ @ @ @ | | @ @ @ @ @ @ @ @ @ @ @ @ @ | | @ @ @@@ @ @ @ @ @ @ @ @ @ @ @ | | @@@@@@@@ @@@ @@@ @ @ @ @ @ @ @ @ @ @@@@@@@@ | | @ @ @ @ @ @ @ @ @ @ @ @ @ | | @ @ @ @ @ @ @ @ @ @ @ @ @ | | @ @ @ @ @ @ @ @ @ @ @ @ @@@ @ | | @@@@@@@@ ...

Simple Web Server 2.2-rc2 - ASLR Bypass

Simple Web Server 2.2-rc2 - ASLR Bypass use IO::Socket; Exploit Title: SWS 2.2-rc2 - Remote code execution Egghunting + ASLR bypass Date: 28/8/2012 Special Regards to Mr.pr0n ,Corelan team , immunity u guys are first !!! based on a POC by MR. Pr0n Author: pole Tested on Windows 7 32bit NOTE : If...

Symantec Web Gateway Multiple Script Shell Command Execution (SYM12-011)

The Symantec Web Gateway install on the remote host is affected by a remote shell command execution vulnerability due to its failure to sanitize input to the 'ip' parameter of the 'fromha.php' script. An unauthenticated, remote attacker can exploit this vulnerability to save a random PHP script o...

Symantec Web Gateway Remote Shell Command Execution Vulnerability

Symantec Web Gateway is prone to a vulnerability that can allow an attacker to execute arbitrary commands. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Symantec Web Gateway 5.0.3.18 - Local/Remote File Inclusion / Remote Command Execution

!/usr/bin/python ''' The original patch for the Symantec Web Gateway 5.0.2 LFI vulnerability removed the /tmp/networkScript file but left the entry in /etc/sudoers, allowing us to simply recreate the file and obtain a root shell using a different LFI vulnerability. Timeline: 06 Jun 2012:...

ipswitch whatsup gold 15.02 - Persistent Cross-Site Scripting Blind SQL Injection Remote Code Execution

ipswitch whatsup gold 15.02 - Persistent Cross-Site Scripting Blind SQL Injection Remote Code Execution / Exploit Title: Ipswitch WhatsUp Gold 15.02 Stored XSS - Blind SQLi - RCE Date: Jul 22 2012 Author: muts Version: Ipswitch WhatsUp Gold 15.02 Vendor URL: http://www.ipswitch.com/ An attacker c...

Symantec Web Gateway Management Console Remote Shell Command Execution (CVE-2012-0297)

A remote command execution vulnerability has been reported in Symantec Web Gateway. The vulnerability is due to improper input validation by the web server. A remote attacker can exploit this issue by sending a specially crafted HTTP request to the affected server. Successful exploitation could...

B2CPrint Remote Shell Upload

0101010101 010101010101010 01 01 0101 0101 01 01 0101 0101 01 01 0101 0101 01 01 0101 0101 01 01 0101 0101 01 01 0101 0101 01 01 0101010101 01 01 0101 010 01 01 0101 010 01 01 0101 010 01 01 0101 010 01 01 0101 010 0101010101 0101 010 + Exploit Title : B2CPrint Remote File Uploader Vulnerability ...

Agora-Project 2.12.11 - Arbitrary File Upload

Agora-Project 2.12.11 - Arbitrary File Upload Exploit Title: agora-project2.12.1112-2011 Remote Shell Upload Google Dork: n0 N0obs Date: 10/06/2012 Exploit Author: Misa3l Vendor Homepage: http://sourceforge.net/projects/agora-project/ Software Link:...

Cobbler xmlrpc API power_system Method Remote Shell Command Execution

According to its self-reported version, the Cobbler install on the remote host is affected by a command injection vulnerability that can be exploited by sending a specially crafted username or password argument to the 'powersystem' method. Successful exploitation requires an authenticated user an...

Researchers Find Methods for Bypassing Google's Bouncer Android Security

Google’s Android platform has become the most popular mobile operating system both among consumers and malware writers, and the company earlier this year introduced the Bouncer system to look for malicious apps in the Google Play market. Bouncer, which checks for malicious apps and known malware,...

Symantec Web Gateway Remote Shell Command Execution Vulnerability

Symantec Web Gateway is prone to a command execution vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

SolarWinds Storage Manager 5.1.0 - Remote SYSTEM SQL Injection

SolarWinds Storage Manager 5.1.0 - Remote SYSTEM SQL Injection !/usr/bin/python Exploit Title: Solarwinds Storage Manager 5.1.0 Remote SYSTEM SQL Injection Exploit Date: May 2nd 2012 Author: muts Version: SolarWinds Storage Manager 5.1.0 Tested on: Windows 2003 Archive Url :...