17 matches found
CVE-2026-9360
A security flaw has been discovered in Edimax EW-7438RPn 1.28a. Affected by this issue is the function formwlencrypt24g of the file /goform/formwlencrypt24g of the component POST Request Handler. The manipulation of the argument key1 results in buffer overflow. The attack can be launched remotely...
CVE-2025-9841
A security vulnerability has been detected in code-projects Mobile Shop Management System 1.0. This affects an unknown function of the file AddNewProduct.php. The manipulation of the argument ProductImage leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit...
CVE-2025-9148
A vulnerability was found in CodePhiliaX Chat2DB up to 0.3.7. This affects an unknown function of the file ai/chat2db/server/web/api/controller/data/source/DataSourceController.java of the component JDBC Connection Handler. The manipulation results in sql injection. The attack can be executed...
CVE-2025-8822
CVE-2025-8822 affects Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. The vulnerable component is the function algDisable in the file /goform/setOpMode . Manipulating the argument opMode triggers a stack-based buffer overflow , enabling a remote exploit. The exploit has ...
CVE-2024-5234 Campcodes Complete Web-Based School Management System teacher_salary_history1.php sql injection
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /view/teachersalaryhistory1.php. The manipulation of the argument index leads to sql injection. The attack may be initiated...
Siemens RUGGEDCOM ROS Devices
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
Debian dla-3153 : libksba-dev - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3153 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3153-1 [email protected] https://www.debian.org/lts/security/...
ProFTPD 1.2.7 - 1.2.9rc2 Remote Root & brute-force Exploit
No description provided by source. / ProFTPd 1.2.7 - 1.2.9rc2 remote r00t exploit -------------------------------------------- By Haggis This exploit builds on the work of bkbll to create a working, brute-force remote exploit for the \n procesing bug in ProFTPd. Tested on SuSE 8.0, 8.1 and RedHat...
Java Applet AverageRangeStatisticImpl Remote Code Execution
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' class...
httpdx <= 0.8 FTP Server Delete/Get/Create Directories/Files Exploit
No description provided by source. / Httpdx Server FTP v0.8 Remote Arbitrary Directories & files Vulnerability ------------------------------------------------------------------------- Arbitrary: ---------- The vulnerability is caused due to an input validation error when processing FTP requests...
Internet Bug Bounty: Flash Sandbox Bypass
Adobe Flash Player issue 2719 and 2720. Exploit of this bug uses 2 separate vulnerabilities. 2720 is a bug which is able to, from the local-with-file sandbox, default local sandbox, open both local and remote files, local files and http/https resources. An attacker could for example read your...
OpenSSL < 0.9.8l and previous versions Multiple Vulnerability
Exploit for unknown platform in category remote exploits ============================================================= OpenSSL 0.9.8l and previous versions Multiple Vulnerability ============================================================= SecurityRisk : High Security Risk High About Arrow Remot...
iFTPStorage For iPhone / iPod Denial Of Service
!/usr/bin/perl Exploit: iFTPStorage for Iphone\Ipod - Remote Dos Exploit Date: 20/02/10 Author: Ale46 Software Link: http://itunes.apple.com/us/app/iftpstorage/id333357690?mt=8 Version: 1.2 Tested on: Iphone 3GS with 3.1.2 firmware Note: iFTSTorage Lite is also vulnerable Greetz: Gandalf use...
WebLogic 10.0 Mod_wl 远程POST数据导致栈溢出
No description provided by source...
32bit FTP (09.04.24) - Banner Remote Buffer Overflow
32bit FTP 09.04.24 - Banner Remote Buffer Overflow...
Ask Toolbar ToolbarSettings ActiveX控件远程栈溢出漏洞
BUGTRAQ ID: 25785 Ask Toolbar是安装在Internet Explorer和Firefox浏览器上的搜索工具栏。 Ask Toolbar的ActiveX控件实现上存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制用户系统。 AskJeevesToolBar.SettingsPlugin.1 ActiveX控件(askBar.dll)在处理ShortFormat属性时存在栈溢出漏洞。如果用户受骗访问了恶意网页并向该属性传送了超过500字节的超长字符串的话,就可能触发这个溢出,导致执行任意指令。 Ask.com Ask Toolbar 4.0.2.53...
MS03-049 Microsoft Workstation Service NetAddAlternateComputerName Overflow
This module exploits a stack buffer overflow in the NetApi32 NetAddAlternateComputerName function using the Workstation service in Windows XP. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...