Cerberus Helpdesk 3.2.1 Rpc.PHP Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20598/info Cerberus Helpdesk is prone to an unauthorized-access vulnerability because the application fails to authenticate users properly, resulting in an improper-access validation. A workaround is available. An attacke...

Clipperz Password Manager Code Execution Vulnerability

Clipperz Password Manager suffers from a remote code execution vulnerability. Exploit Title : Clipperz Password Manager remote code execution vulnerability Author : Manish Kishan Tanwar Vendor : https://clipperz.is/opensource/clipperzpasswordmanager/ Download Link :...

Clipperz Password Manager - '/backend/PHP/src/setup/rpc.php' Remote Code Execution

source: https://www.securityfocus.com/bid/67498/info Clipperz Password Manager is prone to remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application...

TomatoCart 1.1.8.6 Local File Inclusion Vulnerability

TomatoCart version 1.1.8.6 suffers from a local file inclusion vulnerability. + Author: TUNISIAN CYBER + Exploit Title: TomatoCart 1.1.8.6 Local File Inclusion Vulnerability + Date: 14-02-2014 + Category: WebApp + Tested on: KaliLinux + Vendor: http://www.tomatocart.com/ + Friendly Sites:...

CVE-2008-5963

Gravity GTD (Getting Things Done) up to version 0.4.5 is affected by an eval-injection vulnerability in library/setup/rpc.php that allows remote attackers to execute arbitrary PHP code via the objectname parameter. This CVE (CVE-2008-5963) is rated high by NVD (base score 10.0) with network attac...

Gravity GTD <= 0.4.5 (rpc.php objectname) LFI/RCE Vulnerability

Exploit for unknown platform in category web applications =============================================================== Gravity GTD = 0.4.5 rpc.php objectname LFI/RCE Vulnerability =============================================================== :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;;...

Cross site scripting

Cross-site scripting XSS vulnerability in rpc.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter...

Sql injection

Multiple SQL injection vulnerabilities in Unobtrusive Ajax Star Rating Bar before 1.2.0 allow remote attackers to execute arbitrary SQL commands via the 1 q and 2 t parameters in a db.php and b rpc.php...

CVE-2007-3685

CVE-2007-3685 affects the Unobtrusive Ajax Star Rating Bar (rpc.php). The issue is a cross-site scripting (XSS) flaw that allows an attacker to inject arbitrary script/HTML via the q parameter in rpc.php, for versions before 1.2.0. The vulnerability is described across multiple sources as XSS in ...

CVE-2007-3684

Multiple SQL injection vulnerabilities in Unobtrusive Ajax Star Rating Bar before 1.2.0 allow remote attackers to execute arbitrary SQL commands via the 1 q and 2 t parameters in a db.php and b rpc.php...

Cerberus Helpdesk rpc.php Information Disclosure

Binary data 3797.prm...

CVE-2006-5428

rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a displaygetrequesters operation, which allows remote attackers to bypass the GUI login and obtain sensitive information ticket data via a direct request...

CVE-2006-5428

CVE-2006-5428 : Cerberus Helpdesk 3.2.1 contains an information-disclosure flaw in rpc.php where it does not verify a client’s privileges for display_get_requesters. This allows an unauthenticated or improperly authenticated user to bypass the GUI login and directly retrieve sensitive ticket data...

CVE-2006-5428

rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a displaygetrequesters operation, which allows remote attackers to bypass the GUI login and obtain sensitive information ticket data via a direct request...

Cerberus Helpdesk 3.2.1 - Rpc.php Unauthorized Access

Cerberus Helpdesk 3.2.1 - Rpc.php Unauthorized Access source: https://www.securityfocus.com/bid/20598/info Cerberus Helpdesk is prone to an unauthorized-access vulnerability because the application fails to authenticate users properly, resulting in an improper-access validation. A workaround is...

rssxt.txt

!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!! -------------------------------------------------------------------------------- Title : Joomla Rssxt = 1.0 Remote File Include Vulnerability -------------------------------------------------------------------------------- Author: CrackersChild cont@ct:...

Joomla Rssxt &lt;= 1.0 Remote File Include Vulnerability

!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!! -------------------------------------------------------------------------------- Title : Joomla Rssxt = 1.0 Remote File Include Vulnerability -------------------------------------------------------------------------------- Author: CrackersChild cont@ct:...