Capture: HTTP JavaScript Keylogger

This modules runs a web server that demonstrates keystroke logging through JavaScript. The DEMO option can be set to enable a page that demonstrates this technique. Future improvements will allow for a configurable template to be used with this module. To use this module with an existing web page...

Mandriva Update for python MDVSA-2011:096 (python)

Check for the Version of python OpenVAS Vulnerability Test Mandriva Update for python MDVSA-2011:096 python Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

PSF-2011-1 CGI directory traversal (is_cgi() function)

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

CVE-2011-1015

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

CVE-2011-1015

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

(CGIHTTPServer): CGI script source code disclosure

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

(CGIHTTPServer): CGI script source code disclosure

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

httpdx Web server information disclosure

It's possible to obtain script source by adding space symbol...

HTML Email Creator 2.1b668 - html Local Overwrite (SEH)

/ :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered and Exploited by dun HTML Email Creator or or 520 | | NOPs jmp 11 pop-pop-ret NOPs shellcode NOPs 56 4 4 40 343 73 Greetz: suN8Hclf, str0ke...

NaviCopa webserver 3.0.1 (BOF/SD) Multiple Remote Vulnerabilities

No description provided by source. NaviCopa webserver 3.0.1 Multiple Vulnerabilities By: e.wiZz! Bosnian Idiot FTW! Mail: [email protected] Greetz goes to GYEZyou know who you are lol In the wild... Vendor site: http://www.navicopa.com/ Platforms: Windows OS only Info: Award Winning NaviCOPA is...

NaviCOPA Web Server 3.0.1 - Remote Buffer Overflow Script Source Disclosure

NaviCOPA Web Server 3.0.1 - Remote Buffer Overflow Script Source Disclosure NaviCopa webserver 3.0.1 Multiple Vulnerabilities By: e.wiZz! Bosnian Idiot FTW! Mail: [email protected] Greetz goes to GYEZyou know who you are lol In the wild... Vendor site: http://www.navicopa.com/ Platforms: Windows ...

Embedthis GoAhead < 2.1.8 Script Source Code Disclosure Vulnerability - Active Check

Embedthis GoAhead is prone to a script source code disclosure vulnerability. SPDX-FileCopyrightText: 2008 Ferdy Riphagen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Maian Uploader v4.0 XSS Vulnerabilities

---------------------------------------------------------------- Script : Maian Uploader v4.0 Type : XSS Vulnerabilities ---------------------------------------------------------------- Discovered by : Khashayar Fereidani Or Dr.Crash Our Team : IRCRASH...

CVE-2007-6651

Directory traversal vulnerability in wiki/edit.php in Bitweaver R2 CMS allows remote attackers to obtain sensitive information script source code via a .. dot dot in the suckurl parameter...

CVE-2007-6651

Directory traversal vulnerability in wiki/edit.php in Bitweaver R2 CMS allows remote attackers to obtain sensitive information script source code via a .. dot dot in the suckurl parameter...

Apache + smbfs information leak

It's possible to retrieve script source...

BarracudaDrive Web Server multiple security vulnerabilities

Directory traversal, script source access, dile deletion, HTML injection, DoS...

Code injection

BarracudaDrive Web Server before 3.8 allows remote attackers to read the source code for web scripts by appending a 1 + plus, 2 . dot, or 3 %80 and similar characters to the file name in the URL...

barracudadrive 3.7.2 - Multiple Vulnerabilities

Luigi Auriemma Application: BarracudaDrive Web Server http://barracudaserver.com/products/BarracudaDrive/ http://barracudaserver.com/products/HomeServer/ Versions: = 3.7.2 Platforms: Windows Bugs: A directory traversal B scripts source visualization C arbitrary files deleting by users D NULL...

Simple HTTPD multiple security vulnerabilities

Directory traversal, script source code access...