3100 matches found
PHPLive! 3.2.2 setup/footer.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the brows...
Acoustica Mixcraft <= 4.2 Build 98 (mx4 file) Local BOF Exploit
No description provided by source. !/usr/bin/perl Acoustica Mixcraft mx4 file Local Buffer Overflow Exploit Author: Koshi Date: 08-28-08 0day Application: Acoustica Mixcraft Versions: Possibly Older / 4.1 Build 96 / 4.2 Build 98 Site: http://acoustica.com/mixcraft/download.htm Tested On: Windows ...
2X ThinClientServer 5.0 sp1-r3497 TFTP Service - Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28504/info 2X ThinClientServer is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue allows an attacker to access arbitrary files outside...
BlackJumboDog FTP Server 3.6.1 - Remote Buffer Overflow Exploit
No description provided by source. / 6.9.04|www.Delikon.de|Delikon BlackJumboDog FTP Server Buffer Overflow version 3.6.1 http://www.securiteam.com/windowsntfocus/5AP040ADPW.html Thx to Chew Keong TAN C:\Codes\blackjumbodog\Releasebjdexploit 192.168.0.3 21 klein.exe BlackJumboDog FTP Server Buffe...
IBM Business Process Manager - User Account Reconfiguration
No description provided by source. Exploit Title: IBM BMPS BPM User account reconfiguration/Privilege Escalation/Information Disclosure Date: 31.01.14 Exploit Author: 0in Software link: http://www-03.ibm.com/software/products/en/business-process-manager-family/ Version: 8.0.1.1 newest versions ca...
Sun SunVTS 4.x PTExec Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2898/info SunVTS is the Sun Validation Test Suite, distributed and maintained by Sun Microsystems. The SunVTS is used to test various components of OEM Sun hardware, and can also be used to stress-test components and...
ASPNuke <= 0.80 (register.asp) Remote SQL Injection Vulnerability
No description provided by source. Title : ASPNuke = 0.80 register.asp Remote SQL Injection Vulnerability Author : ajann S.Page : http://www.aspnuke.com D.Page : http://sourceforge.net/project/showfiles.php?groupid=92470...
Putty 0.60 Crash PoC
No description provided by source. print \n print ---------------------------------------------------------------- print | putty 0.60 Null Ptr | print | Level Smash the Stack | print ---------------------------------------------------------------- print \n import sys, socket, binascii HOST =...
Project Based Calendaring System (PBCS) 0.7.1 - Multiple Vulnerabilities
No description provided by source. Project Based Calendaring System PBCS Version 0.7.1 Multiple Vulnerabilities Script: http://www.pbcs.org/pbcsdownload.php Poc : Hi str0ke Thanx To Posted but I Want Add Some Vulns In This Script 1- remote file upload...
AContent 1.3 - Local File Inclusion
No description provided by source. Exploit Title: AContent 1.3 Local File Inclusion Date: 21-03-2013 Author: DaOne Vendor Homepage: http://atutor.ca/acontent/ Software Link: https://sourceforge.net/projects/acontent/files/AContent-1.3.tar.gz/download Category: webapps/php Version: 1.3 Tested on:...
KTP Computer Customer Database CMS 1.0 - Local File Inclusion Vulnerability
No description provided by source. !/usr/bin/perl -w ====================================== KTPCCD Local File Inclusion Exploit ====================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...
NetcPlus SmartServer 3.5.1 SMTP Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/632/info There is a buffer overflow on the SmartServer3 SMTP service long MAIL FROM: that may allow an intruder to execute arbitrary code on the target server. 1 @Work SmartServer3...
Google Desktop Search Remote Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11541/info Google Desktop Search is reportedly affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize HTML tag content. An attacker may leverage this issue...
V3 Chat Instant Messenger - search.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18543/info V3 Chat Instant Messenger is prone to multiple cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker...
X7 Chat 2.0.5.1 CSRF Add Admin Exploit
No description provided by source. Exploit Title: X7 Chat 2.0.5.1 CSRF Add Admin Exploit Google Dork: intitle:Chat Room Powered By X7 Chat 2.0.5 Date: 09.05.2012 Author: DennSpec Software Link: http://x7chat.com/releases/v2/x7chat2051.zip Version: = 2.0.5.1 firstly, register and give a username...
PBLang <= 4.99.17.q Remote File Rewriting / Command Execution
No description provided by source. --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org...
FreeBSD 3.3,Linux Mandrake 7.0 'xsoldier' Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/871/info Certain versions of FreeBSD 3.3 Confirmed and Linux Mandrake confirmed ship with a vulnerable binary in their X11 games package. The binary/game in question, xsoldier, is a setuid root binary meant to be run via ...
BRIM < 2.0.0 - SQL Injection
No description provided by source. BRIM 2.0.0 SQL InjectionExploit information - Exploit Title: BRIM 2.0.0 SQL Injection - Google Dork: Brim project intitle:Brim - login - Date: 2012-02-20 - Author: ifnull - Tested on: Apache/2.2.3, PHP/5.1.6, MySQL 5.0.45 ? although it should work on any...
All browsers 0day Crash Exploit
No description provided by source. =============================== All browsers 0day Crash Exploit =============================== + Discovered By: Inj3ct0r Team @Title: All browsers 0day Crash Exploit @Site: http://site.securityspl0its.com/ - http://forum.securityspl0its.com/ -...
McGallery 1.0/1.1/2.2 index.php language Parameter Traversal Local File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/15845/info mcGallery PRO is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabiliti...