3100 matches found
Linux Kernel CAP_SYS_ADMIN to Root Exploit 2 (32 and 64-bit)
Exploit for linux platform in category local exploits / Linux Kernel CAPSYSADMIN to Root Exploit 2 32 and 64-bit by Joe Sylve @jtsylve on twitter Released: Jan 7, 2011 Based on the bug found by Dan Rosenberg @djrbliss only loosly based on his exploit http://www.exploit-db.com/exploits/15916/ Usag...
CVE-2010-4538
Buffer overflow in the sectenttecdmxda function in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ENTTEC DMX packet with Run Length Encoding RLE compression...
Nucleus 3.61 - Multiple Remote File Inclusions
Nucleus 3.61 - Multiple Remote File Inclusions Nucleus v3.61 === Multiple Remote File Include By n0n0x Homepage: http://priasantai.uni.cc/ Download script :http://sourceforge.net/projects/nucleuscms/ ========================================= nucleus3.61/action.php?DIRLIBS=y0ur g4y...
Sdcms v1. 3 exploits-exploits warning-the black bar safety net
First, at the following address using the livehttpheader capture to get the COOKIE value: COOKIE: 1Rq4Qz6We6Dbsdcms%5Finfolever=; 1Rq4Qz6We6Dbsdcms%5Falllever=; 1Rq4Qz6We6Dbsdcms%5Fadmin=; 1Rq4Qz6We6Dbsdcms%5Fpwd=; 1Rq4Qz6We6Dbsdcms%5Fname=; 1Rq4Qz6We6Dbsdcms%5Fid=;...
Openfiler Cross Site Scripting
Good morning again! -- openfiler xss: https://192.168.0.2:446/admin/system.html?step=2&device=et%22/%3E%3Cscript%3Ealert%281%29;%3C/script%3Ebh0...
Aesop GIF Creator 2.1 - .aep Local Buffer Overflow
Aesop GIF Creator 2.1 - .aep Local Buffer Overflow !/usr/bin/python Exploit Title: Aesop GIF Creator = v2.1 .aep Buffer Overflow Exploit Date: 12/15/2010 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsec at x-sploited.com Software Link:...
Aesop GIF Creator <= v2.1 (.aep) Buffer Overflow Exploit
Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title: Aesop GIF Creator = v2.1 .aep Buffer Overflow Exploit Date: 12/15/2010 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsec at x-sploited.com Software Link:...
Exim security issue in historical release
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 It has come to the attention of The Exim Maintainers that there is an exploit circulating in the wild which affects versions of Exim versions 4.69 and below -- Exim 4.70 was released in November 2009. The flaw permits remote code execution over SMTP...
Exim 4.63 - Remote Command Execution
Exim 4.63 RedHat/Centos/Debian Remote Root Exploit by Kingcope Modified perl version of metasploit module =for comment use this connect back shell as "trojanurl" and be sure to setup a netcat, ---snip--- $system = '/bin/sh'; $ARGC=@ARGV; if $ARGC!=2 print "Usage: $0 Host Port \n\n"; die "Ex: $0...
Joomla! Component JE Messenger 1.0 - Arbitrary File Upload
JE Messenger 1.0 Arbitrary File Upload Vulnerability Name JE Messenger Vendor http://joomlaextensions.co.in Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-12-09 X. INDEX I. ABOUT THE APPLICATIO...
Orbis CMS 1.0.2 - Arbitrary File Upload
'Orbis CMS' Arbitrary Script Execution Vulnerability CVE-2010-4313 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Orbis CMS' filemanfileupload.php script that allows any authenticated user to upload a PHP script and...
Jurpopage 0.2.0 SQL Injection
========================================================= Jurpopage SQL Injection ========================================================= Exploit Title : Jurpopage SQL Injection Date : 24 Noveber 2010 Author : Suddendeath [email protected] Platform/Tested on: Windows XP 2 SP 2 myweb :...
Apache Tomcat 7.0.4 - sort orderBy Cross-Site Scripting
Apache Tomcat 7.0.4 - sort orderBy Cross-Site Scripting source: https://www.securityfocus.com/bid/45015/info Apache Tomcat is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrar...
Major Facebook Pages Compromised by Sendible App Bug
We've received several rapid-fire tips indicating a major compromise in the Facebook app Sendible. Several prominent Facebook Pages, including Google, Coca-Cola, YouTube, South Park, The Daily Show, and Team Coco, are sending out a malicious link to their followers. The link reads, "Change Your...
Qtweb Browser 3.5 Buffer Overflow
Title: Remote Buffer Overflow Qtweb Browser 3.5 Software:http://www.qtweb.net/downloads/QtWeb-setup.exe Portable Software:http://www.qtweb.net/downloads/QtWeb.exe Version: 3.5 Tested on: Windows Author: PoisonCode Published: 2010-11-10 CVE-ID: | \ / | | | | | | | | / \ \ / / | | | | '| | | | | | ...
XT:Commerce < 3.04 SP2.1 - Cross-Site Scripting
---------------------------------------------------------------------------------- Cross-Site-Scripting XT:Commerce alertdocument.cookie and place an order. When the administrator opens the order in the backend of the shop, the javascript will be executed. By getting the cookie of the admin, the...
D-Link DIR-300 Authentication Bypass
\n"; exit; $ch=curlinit; curlsetopt$ch, CURLOPTURL, "http://".$argv1."/toolsadmin.php"; curlsetopt$ch, CURLOPTRETURNTRANSFER, true; curlsetopt$ch, CURLOPTPORT, $argv2; curlsetopt$ch, CURLOPTPOST, 1; curlsetopt$ch,...
Linux Kernel 2.4.0 - Stack Infoleaks
//Enjoy... // //-Dan / You've done it. After hours of gdb and caffeine, you've finally got a shell on your target's server. Maybe next time they will think twice about running MyFirstCompSciProjectFTPD on a production machine. As you take another sip of Mountain Dew and pick some of the cheetos o...
Angel LMS 7.3 Cross Site Scripting
I have discovered a security exploit in Angel LMS 7.3 "Colleges and universities worldwide choose the ANGEL LMS to deliver powerful online teaching and learning experiences. ANGEL provides the comprehensive LMS features institutions need in a simple interface that promotes adoption. A recognized...
Speak Aloud DLL Hijacking Exploit (dwmapi.dll)
Exploit for windows platform in category local exploits ============================================== Speak Aloud DLL Hijacking Exploit dwmapi.dll ============================================== || || | || o,7 || . o7 || 4||| ow, : / /...