KnFTP 1.0 Buffer Overflow Exploit - DEP Bypass

Exploit for windows platform in category remote exploits module for metasploit framework, for more information see the Description. Copyright C October 04th 2011 Author: Javier Aguinaga pasta el.tio.pastafrolaatgmail.com This program is free software: you can redistribute it and/or modify it unde...

CubeCart Multiple Cross-Site Scripting and SQL Injection Vulnerabilities

CubeCart is prone to SQL injection and multiple cross-site scripting vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Libc - 'regcomp()' Stack Exhaustion Denial of Service

? / PHP 5.4 5.3 memorylimit bypass exploit poc by Maksymilian Arciemowicz http://cxsecurity.com/ cxib a.T cxsecurity d0t com To show memorylimit in PHP php /www/memlimpoc.php 1 35000000 PHP Fatal error: Allowed memory size of 33554432 bytes exhausted tried to allocate 35000001 bytes in...

S9Y Serendipity 1.5.5 - serendipity[filter][bp.ALT] Cross-Site Scripting

S9Y Serendipity 1.5.5 - serendipityfilterbp.ALT Cross-Site Scripting source: https://www.securityfocus.com/bid/50502/info Serendipity is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute...

SetSeed 'loggedInUser' SQL Injection Vulnerability

SetSeed is prone to an SQL Injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying...

SetSeed CMS 5.8.20 'loggedInUser' SQLi Vulnerability

SetSeed CMS is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

eFront <= 3.6.10 build 11944 Multiple XSS Vulnerabilities

eFront is prone to multiple cross-site scripting XSS vulnerabilities because the software fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

eFront 3.6.10 - professor.php Script Multiple SQL Injections

eFront 3.6.10 - professor.php Script Multiple SQL Injections source: https://www.securityfocus.com/bid/50419/info eFront is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these...

vTiger CRM 5.2.1 - &#039;index.php&#039; Multiple Cross-Site Scripting Vulnerabilities (2)

source: https://www.securityfocus.com/bid/50364/info vtiger CRM is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Alsbtain Bulletin 1.5/1.6 - Multiple Local File Inclusions

source: https://www.securityfocus.com/bid/50350/info Alsbtain Bulletin is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary...

Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006)

This host is missing an important security update according to Mac OS X 10.6.8 Update/Mac OS X Security Update 2011-006. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Eclime Multiple SQL Injection and Cross-site Scripting Vulnerabilities

Eclime is prone to multiple cross site scripting and SQL injection vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

FreeBSD : tptest -- pwd Remote Stack Buffer Overflow (5486669e-ea9f-11de-bd9c-00215c6a37bb)

SecurityFocus reports : TPTEST is prone to a remote stack-based buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. %NASLMINLEVEL 70300 C...

Samba 'etc/mtab' File Appending Local DoS Vulnerability

Samba is prone to a local denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:samba:samba";...

POSH < 3.1.2 Multiple Vulnerabilities - Active Check

POSH is prone to a local file include LFI vulnerability and a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Joomla! Component com_sgicatalog 1.0 - &#039;id&#039; SQL Injection

source: https://www.securityfocus.com/bid/50072/info The Sgicatalog component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

GoAhead Web Server 2.18 - &#039;addlimit.asp?url&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/50039/info GoAhead WebServer is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser...

BuzzyWall 1.3.2 - resolute.php Information Disclosure

BuzzyWall 1.3.2 - resolute.php Information Disclosure source: https://www.securityfocus.com/bid/50018/info BuzzScripts BuzzyWall is prone to an information-disclosure vulnerability because it fails to sufficiently validate user-supplied data. An attacker can exploit this issue to download local...

BuzzyWall 1.3.2 - &#039;resolute.php&#039; Information Disclosure

source: https://www.securityfocus.com/bid/50018/info BuzzScripts BuzzyWall is prone to an information-disclosure vulnerability because it fails to sufficiently validate user-supplied data. An attacker can exploit this issue to download local files in the context of the webserver process. This may...

Vtiger CRM <= 5.2.1 RCE Vulnerability

Vtiger CRM is prone to a remote code execution RCE vulnerability because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...