PHP168 6.0 Command Execution

Exploit for unknown platform in category web applications ============================ PHP168 6.0 Command Execution ============================ Application Info: Name: PHP168 Version: 6.0 Discoverd By: Securitylab http://site.com/login.php?makehtml=1&chdbhtmlname=seek.php&chdbpath=cache&content=...

phpCMS 2008 file disclosure

Exploit for unknown platform in category web applications =========================== phpCMS 2008 file disclosure =========================== Application Info: Name: phpcms 2008 Version: All Discoverd By: Securitylab Vulnerability Info: Type: Remote File Disclosure Vulnerability Risk: Medium...

TCPDB 3.8 Remote Content Change Bypass Vulnerabilities

Exploit for unknown platform in category web applications ====================================================== TCPDB 3.8 Remote Content Change Bypass Vulnerabilities ====================================================== Application Info: Name: TCPDB Version: 3.8 Website: http://www.tcpdb.com/...

Marcelo Costa FileServer Component Directory Traversal Vulnerability

This host is running Marcelo Costa FileServer with Windows Live Messenger and Messenger Plus! Live, and is prone to directory traversal vulnerability. OpenVAS Vulnerability Test $Id: secpodmarcelocostafileserverdirtravvuln.nasl 8193 2017-12-20 10:46:55Z cfischer $ Marcelo Costa FileServer Compone...

Namad 2.0.0.0 File Disclosure

Securitylab.ir Application Info: Name: Namad Version: 2.0.0.0 Website: http://imenafzar.com Discoverd By: Securitylab.ir Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir Vulnerability Info: Type: Remote File Download Vulnerability Risk: Medium Dork: "Copyrigh...

[Positive Technologies SA 2009-09] Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation Vulnerabilities

---------------------------------------------------------------------- PT-2009-09 Positive Technologies Security Advisory Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation Vulnerabilities ---------------------------------------------------------------------- --- Affected...

Guk CMS SQL Injection

-------------------------------------------------------------------------------- www.SecurityLab.ir - F@ri| -------------------------------------------------------------------------------- - Guk CMS - + Application Info: - Name: Guk CMS + Vulnerability Info: - Type: Sql Injection - Risk: Medium -...

Mozilla Thunderbird <= 2.0.0.14 DoS Vulnerability - Linux

Mozilla Thunderbird is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

btitrackerxbtit-sql.txt

SQL Injection Vulnerability in BtiTracker and xbtit Vulnerable products BtiTracker =1.4.7 https://sourceforge.net/projects/btit-tracker/ xbtit =2.0.542 http://www.btiteam.org Description A vulnerability is caused due to the application does not perform sanitation checks for input passed to the...

torrenttrader-xss.txt

Cross-site Scripting and CSRF in TorrentTrader Classic v1.08 Application: TorrentTrader Classic v1.08, possible other versions. Vendor URL: http://sourceforge.net/project/showfiles.php?groupid=98584&packageid=1809271. 1. Input passed to the msg property of account-inbox.php is not properly...

Unfixed XSS vulnerability at www.mariasharapova.com

Security researcher SecurityLab, has submitted on 01/04/2007 a cross-site-scripting XSS vulnerability affecting www.mariasharapova.com, which at the time of submission ranked 45050 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/04/2007. It ...

paypalXSS.txt

Hi! From Russia Security Site: http://www.securitylab.ru/news/270837.php New worked XSS on paypal.com: www.paypal.com/cgi-bin/webscr?cmd=p/gen/--alert'www.securitylab.ru' really work :...

[SLAB] NetBSD / OpenBSD kernfs_xread patch evasion

--- SecurityLab Technologies, Inc. --- Security Advisory --- http://www.securitylab.net Advisory Name: NetBSD / OpenBSD kernfsxread patch evasion Release Date: February 02, 2006 Application: kernfs Platform: NetBSD / OpenBSD Severity: Severe Author: SLAB Research Vendor Status: Patched Reference:...

[Full-disclosure] Buffer Overflow in MultiTech VoIP Implementations

SecurityLab Technologies, Inc. --- www.securitylab.net --- Security Advisory Advisory Name: Buffer Overflow in MultiTech VoIP Implementations Release Date: December 05, 2005 Application: MultiVoIP Gateway Platform: Multiple Severity: Moderate Author: Ejovi Nuwere SLABresearchATsecuritylab.net...

[SecurityLab] Ethereal 0.10.10 SIP Dissector Overflow

Advisory Name: Ethereal 0.10.10 SIP Dissector Overflow Release Date: 05/07/05 Application: Ethereal 0.10.10 and Prior Platform: Multiple Severity: A remote attacker can execute arbitrary commands Author: Ejovi Nuwere ejoviATsecuritylab.net Vendor Status: Vendor has published patch Reference:...

[Full-disclosure] [SecurityLab] Ethereal 0.10.10 SIP Dissector Overflow

Advisory Name: Ethereal 0.10.10 SIP Dissector Overflow Release Date: 05/07/05 Application: Ethereal 0.10.10 and Prior Platform: Multiple Severity: A remote attacker can execute arbitrary commands Author: Ejovi Nuwere ejoviATsecuritylab.net Vendor Status: Vendor has published patch Reference:...