elron im anti-virus 3.0.3 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2519/info Elron IM is a suite of tools providing internet filtering, virus protection, and other features. Certain non-current versions of products in the Internet Manager suite, including IM Anti-Virus, are vulnerable to...

Happymall E-Commerce Software 4.3/4.4 Normal_HTML.CGI File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7559/info IT has been reported that Happymall E-Commerce is prone to a file disclosure vulnerability. The problem occurs due to insufficient sanitization of user-supplied URI parameters. As a result, it may be possible fo...

Mcafee FreeScan CoMcFreeScan Browser Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10077/info Reportedly the Mcafee FreeScan 'McFreeScan.CoMcFreeScan.1' COM object is prone to a remote information disclosure vulnerability. This issue is due to a failure of the object to properly validate information...

e-Vision CMS <= 2.0.2 - Multiple Local File Inclusion Exploit

No description provided by source. ?php errorreporting0; inisetdefaultsockettimeout,5; / e-Vision = 2.0.2 Multiple Local File Inclusion Exploit ------------------------------------------------------- by athos - download http://sourceforge.net ------------------------------------------------------...

ShopCartCGI 2.3 gotopage.cgi Traversal Arbitrary File Access

No description provided by source. source: http://www.securityfocus.com/bid/9670/info It has been reported that ShopcartCGI is prone to a remote file disclosure vulnerability. This issue is due to insufficient validation of user-supplied input. Upon successful exploitation of this issue an attack...

RobTex Viking Server 1.0.7 Relative Path Webroot Escaping Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2643/info The Viking Server is a freely available software package maintained and distributed by Robtex. The Viking Server provides multiple protocol service on Windows 95, 98, and NT systems. A problem in the software...

Fool's Workshop Owl's Workshop 1.0 multiplechoice/index.php Arbitrary File Access

No description provided by source. source: http://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these...

Fool's Workshop Owl's Workshop 1.0 glossary.php Arbitrary File Access

No description provided by source. source: http://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these...

Fool's Workshop Owl's Workshop 1.0 newmultiplechoice.php Arbitrary File Access

No description provided by source. source: http://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these...

Adobe ColdFusion <=8.0 - Directory Traversal Vulnerability (CVE-2010-2861)

Adobe ColdFusion =8.0 http://server/CFIDE/administrator/enter.cfm?locale=../../../../../../../../../../ColdFusion8/lib/password.properties%00en server替换成目标网站即可 Update:2017-04-28 This blog was written by Scott White, Senior Principal Security Consultant, Web Application Team Lead – TrustedSec TL;D...

Joomla! Component com_rwcards - Local File Inclusion

Author : altbta [email protected] Team : Sec Attack Team Home : www.v4-team.com/cc Script : Joomla Component comrwcards Bug Type : Local File Inclusion LFI Dork : inurl:"comrwcards" === Exploit === http://site/index.php?option=comrwcards&view=rwcards&controller=LFI...

Joomla Dashboard Directory Traversal

@=======================================@ @=Script : Joomla Component comdashboard @=Author : FL0RiX @=Greez : Dost mu var? @=Bug Type : Directory Traversal @=Dork : inurl:"comdashboard" @=Note: Kimseye Hakettiginden Fazla Deger Vermeyeceksin. @=======================================@ @=Vuln. :...

CVE-2008-6771

YourPlace 1.0.2 and earlier allows remote attackers to obtain sensitive system information via a direct request via a direct request to user/uploads/phpinfo.php, which calls the phpinfo function...

CVE-2008-6771

CVE-2008-6771 affects YourPlace 1.0.2 and earlier, where a direct request to user/uploads/phpinfo.php invokes phpinfo and exposes sensitive system information. The document set confirms the affected product/version and the underlying cause (calling phpinfo). No explicit remediation is documented ...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10 CU2 and 12.0.6 allows remote authenticated users to affect confidentiality via unknown vectors. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not comment...

OneCMS 2.5 (install_mod.php) Local File Inclusion Vulnerability

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-034 Application: OneCMS Versions Affected: 2.5 Vendor URL: http://www.insanevisions.com/ Bug: Local File Include Exploits: YES Reported: 26.03.2008 Vendor Response: NONE Solution: NONE Date of Public...

Gaming Directory 1.0 (cat_id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================ Gaming Directory 1.0 catid Remote SQL Injection Vulnerability ================================================================...

GetBlog local File inclusion ..

Hello,, GetBlog local File inclusion .. http://sourceforge.net/projects/geblog Discovered By : HACKERS PAL Copy rights : HACKERS PAL Website : http://www.soqor.net Email Address : [email protected] Exploit : - tpl/Default/index.php?tplname=../../../../../../../etc/passwd00 WwW.SoQoR.NeT...

FireConfig 0.5 (dl.php file) Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications ================================================================= FireConfig 0.5 dl.php file Remote File Disclosure Vulnerability ================================================================= FireConfig v0.5 dl.php file Remote File...

Subversion (SVN) < 1.4.5 Directory Traversal Privilege Escalation (deprecated)

Binary data 4198.prm...