399 matches found
Code injection
mrlg-lib.php in mrlg4php before 1.0.8 allows remote attackers to execute arbitrary shell code...
CVE-2014-3927
mrlg-lib.php in mrlg4php before 1.0.8 allows remote attackers to execute arbitrary shell code...
Shell Injection
rack-perftoolsprofiler is vulnerable to shell injection attacks. A malicious user can inject and execute arbitrary shell code when passing arguments to the profiler...
GraphicsMagick and ImageMagick Code Execution Vulnerabilities
GraphicsMagick is a set of simple image processing tools, the tool to the image to provide resizing, rotation, highlighting and other functions.ImageMagick is the U.S. ImageMagick Studio, Inc. of a set of open-source image processing software, the software can read, convert, write a variety of...
Microsoft Windows multiple security vulnerabilities
Internet Explorer / Edge multiple security vulnerabilities, VBScript / Jscript code execution, Windows Shell code execution, kernel privilege escsalation...
GE Proficy Vulnerabilities
OVERVIEW Researchers amisto0x07 and Z0mb1E of Zero Day Initiative ZDI have identified two vulnerabilities in the General Electric GE Proficy human-machine interface/supervisory control and data acquisition HMI/SCADA - CIMPLICITY application. GE has released security advisories, GEIP13-05 and...
Easy Forms for vBulletin 4.X - Upload Shell Code / Remote Code Execute
Easy Forms vBuletin 4.x have suffers from a remote code execute and upload shell code. This is private exploit. You can buy it at https://0day.today...
BlazeDVD Pro Player 7.0 - '.plf' Local Buffer Overflow (SEH)
BlazeDVD Pro v7.0 - .plf Buffer Overflow SEH Date: 19.08.2014 Exploit Author: metacom Vendor Homepage: http://www.blazevideo.com/ Software Link: http://www.blazevideo.com/download/BlazeDVDProSetup.exe Version: 7.0.0.0 Tested on: Win 7 EN, Win 8.1 !/usr/bin/python from struct import pack buffer=...
OpenFTPD <= 0.30.1 (message system) Remote Shell Exploit
No description provided by source. / shouts to mitakeet :D exploit for openftpd format string bug. tested on most current version only. -infamous42md AT hotpop DOT com is real email only tricky part is find a place to stick the shell, as there isn't enough room to send it with the format string...
VWar 1.5 war.php vwar_root Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19387/info VWar is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file...
Rational ClearCase 3.2/4.x DB Loader TERM Environment Variable Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3523/info ClearCase is a commercially available software change management package. It is maintained and distributed by Rational. A problem with the package could lead to a local user gaining elevated privileges. The...
Oracle Internet Directory 2.0.6 oidldap Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1828/info Oracle Internet Directory 2.0.6 is a pre-alpha development release, available as both an addon package and in the Oracle Database Software release 8.1.6. A vulnerability has been found in the oidldap binary with...
PHP <= 4.4.3 / 5.1.4 (sscanf) Local Buffer Overflow Exploit
No description provided by source. ? / hoagiephpsscanf.php PHP = 4.4.3 / 5.1.4 local buffer overflow exploit howto get offsets: set $baseaddr to 0x41414141 ulimit -c 20000 /etc/init.d/apache restart execute script via web browser tail /var/log/apache/error.log ... Wed Aug 16 15:07:10 2006 notice...
Michael Sandrof IrcII 4.4 -7 Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1046/info IrcII is a well-known Internet Relay Chat IRC client for unix. Version 4.4-7 and possibly previous versions are known to be vulnerable to a buffer overflow condition in their direct client-to-client DCC chat...
Mediacoder (.lst) - SEH Buffer Overflow
No description provided by source. !/usr/bin/python import os import sys from struct import pack from time import sleep if os.name == nt: os.systemcls os.systemcolor 3f else: os.systemclear print +Exploit Title: All Mediacoder Product SEH Buffer Overflow +Download All Product:...
Cisco IOS 11.x TFTP Server Long File Name Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5328/info A problem has been discovered in Cisco IOS and MGX switches that could result in a denial of service, and potential code execution. It has been discovered that the TFTP server file name handling of Cisco IOS is...
RapidLeech Scripts Remote File Upload Vulnerability
No description provided by source. Exploit Title: RapidLeech Scrits Remote File Upload upload shell php Date: 21/07/2010 Author: H-SK33PY Software Link: http://www.rapidleech.com/ Version: all versions Google dork :intitle:Rx08.ii36B.Rv Platform / Tested on: linux Category: remote Code : N/A...
CylantSecure 1.0 Kernel Module Syscall Rerouting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2958/info CylantSecure is a commercial Linux hardening tool and security infrastructure available from Cylant Technology. A problem in the CylantSecure infrastructure could allow users to escape monitoring. A user with ro...
Wordpress Lazy SEO plugin 1.1.9 - Shell Upload Vulnerability
No description provided by source. Exploit Title : Wordpress Lazy SEO plugin Shell Upload Vulnerability Exploit Author : Ashiyane Digital Security Team Google Dork: : inurl:/wp-content/plugins/lazy-seo/ Date: 2013/09/21 Vendor Homepage : http://wordpress.org/plugins/lazy-seo Software Link :...
UltraISO <= 8.6.2.2011 (Cue/Bin Files) Local Buffer Overflow Exploit
No description provided by source. / Date : May 28th 2007. UltraISO = 8.6.2.2011 local buffer-over flow by n00b You might need to change the jmp esp% adress to your version. Tested on win xp service pack 2 eng executes calc.Don't forget you need to have the bin and cue file in the same Directory...