SunOS <= 4.1.3 kmem setgid /etc/crash Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/59/info /etc/crash was installed setgid kmem and excutable by anyone. Any user can use the ! shell command escape to executes commands, which are then performed with group set to kmem. $ /etc/crash ! sh...

Microsoft IIS 4.0,Microsoft JET 3.5/3.5.1 Database Engine VBA Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/286/info Microsoft's JET database engine feature allows the embedding of Visual Basic for Application in SQL string expressions and the lack of metacharacter filtering by many web applications may allow remote users to...

AWStats <= 6.5 (migrate) Remote Shell Command Injection Exploit

No description provided by source. !/usr/bin/env python http://secunia.com/advisories/19969/ by [email protected] May 5, 2006 - HAPPY CINCO DE MAYO HAPPY BIRTHDAY DAD private plz redsand@jinxy / $ nc -l -p 31337 -v listening on any 31337 ... connect to 65.99.197.147 from blacksecurity.org...

L2J Statistik Script <= 0.09 (index.php page) Local File Include Exploit

No description provided by source. ? print ' | \ | \ \ / | | | | | | | \ \ \ / \ \ | \ \ / \ | \ | | | / \ | \ \ \ / / | | | | | | | | | | ||/ // |./ |/\ ./ |/ || | \ \ / \ \ / | | | / | | | | | | \ | \ \ | \ | | / | | | / | | | / | |/ ,||./ | |,||\ Rev.4 www.codebreak.tk -...

Drupal <= 4.7 (attachment mod_mime) Remote Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo Drupal = 4.7 attachment modmime poc exploit\r\n; echo by rgod [email protected]\r\n; echo site: http://retrogod.altervista.org\r\n\r\n; / this works with a user account with upload rights and with permissions to modify...

PhpCommander <= 3.0 (upload) Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? $devilteam = ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+:...

WebText <= 0.4.5.2 - Remote Code Execution Exploit

No description provided by source. ? //Kacper Settings $exploitname = WebText = 0.4.5.2 Remote Code Execution Exploit; $scriptname = WebText 0.4.5.2; $scriptsite = http://www.webtext.pl/?go=download; $dork = 'Powered by WebText'; // print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+:...

CVE-2014-4046

Asterisk Open Source 11.x before 11.10.1 and 12.x before 12.3.1 and Certified Asterisk 11.6 before 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action...

CVE-2014-4046

Asterisk Open Source 11.x before 11.10.1 and 12.x before 12.3.1 and Certified Asterisk 11.6 before 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action...

CVE-2014-4046

CVE-2014-4046 affects Asterisk Open Source 11.x before 11.10.1 and 12.x before 12.3.1, plus Certified Asterisk 11.6 before 11.6-cert3, allowing remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action. Public advisories (Debian DLA-455-1, Mageia MGASA-2014-03...

GLSA-201406-15 : KDirStat: Arbitrary command execution

The remote host is affected by the vulnerability described in GLSA-201406-15 KDirStat: Arbitrary command execution Missing escape of executable shell command in KDirStat can be used to insert malicious shell commands. Impact : A local attacker could possibly execute arbitrary shell command with t...

KDirStat: Arbitrary command execution

Background KDirStat is a graphical disk usage utility for KDE. Description Missing escape of executable shell command in KDirStat can be used to insert malicious shell commands. Impact A local attacker could possibly execute arbitrary shell command with the privileges of the process. Workaround...

[SECURITY] [DSA 2946-1] python-gnupg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2946-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 04, 2014 http://www.debian.org/security/faq -...

GLSA-201401-26 : Zabbix: Shell command injection

The remote host is affected by the vulnerability described in GLSA-201401-26 Zabbix: Shell command injection If a flexible user parameter is configured in Zabbix agent, including a newline in the parameters will execute newline section as a separate command even if UnsafeUserParameters are...

MediaWiki thumb.php page Parameter Remote Shell Command Injection

MediaWiki contains a flaw that is due to the program failing to properly sanitize input passed via the "page" parameter in the thumb.php script. This may allow a remote attack to inject arbitrary shell commands. Vulnerability Type: Remote Command Execution For the exploit source code contact...

[oss-security] OpenFiler - Arbitrary Code Execution &amp; Stored XSS

hi, Multiple vulnerabilities were discovered in the latest version of OpenFiler appliance, 2.99.1 as reported herehttps://forums.openfiler.com/index.php?/topic/6720-arbitrary-code-execution-stored-xss-vulnerability-in-openfiler-latest-version-2991/, here http://www.exploit-db.com/exploits/33247 a...

Cross site scripting

Cross-site scripting XSS vulnerability in the events page in the System iNtrusion Analysis and Reporting Environment SNARE for Linux agent before 1.7.0 allows remote attackers to inject arbitrary web script or HTML via a logged shell command...

CVE-2011-5249

Cross-site scripting XSS vulnerability in the events page in the System iNtrusion Analysis and Reporting Environment SNARE for Linux agent before 1.7.0 allows remote attackers to inject arbitrary web script or HTML via a logged shell command...

Remote Command Injection in Arabic Prawn 0.0.1 Ruby Gem

Title: Remote Command Injection in Arabic Prawn 0.0.1 Ruby Gem Author: Larry W. Cashdollar, @larry0 Download Site: http://rubygems.org/gems/Arabic-Prawn CVE: 2014-2322 Date: 12/17/2013 In Arabic-Prawn-0.0.1/lib/stringutfsupport.rb, the following lines pass unsanitized input to the shell. 426 var ...

WordPress WP-Filebase Download Manager插件任意代码执行漏洞

WordPress是一款内容管理系统。 由于通过上传文件时的文件名传递的输入在被用于classes/Admin.php中"exec"的调用时没有正确过滤，攻击者可以利用漏洞通过特制的HTTP POST命令执行任意SHELL命令。 0 WordPress WP-Filebase Plugin 0.x WordPress WP-Filebase Plugin 0.3.0.04版本以修复此漏洞，建议用户下载使用： http://wordpress.org/plugins/wp-filebase/changelog/...