2852 matches found
NSHC Papyrus 2.0 - Heap Overflow
NSHC Papyrus 2.0 - Heap Overflow !/usr/bin/python Title: NSHC Papyrus Heap Overflow Vulnerability Date: 13\08\2011 Author: wh1ant Software Link: http://file.atfile.com/ftp/data/03/PapyrusSetup.exe Version: 2.0 Tested On: windows XP SP3 South Korea / windows XP SP3 English VMware Workstation CVE:...
CVE-2011-3122
Unspecified vulnerability in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 has unknown impact and attack vectors related to "Media security."...
CVE-2011-2546
SQL injection vulnerability in the web-based management interface on Cisco SA 500 series security appliances with software before 2.1.19 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCtq65669...
Symantec Backup Exec Version Detection
Detects the installed version of Symantec Backup Exec on Windows. The script logs in via smb, searches for Symantec Backup Exec and gets the version from SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Cisco IOS Detection Consolidation
Consolidation of Cisco IOS detections. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc"; ifdescription...
vBulletin 3.x vBExperience Cross Site Scripting
Author : Mr.ThieF alert1; Example : http://www.worldwide-invest.org/xperience.php?sortfield=xr&sortorder="alert1; GreeTz : RENO 3 - x-CoD3r 3 - T3rr0risT07 3 -Snip3rwww - ALL My FrindS 3...
MPlayer Lite r33064 - .m3u Local Overflow (SEH)
MPlayer Lite r33064 - .m3u Local Overflow SEH !/usr/bin/perl +Exploit Title: Exploit Buffer Overflow MsplayerSEH +Date: 19\03\2011 +Author: C4SS!0 and h1ch4m +Software Link: http://sourceforge.net/projects/mplayer-ww/files/MPlayerRelease/Revision%2033064/mplayerliter33064.7z/download +Version: Li...
CVE-2011-0376
The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x, 1.6.0, and 1.6.1 allows remote attackers to obtain sensitive information via a GET request, aka Bug ID CSCte43876...
phpMyBitTorrent 2.0.4 - SQL Injection
phpMyBitTorrent 2.0.4 - SQL Injection Exploit Title: phpMyBitTorrent 2.0.4 SQL injection Google Dork: inurl:"user.php?op=register" Date: 14/FEB/2011 Author: [email protected] Software Link: http://sourceforge.net/projects/phpmybittorrent/ Version: 2.0.4 Tested on: nix...
Cisco Tandberg E, EX, and C Series default root credentials
Overview Cisco's Tandberg C series endpoints and E/EX personal video units that run software versions prior to TC4.0.0 have a root administrator account enabled by default with no password. Description Cisco Advisory cisco-sa-20110202-tandberg states:"This vulnerability affects Tandberg C Series...
Tandberg E, EX and C Series Endpoints Default Credentials
Exploit for hardware platform in category remote exploits -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Default Credentials for Root Account on Tandberg E, EX and C Series Endpoints Advisory ID: cisco-sa-20110202-tandberg Revision 1.0 For Public Release 2011 February 2...
CVE-2011-0402
dpkg-source in dpkg before 1.14.31 and 1.15.x allows user-assisted remote attackers to modify arbitrary files via a symlink attack on unspecified files in the .pc directory...
Collabtive Detection
This host is running Collabtive, a Project Management and Open Source Groupware. OpenVAS Vulnerability Test $Id: gbcollabtivedetect.nasl 5723 2017-03-24 15:46:34Z cfi $ Collabtive Detection Authors: Michael Meyer Copyright: Copyright c 2010 Greenbone Networks GmbH This program is free software; y...
LightNEasy CMS 3.2.1 - Blind SQL Injection
Exploit Title: LightNEasy Cms 3.2.1 Blind SQL Injection Vulnerability Date: 20.09.2010 Author: Stephan Sattler // Solidmedia.de Software Website: http://www.lightneasy.org/ Software Link: http://www.lightneasy.org/addons/downloads/send.php?dlid=127 Version: 3.2.1 Special Thanks to: Dominik...
Lokomedia CMS - 'sukaCMS' Local File Disclosure
Software Link: http://bukulokomedia.com Version: 2.0 Tested on: all OS + Title : Local File Disclosure Vulnerability Lokomedia CMS sukaCMS + Vendor : http://bukulokomedia.com + Discovered : vir0e5 a.k.a banditc0de + Contact : vir0e5athackermaildotcom + Site : http://vir0e5.blogspot.com + DorK :...
Argosoft FTP Server .NET 1.0.2.1 Path Traversal
Exploit Title: Argosoft FTP SERVER .NET Version pwd 257 "/" is working directory //i'm standing on the ftp root directory ftp dir 200 Port command successful 150 Opening ASCII data connection drw-r--r-- 1 user group 0 Apr 26 18:29 tesstdir -rw-r--r-- 1 user group 0 Apr 26 18:29 testfile.txt 226...
Huawei EchoLife HG520 - Remote Information Disclosure
Exploit Title: Huawei EchoLife HG520 Remote Information Disclosure Date: 2010-04-19 Author: hkm Product Link: http://www.huawei.com/mobileweb/en/products/view.do?id=660 Firmware Versions: 3.10.18.7-1.0.7.0 3.10.18.5-1.0.7.0 3.10.18.4 Software Versions: V100R001B120Telmex V100R001B121Telmex Exploi...
Softbiz B2B Trading Marketplace SQL Injection
Exploit Title: Softbiz B2B trading Marketplace Script buyerssubcategories SQL Injection Vulnerability Date :15/4/2010 Author : AnGrY BoY Contact: [email protected] & [email protected] Home : http://www.kurd-security.com Software Link : N/A Version : Softbiz B2B trading Marketplace Script Tested o...
Archive Searcher - '.zip' Local Stack Overflow
!/usr/bin/ruby Software : Archive Searcher 2.1 Author : Lincoln OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH Greetz to : Corelan Security Team http://www.corelan.be:8800/index.php/security/corelan-team-members/ Script provided 'as is', without any warranty. Use for educational...
Version number
I notice that the JIRA footer displays the current version of JIRA. Revealing the specifics of the revisions of software that you run in production is generally considered a bad security practice. Is there a reason that it is displayed openly to all users in licensed versions of the product? Is i...