WebGlimpse 2.18.8 RCE

Remote command execution vulnerability in WebGlimpse query parameter Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

Critical: Red Hat Security Advisory: php security update

Updated php packages that fix one security issue are now available for Red Hat Application Stack v2. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Kerio WinRoute Firewall < 6.0.0 Information Disclosure Vulnerability - Active Check

Kerio WinRoute Firewall is prone to a remote source code disclosure vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Kerio WinRoute Firewall Web Server Remote Source Code Disclosure Vulnerability

Kerio WinRoute Firewall is prone to a remote source-code- disclosure vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to view the source code of files in the context of the server process; this may aid in further attacks. Version...

Kerio WinRoute Firewall Source Code Disclosure

Exploit Title: Kerio WinRoute Firewall Embedded Web ServerVersion: Source Code Disclosure Google Dork: Date: 10.05.2012 Author: Eugene Salov, Andrey Komarov Group-IB, http://group-ib.ru Software Link: http://winroute.ru/keriowinroutefirewall.htm Version: prior to 6 Tested on: Microsoft Windows CV...

Critical: Red Hat Security Advisory: php security update

Updated php packages that fix one security issue are now available for Red Hat Enterprise Linux 5.3 Long Life, and Red Hat Enterprise Linux 5.6, 6.0 and 6.1 Extended Update Support. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability...

Kerio WinRoute Firewall Web Server < 6 Source Code Disclosure

Exploit for php platform in category web applications Exploit Title: Kerio WinRoute Firewall Embedded Web ServerVersion: Source Code Disclosure Google Dork: Date: 10.05.2012 Author: Eugene Salov, Andrey Komarov Group-IB, http://group-ib.ru Software Link: http://winroute.ru/keriowinroutefirewall.h...

Kerio WinRoute Firewall Web Server 6 - Source Code Disclosure

Kerio WinRoute Firewall Web Server 6 - Source Code Disclosure Exploit Title: Kerio WinRoute Firewall Embedded Web ServerVersion: Source Code Disclosure Google Dork: Date: 10.05.2012 Author: Eugene Salov, Andrey Komarov Group-IB, http://group-ib.ru Software Link:...

Kerio WinRoute Firewall Web Server &lt; 6 - Source Code Disclosure

Exploit Title: Kerio WinRoute Firewall Embedded Web ServerVersion: Source Code Disclosure Google Dork: Date: 10.05.2012 Author: Eugene Salov, Andrey Komarov Group-IB, http://group-ib.ru Software Link: http://winroute.ru/keriowinroutefirewall.htm Version: prior to 6 Tested on: Microsoft Windows CV...

MegaFileManager 1.0 LFI

File disclosure vulnerability in MegaFileManager cimages.php Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...

http-vuln-cve2012-1823 NSE Script

Detects PHP-CGI installations that are vulnerable to CVE-2012-1823, This critical vulnerability allows attackers to retrieve source code and execute code remotely. The script works by appending "?-s" to the uri to make vulnerable php-cgi handlers return colour syntax highlighted source. We use th...

PHP < 5.3.13, 5.4.x < 5.4.3 Multiple Vulnerabilities - Active Check

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.103482"...

PHP-CGI远程任意代码执行漏洞

CVE ID: CVE-2012-1823 PHP是一种HTML内嵌式的语言，PHP与微软的ASP颇有几分相似，都是一种在服务器端执行的嵌入HTML文档的脚本语言，语言的风格有类似于C语言，现在被很多的网站编程人员广泛的运用。可以被各种Web服务器以多种方式调用，实现动态网页的功能。 PHP处理参数的传递时存在漏洞，在特定的配置情况下，远程攻击者可能利用此漏洞在服务器上获取脚本源码或执行任意命令。 当PHP以特定的CGI方式被调用时（例如Apache的modcgid），php-cgi接收处理过的查询格式字符串作为命令行参数，允许命令行开关（例如-s、-d...

PHP 'php-cgi' Information Disclosure Vulnerability

Description PHP is prone to an information-disclosure vulnerability. Exploiting this issue allows remote attackers to view the source code of files in the context of the server process. This may allow the attacker to obtain sensitive information and to run arbitrary PHP code on the affected...

PHP-CGI query string parameter vulnerability

Overview PHP-CGI-based setups contain a vulnerability when parsing query string parameters from php files. Description According to PHP's website, "PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML." When PHP is use...

eFront 3.6.9 LFI

Local file include vulnerability in eFront js/scripts.php Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...

WHMCS 4.2 File Disclosure

Local file disclosure vulnerability in WHMCS cart.php Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...

CMS Made Simple 1.4.1 LFI

Local file include vulnerability in CMS Made Simple cmslanguage cookie parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...

Novell GroupWise 8 WebAccess File Disclosure

File disclosure vulnerability in Novell GroupWise WebAccess Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...

Exponent CMS 2.0.2 LFI

Local file include vulnerability in Exponent CMS module parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...