5315 matches found
MODx Revolution 2.0.2-pl LFI
Local file include vulnerability in MODx classkey parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Permanent Reverse TCP Backdoor for IPhone and IPad
Security Expert from Coresec explains the use of a Permanent Reverse TCP Backdoor "sbd-1.36" for IPhone and IPad developed by Michel Blomgren. sbd is a Netcat-clone, designed to be portable and offer strong encryption. It runs on Unix-like operating systems and on Microsoft Win32. sbd features...
VMWare Source Code leaked by Anonymous Hackers
VMware on Tuesday announced that a single file from its ESX server hypervisor source code has been posted online, and it held out the possibility that more proprietary files could be leaked in the future. "The fact that the source code may have been publicly shared does not necessarily mean that...
E-Mail, Source Code From VMWare Bubbles Up From Compromised Chinese Firm
In what looks like the IT equivalent of the Deepwater Horizon oil spill disaster, purloined data and documents, including source code belonging to the U.S. software firm VMWare, continue to bubble up from the networks of a variety of compromised Chinese firms, according to “Hardcore Charlie,” an...
Newscoop RFI
type a short description of the vulnerability here Vulnerability Type: Remote File Include For the exploit source code contact DSquare Security sales team...
[waraxe-2012-SA#080] - Multiple Vulnerabilities in NextBBS 0.6.0
waraxe-2012-SA080 - Multiple Vulnerabilities in NextBBS 0.6.0 =============================================================================== Author: Janek Vind "waraxe" Date: 27. March 2012 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-80.html Description of vulnerable software:...
Lenovo ThinkManagement Console 9.0.3 File Upload
File upload vulnerability in Lenovo ThinkManagement Console Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
. the svn directory does not have permissions to restrict the use of loopholes in the summary(including the repair program)-vulnerability warning-the black bar safety net
The existing site use. svn to do a production environment version control, however. the svn directory does not have to do the access restrictions, you can through the. svn/entries to traverse the file and directory list. In order to save energy, I wrote a php scripthttp://rains.im/?q=node/18to do...
RIPS 0.53 Local File Inclusion
RIPS = 0.53 Multiple Local File Inclusion Vulnerabilities Google Dork: allintitle: "RIPS - A static source code analyser for vulnerabilities in PHP scripts" Althout this script is not intended to be accesible from internet, there are some websites that host it. Download:...
Apache-Struts DebuggingInterceptor < 2.3.1.1 RCE Windows
Apache-Struts2 / OpenSymphony-Xwork RCE Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
RIPS <= 0.53 Multiple Local File Inclusion Vulnerabilities
Exploit for php platform in category web applications RIPS = 0.53 Multiple Local File Inclusion Vulnerabilities Google Dork: allintitle: "RIPS - A static source code analyser for vulnerabilities in PHP scripts" Althout this script is not intended to be accesible from internet, there are some...
RIPS 0.53 - Multiple Local File Inclusions
RIPS 0.53 - Multiple Local File Inclusions RIPS = 0.53 Multiple Local File Inclusion Vulnerabilities Google Dork: allintitle: "RIPS - A static source code analyser for vulnerabilities in PHP scripts" Althout this script is not intended to be accesible from internet, there are some websites that...
Video: College Professor, Students Crack Zeus Trojan Mystery
A segment from last night’s Rock Center, Brian Williams’ TV news magazine, gives the inside scoop on how a college professor and his students helped law enforcement crack one of the largest and most profitable banking Trojan operations around. Reporter Richard Engel sat down with Gary Warner, a...
Exclusive - Source Code Spoofing with HTML5 and the LRO Character
Exclusive - Source Code Spoofing with HTML5 and the LRO Character Article Written by John Kurlak for The Hacker News,He is senior studying Computer Science at Virginia Tech. Today John will teach us that How to Spoof the Source Code of a web page. For example, Open and Try to View Source Code of...
CVE-2012-1466
The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from...
Cross site request forgery (csrf)
The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from...
CVE-2012-1466
NetMechanica NetDecision Traffic Grapher Server information disclosure CVE-2012-1466 affects the NetDecision Traffic Grapher Server prior to version 4.6.1. An attacker can remotely obtain the source code of NtDecision scripts (.nd) by sending an HTTP request with an invalid version number (demons...
CVE-2012-1466
The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from...
Snort Report 1.3.2 RCE
Remote command execution vulnerability in Snort Report nmap.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
Family connections CMS 2.7.1 RCE (Linux)
Remote command execution vulnerability in Family connections CMS in /dev/less.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...