Douran 3.9.7.8 File Download/Source Code Disclosure Vulnerability

Exploit for asp platform in category web applications Title: Douran Portal File Download/Source Code Disclosure Vulnerability Date of Publishing: 16 March 2010 Application Name: Douran Portal Version: 3.9.7.8 Impact: Medium Vendor: www.douran.com Link: http://douran.com/HomePage.aspx?TabID=4862...

Douran 3.9.7.8 - File DownloadSource Code Disclosure

Douran 3.9.7.8 - File DownloadSource Code Disclosure Title: Douran Portal File Download/Source Code Disclosure Vulnerability Date of Publishing: 16 March 2010 Application Name: Douran Portal Version: 3.9.7.8 Impact: Medium Vendor: www.douran.com Link: http://douran.com/HomePage.aspx?TabID=4862...

Douran 3.9.7.8 - File Download/Source Code Disclosure

Title: Douran Portal File Download/Source Code Disclosure Vulnerability Date of Publishing: 16 March 2010 Application Name: Douran Portal Version: 3.9.7.8 Impact: Medium Vendor: www.douran.com Link: http://douran.com/HomePage.aspx?TabID=4862 Vendor Responses: They didn't respond to the emails...

DEBIAN-CVE-2010-4762

Cross-site scripting XSS vulnerability in the rich-text-editor component in Open Ticket Request System OTRS before 3.0.0-beta2 allows remote authenticated users to inject arbitrary web script or HTML by using the "source code" feature in the customer interface...

CVE-2010-4762

Cross-site scripting XSS vulnerability in the rich-text-editor component in Open Ticket Request System OTRS before 3.0.0-beta2 allows remote authenticated users to inject arbitrary web script or HTML by using the "source code" feature in the customer interface...

Microsoft Source Code Analyzer for SQL Injection 1.3 Improper Permissions

Exploit for windows platform in category local exploits Vendor: Microsoft Corp. Product web page: http://www.microsoft.com Affected version: 1.3.30601.30705 summary: Microsoft Source Code Analyzer for SQL Injection is a static code analysis tool for finding SQL Injection vulnerabilities in ASP...

Microsoft Source Code Analyzer for SQL Injection 1.3 - Improper Permissions

Microsoft Source Code Analyzer for SQL Injection 1.3 - Improper Permissions Microsoft Source Code Analyzer for SQL Injection 1.3 Improper Permissions Vendor: Microsoft Corp. Product web page: http://www.microsoft.com Affected version: 1.3.30601.30705 summary: Microsoft Source Code Analyzer for SQ...

Microsoft Source Code Analyzer For SQL Injection 1.3 Improper Permissions

Microsoft Source Code Analyzer for SQL Injection 1.3 Improper Permissions Vendor: Microsoft Corp. Product web page: http://www.microsoft.com Affected version: 1.3.30601.30705 summary: Microsoft Source Code Analyzer for SQL Injection is a static code analysis tool for finding SQL Injection...

Microsoft Source Code Analyzer for SQL Injection 1.3 Improper Permissions

Summary Microsoft Source Code Analyzer for SQL Injection is a static code analysis tool for finding SQL Injection vulnerabilities in ASP code. Customers can run the tool on their ASP source code to help identify code paths that are vulnerable to SQL Injection attacks. Description The package...

BackTrack 5 "revolution" will Release on May 10th, 2011

BackTrack 5 "revolution" will Release on May 10th, 2011 As BackTrack 5 development rolls on full steam ahead, we've been getting numerous questions about the future release. We thought we'd publish a blog post with general information about BT5 for the impatient. The codename of this release will...

Esselbach Storyteller CMS System 1.8 SQL Injection

Exploit Title: Esselbach Storyteller CMS System Version 1.8 page.php Remote SQL Injection Vulnerability Date: March, 9th 2011 GMT +7 Author: Shamus Software Link: http://www.esselbach.com/ Version : Esselbach Storyteller CMS System Version 1.8 Tested on: windows CVE : -...

Esselbach Storyteller CMS System 1.8 - SQL Injection

Exploit Title: Esselbach Storyteller CMS System Version 1.8 page.php Remote SQL Injection Vulnerability Date: March, 9th 2011 GMT +7 Author: Shamus Software Link: http://www.esselbach.com/ Version : Esselbach Storyteller CMS System Version 1.8 Tested on: windows CVE : -...

FeiXun enterprise website management system v2011 upload vulnerabilities pass to kill 0day-vulnerability warning-the black bar safety net

Affected version: v2011 Official website: http://www.webhtm.cn PRODUCT DESCRIPTION: Suitable Agent building a Business Site of the enterprise source code, The aspect of the practical! Program description: 1. Features: simplified and Traditional Chinese switch, the product display system, news...

K6dvd music network 0day(anti-injection embarrassing)-vulnerability warning-the black bar safety net

Long time no see code to post before, I believe there should be a lot of seniors already know this BUG!! Ps:although I haven't found, perhaps is too long not concerned about the network! Oh K6dvd television system is the domestic good music leave management system! Today fish called me this week...

Chi Sepang international series system to kill exploit 0day and fix-vulnerability warning-the black bar safety net

Chi Sepang international series system to kill exploit 0day and fix Brief description: this vulnerability should be a series system to kill, in the background Annex to the upload not the file format limit, can lead to upload any type of file. Use method: can be utilized where there are two, one i...

Kaspersky's security suite source code leaked, available for download !!

As a result of leakage of public access were sources of products from Kaspersky Lab. And the company and to read the archive of the experts claim that it contained "a fragment of an older version of the antivirus engine, which had previously been circulated in closed hacking resources. A free fil...

Утечка кодов Касперского (KAV 2008) теперь в паблике

Ранее на хабр уже выплывало сообщение от том, что в Сети появилась информация об утечке исходного кода продуктов «Лаборатории Касперского». Ну пошумели, ну пообсуждали — и будет. Совершенно недавно в Твиттере появилась шумиха вокруг появления в паблике этих же самых исходников. Исходники всплыли ...

Simploo CMS 1.7.1 PHP Code Execution

Exploit for php platform in category web applications Simploo CMS Community Edition - Remote PHP Code Execution Issue Details ============= Product: Simploo CMS Community Edition Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.simploo.de/ Advisory-Status: published Credits...

CVE-2010-4225

Unspecified vulnerability in the modmono module for XSP in Mono 2.8.x before 2.8.2 allows remote attackers to obtain the source code for .aspx ASP.NET applications via unknown vectors related to an "unloading bug."...

CVE-2010-4225

Unspecified vulnerability in the modmono module for XSP in Mono 2.8.x before 2.8.2 allows remote attackers to obtain the source code for .aspx ASP.NET applications via unknown vectors related to an "unloading bug."...