Alt-N WebAdmin 3.3.3 - Remote Source Code Information Disclosure

source: https://www.securityfocus.com/bid/45476/info Alt-N WebAdmin is prone to a remote information-disclosure vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view the source code of files in the context of the server process...

Gawker Media Hacked by Gnosis, Source Code Leaked

A lot of people are gawking at Gawker Media this morning, though not for reasons that will bring much cheer to its founder, Nick Denton. Gawker, the parent company of popular blogs like Gizmodo, Lifehacker, Jezebel, and ValleyWag, has suffered a significant breach. A hacker group known as Gnosis...

shopex. cn 3 source code download, leak of sensitive information vulnerability and the Fix-vulnerability warning-the black bar safety net

Brief Description: can be URL Direct Download or view the Web App directory structure, source code, Subversion server address, permission to modify the program of the account and other information. Vulnerability to prove: Solution: delete/filter all . svn directory, to restrict access . svn...

Lessons Learned From the Gawker Hack

Everyone sounded the alarms at the Gawker Media attack, which included a security breach of websites such as Gizmodo, Lifehacker, Kotaku, io9, and others. The numbers were impressive: 1.3 million user accounts exposed, 405 megabytes of source code lost, and perhaps more important to some, the...

ProFTPD controlled source packages Backdoor security vulnerabilities and fixes-vulnerability warning-the black bar safety net

Affected version: ProFTPD Project ProFTPD 1.3. x ProFTPD is an open source FTP service program. ProFTPD specific period version is to insert the back door code, a remote attacker can use this Backdoor unauthorized access toFTP serveraccess to the control system. This issue affects the project's...

Sulata iSoft - 'stream.php' Local File Disclosure

========================================================= Sulata iSoft stream.php Local File Disclosure Exploit ========================================================= Exploit Title : Sulata iSoft developer by Rizwan Azam you look site.com/about.php Date : 10 December 2010 Author : Suddendeath...

ActiveWebSoftware Active Auction Pro SQL Injection Vulnerability

Exploit for asp platform in category web applications ================================================================ ActiveWebSoftware Active Auction Pro SQL Injection Vulnerability ================================================================...

T-Dreams Cars Ads Package 2.0 SQL Injection

Author: R4dc0re Exploit Title: T-Dreams Cars Ads Package SQL injection Vulnerability Date: 04-12-2010 Vendor or Software Link:http://t-dreams.com Category:WebApp Demo Link:http://t-dreams.com/demo/jobcareerV3 Version:2.0 Price:31$ Contact: [email protected] Website: www.1337db.com Greetings to:...

T-Dreams Cars Ads Package 2.0 - SQL Injection

Author: R4dc0re Exploit Title: T-Dreams Cars Ads Package SQL injection Vulnerability Date: 04-12-2010 Vendor or Software Link:http://t-dreams.com Category:WebApp Version:2.0 Price:31$ Contact: [email protected] Website: www.1337db.com Greetings to: R0073r1337db.com, L0rd CrusAd3r,Sid3^effects and ...

T-Dreams Cars Ads Package 2.0 - SQL Injection

T-Dreams Cars Ads Package 2.0 - SQL Injection Author: R4dc0re Exploit Title: T-Dreams Cars Ads Package SQL injection Vulnerability Date: 04-12-2010 Vendor or Software Link:http://t-dreams.com Category:WebApp Version:2.0 Price:31$ Contact: [email protected] Website: www.1337db.com Greetings to:...

ProFTPD 1.3.3c compromised source remote root Trojan

Exploit for php platform in category remote exploits ==================================================== ProFTPD 1.3.3c compromised source remote root Trojan ==================================================== == ProFTPD Compromise Report == On Sunday, the 28th of November 2010 around 20:00 UTC...

ProFTPD 1.3.3c Trojan Source Code

== ProFTPD Compromise Report == On Sunday, the 28th of November 2010 around 20:00 UTC the main distribution server of the ProFTPD project was compromised. The attackers most likely used an unpatched security issue in the FTP daemon to gain access to the server and used their privileges to replace...

ProFTPd 1.3.3c - Compromised Source Backdoor Remote Code Execution

== ProFTPD Compromise Report == On Sunday, the 28th of November 2010 around 20:00 UTC the main distribution server of the ProFTPD project was compromised. The attackers most likely used an unpatched security issue in the FTP daemon to gain access to the server and used their privileges to replace...

FreeBSD-SA-10:10.openssl

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-10:10.openssl Security Advisory The FreeBSD Project Topic: OpenSSL multiple vulnerabilities Category: contrib Module: openssl Announced: 2010-11-29 Credits: Georg...

Linux Kernel Unix Sockets Local Denial of Service

Exploit for linux platform in category dos / poc ================================================= Linux Kernel Unix Sockets Local Denial of Service ================================================= Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to...

JDownloader Webinterface Source Code Disclosure Vulnerability

Exploit for php platform in category web applications ============================================================= JDownloader Webinterface Source Code Disclosure Vulnerability ============================================================= Exploit Title: JDownloader Webinterface Source Code...

JDownloader Webinterface - Source Code Disclosure

JDownloader Webinterface - Source Code Disclosure Exploit Title: JDownloader Webinterface Source Code Disclosure Date: 11/24/10 Author: Sil3ntDre4m Software Link: http://jdownloader.org Version: Latest 0.9.850 Tested on: Windows, Linux JDownloader WebInterface is vulnerable to a source code...

JDownloader Webinterface - Source Code Disclosure

Exploit Title: JDownloader Webinterface Source Code Disclosure Date: 11/24/10 Author: Sil3ntDre4m Software Link: http://jdownloader.org Version: Latest 0.9.850 Tested on: Windows, Linux JDownloader WebInterface is vulnerable to a source code disclosure exploit to due not properly sanitizing user...

JDownloader Webinterface Source Code Disclosure

Exploit Title: JDownloader Webinterface Source Code Disclosure Date: 11/24/10 Author: Sil3ntDre4m Software Link: http://jdownloader.org Version: Latest 0.9.850 Tested on: Windows, Linux JDownloader WebInterface is vulnerable to a source code disclosure exploit to due not properly sanitizing user...

Fedora Update for cvs FEDORA-2010-16599

Check for the Version of cvs OpenVAS Vulnerability Test Fedora Update for cvs FEDORA-2010-16599 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...