Xerver <= 4.32 Multiple Vulnerabilities

Xerver is prone to multiple vulnerabilities including source code disclosure, denial of service, security bypass, and directory traversal issues. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective rig...

Mongoose Slash Character Remote File Disclosure Vulnerability

Mongoose is prone to a remote file-disclosure vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view the source code of files in the context of the server process, which may aid in further attacks. This issue affects Mongoose 2....

Xerver Multiple Vulnerabilities

Xerver is prone to multiple vulnerabilities including source code disclosure, denial of service, security bypass, and directory- traversal issues. Successfully exploiting these issues may allow an attacker to disclose sensitive information, bypass certain security-restrictions, perform...

Xerver 4.32 - Source Disclosure HTTP Authentication Bypass (Metasploit)

Xerver 4.32 - Source Disclosure HTTP Authentication Bypass Metasploit Exploit Title: Xerver Source Disclosure and HTTP Auth Bypass Date: 01 Aug 2010 Author: Ben Schmidt aka supernothing Software: http://www.javascript.nu/xerver/ Version: 4.32 and prior Tested on: Windows XP SP3 CVE: N/A This file...

Mongoose URI Trailing Slash Request Source Code Disclosure

The version of the Mongoose web server running on the remote host discloses the source code of files such as PHP scripts when a trailing slash '/' is appended to a URL. An unauthenticated, remote attacker can leverage this issue to disclose the source of scripts, which may contain passwords and...

[MajorSecurity SA-079]PHPKIT WCMS - Multiple stored Cross Site Scripting Issues

MajorSecurity SA-079PHPKIT WCMS - Multiple stored Cross Site Scripting Issues Details ============= Product: PHPKIT WCMS Security-Risk: low Remote-Exploit: yes Vendor-URL: http://www.phpkit.com/ Advisory-Status: published Credits ============= Discovered by: David Vieira-Kurz of MajorSecurity...

PHPKIT WCMS 1.6.5 Reflected Cross Site Scripting

MajorSecurity SA-078PHPKIT WCMS - Reflected Cross Site Scripting Issue Details ============= Product: PHPKIT WCMS Security-Risk: low Remote-Exploit: yes Vendor-URL: http://www.phpkit.com/ Advisory-Status: published Credits ============= Discovered by: David Vieira-Kurz of MajorSecurity Original...

PHPKIT WCMS 1.6.5 Cross Site Scripting

MajorSecurity SA-079PHPKIT WCMS - Multiple stored Cross Site Scripting Issues Details ============= Product: PHPKIT WCMS Security-Risk: low Remote-Exploit: yes Vendor-URL: http://www.phpkit.com/ Advisory-Status: published Credits ============= Discovered by: David Vieira-Kurz of MajorSecurity...

Hua-speed online trading platform oday-vulnerability warning-the black bar safety net

Hua-speed online trading platform oday program: China speed online trading platform Vulnerability description:upload, storm library google keywords: inurl:listbuy. asp? class1 EXP test: Copy the code save it as html file html head meta http-equiv="Content-Type" content="text/html; charset=gb2312"...

FreeBSD mbuf本地权限提升漏洞

BUGTRAQ ID: 41577 CVE ID: CVE-2010-2693 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 mbuf是FreeBSD内核进程间通讯和联网子系统中的基础内存管理单元。网络报文和套接字缓冲区依赖于mbuf进行存储。 在复制mbuf缓冲区引用时没有正确地拷贝只读标志，如果使用sendfile2系统调用在回环接口上传输数据，就可能导致修改所传送数据的后端内存页，造成数据破坏。本地攻击者可以通过精心控制系统文件的破坏情况来利用这种数据破坏提升权限。请注意攻击者可以破坏任意可读访问的文件。 FreeBSD FreeBSD 8....

Bouncing RPC

In the early years of Core Security Technologies, the company not only offered security consulting services, but often was sub-contracted to do R+D for several security vendors. The first and most intellectually rewarding of such contracts came from Secure Networks Inc. SNI, a Canadian start-up...

FreeBSD-SA-10:07.mbuf

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-10:07.mbuf Security Advisory The FreeBSD Project Topic: Lost mbuf flag resulting in data corruption Category: core Module: kern Announced: 2010-07-13 Credits: Min...

LiteSpeed Source Code Disclosure/Download

This module exploits a source code disclosure/download vulnerability in versions 4.0.14 and prior of LiteSpeed. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LiteSpeed Source Code...

Kubelance SQL Injection Vulnerability

Exploit for php platform in category web applications ===================================== Kubelance SQL Injection Vulnerability ===================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /...

Nginx <=0.7.65/0.8.39 source code download vulnerability-vulnerability warning-the black bar safety net

Nginx is a network Protocol and reverse proxy server, also is one by Igor Sysoev prepared by the receiving Agent server it is already in the include RamblerMedia. com, including many influential Russian website has used more than 5 years. According to the survey Netcraft nginx in 2 0 1 0 in April...

CVE-2010-2333

LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension...

CVE-2010-2336

index.php in Yamamah Photo Gallery 1.00 allows remote attackers to obtain the source code of executable files within the web document root via the download parameter...

CVE-2010-2336

index.php in Yamamah Photo Gallery 1.00 allows remote attackers to obtain the source code of executable files within the web document root via the download parameter...

CVE-2010-2333

LiteSpeed Web Server 4.0.x prior to 4.0.15 is affected by CVE-2010-2333: an HTTP request containing a null byte followed by .txt can disclose the source code of scripts. This vulnerability enables an attacker to read server-side script sources, potentially exposing sensitive information. Impact i...

CVE-2010-2333

LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension...