Apache ActiveMQ 5.2/5.3 - Source Code Information Disclosure

source: https://www.securityfocus.com/bid/39636/info Apache ActiveMQ is prone to a vulnerability that lets attackers access source code because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable computer in...

Apache ActiveMQ 5.25.3 - Source Code Information Disclosure

Apache ActiveMQ 5.25.3 - Source Code Information Disclosure source: https://www.securityfocus.com/bid/39636/info Apache ActiveMQ is prone to a vulnerability that lets attackers access source code because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability...

IE/Opera source code viewer Null Character Handling

No description provided by source. Exploit Title: IE/Opera source code viewer Null Character Handling Vulnerability Date: 10/04/2010 Author: Daniel Correa Software Link: http://www.microsoft.com/windows/internet-explorer/default.aspx Software Link: http://www.opera.com/download/ Version: Tested o...

Microsoft Internet ExplorerOpera - Source Code viewer Null Character Handling

Microsoft Internet ExplorerOpera - Source Code viewer Null Character Handling Exploit Title: IE/Opera source code viewer Null Character Handling Vulnerability Date: 10/04/2010 Author: Daniel Correa Software Link: http://www.microsoft.com/windows/internet-explorer/default.aspx Software Link:...

IE/Opera source code viewer Null Character Handling

Exploit for windows platform in category remote exploits =================================================== IE/Opera source code viewer Null Character Handling =================================================== Exploit Title: IE/Opera source code viewer Null Character Handling Vulnerability Dat...

Microsoft Internet Explorer/Opera - Source Code viewer Null Character Handling

Exploit Title: IE/Opera source code viewer Null Character Handling Vulnerability Date: 10/04/2010 Author: Daniel Correa Software Link: http://www.microsoft.com/windows/internet-explorer/default.aspx Software Link: http://www.opera.com/download/ Version: Tested on IE 8, Opera 10.51 Tested on:...

Asset Manager 1.0 Shell Upload

Title: Asset Manager Shell Upload Vulnerability Version: 1.0 Author: Shichemt Alen & NeTOwn3r Meher Assel Software Link: http://www.sourcecodeonline.com/details/assetmanagercmsandfileeditor.html Price : $35.00 Founded By NetOwn3r & Shichemt Alen Hi All Muslims Brothers & All Hackers Exploit :...

Asset Manager 1.0 - Arbitrary File Upload

Asset Manager 1.0 - Arbitrary File Upload Title: Asset Manager Shell Upload Vulnerability Version: 1.0 Author: Shichemt Alen & NeTOwn3r Meher Assel Software Link: http://www.sourcecodeonline.com/details/assetmanagercmsandfileeditor.html Price : $35.00 Founded By NetOwn3r & Shichemt Alen Hi All...

Tiny Java Web Server 1.71 - Multiple Input Validation Vulnerabilities

Tiny Java Web Server 1.71 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/39666/info Tiny Java Web Server is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include a...

Tiny Java Web Server 1.71 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/39666/info Tiny Java Web Server is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include a directory-traversal vulnerability, an open-redirection vulnerability, and a...

OneCMS 2.5 - SQL Injection

Exploit Title: ONECMS v2.5 SQL INJECTION Date: 05.03.2010 Author: Ctacok and .:melkiy:. Software Link: http://sourceforge.net/projects/onecms/ Version: 2.5 Tested on: Ubuntu 9.10 Apache2+PHP5 !/usr/bin/perl use LWP::Simple; print "\n"; print "\n"; print " ONECMS v2.5 SQL INJECTION \n"; print " Bu...

jQuery Validate 1.6.0 Cross Site Scripting

+----------------------------------------------+ ADVISORY – jQuery Validate 1.6.0 Demo Code AFFECTED PACKAGES jQuery Validate 1.6.0 SilverStripe 2.3.X to 2.3.5 Discovered By CodeScan.com +----------------------------------------------+ Vendor's Website:...

Design/Logic Flaw

Cisco Collaboration Server CCS 5 allows remote attackers to read the source code of JHTML files via URL encoded characters in the filename extension, as demonstrated by 1 changing .jhtml to %2Ejhtml, 2 changing .jhtml to .jhtm%6C, 3 appending %00 after .jhtml, and 4 appending %c0%80 after .jhtml,...

CVE-2010-0642

Cisco Collaboration Server CCS 5 allows remote attackers to read the source code of JHTML files via URL encoded characters in the filename extension, as demonstrated by 1 changing .jhtml to %2Ejhtml, 2 changing .jhtml to .jhtm%6C, 3 appending %00 after .jhtml, and 4 appending %c0%80 after .jhtml,...

CVE-2010-0642

Cisco Collaboration Server CCS 5 allows remote attackers to read the source code of JHTML files via URL encoded characters in the filename extension, as demonstrated by 1 changing .jhtml to %2Ejhtml, 2 changing .jhtml to .jhtm%6C, 3 appending %00 after .jhtml, and 4 appending %c0%80 after .jhtml,...

CVE-2010-0642

Cisco Collaboration Server 5 is affected by CVE-2010-0642, a source-code disclosure vulnerability that lets remote attackers read JHTML files by crafting URL-encoded filename extensions (e.g., .jhtml → %2Ejhtml, .jhtml → .jhtm%6C, etc.). The affected components include multiple CCS web interfaces...

Cisco Collaboration Server 5 Cross Site Scripting / Code Disclosure

Title: Cisco Collaboration Server 5 XSS, Source Code Disclosure Author: s4squatch Published: 2010-02-11 Cisco Collaboration Server 5 XSS, Source Code Disclosure Discovered by: s4squatch of SecureState R&D Team www.securestate.com Discovered: 08/26/2008 Note: End of Engineering --...

Cisco Collaboration Server 5 - Cross-Site Scripting / Source Code Disclosure

Cisco Collaboration Server 5 XSS, Source Code Disclosure Discovered by: s4squatch of SecureState R&D Team www.securestate.com Discovered: 08/26/2008 Note: End of Engineering -- http://www.cisco.com/en/US/products/sw/custcosw/ps747/prodeolnotice09186a008032d4d0.html Replaced with:...

Cisco Collaboration Server 5 XSS, Source Code Disclosure

Exploit for unknown platform in category web applications ======================================================== Cisco Collaboration Server 5 XSS, Source Code Disclosure ======================================================== Cisco Collaboration Server 5 XSS, Source Code Disclosure Discovered...

Cisco Collaboration Server 5 - Cross-Site Scripting Source Code Disclosure

Cisco Collaboration Server 5 - Cross-Site Scripting Source Code Disclosure Cisco Collaboration Server 5 XSS, Source Code Disclosure Discovered by: s4squatch of SecureState R&D Team www.securestate.com Discovered: 08/26/2008 Note: End of Engineering --...