Ramui Web Hosting Directory Script 4.0 RFI

Title: Ramui web hosting directory script 4.0 Remote File Include Vulnerability Author: bd0rk Twitter: twitter.com/bd0rk Vendor: http://www.ramui.com Download: http://ramui.com/directory-script/download-v4.html Proof-of-Concept: /gb/include/connection.php lines 6-13 in php-sourcecode class...

Ramui Web Hosting Directory Script 4.0 - Remote File Inclusion

Title: Ramui web hosting directory script 4.0 Remote File Include Vulnerability Author: bd0rk Twitter: twitter.com/bd0rk Vendor: http://www.ramui.com Download: http://ramui.com/directory-script/download-v4.html Proof-of-Concept: /gb/include/connection.php lines 6-13 in php-sourcecode class...

mxBB Module mx_glance 2.3.3 - Remote File Include Vulnerability

No description provided by source. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + + + mxBB Module mxglance 2.3.3 Remote File Include Vulnerability + + + + Discovered by bd0rk || SOH-Crew + + + + www.soh-crew.it.tt + + + + The german Coding and IT-Security Ressource + + +...

D-Link DI-614+ IP Fragment Reassembly Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7219/info It has been reported that the implementation of the Internet Protocol IP in the firmware of the D-Link DI-614+ wireless router is vulnerable to a remotely exploitable denial of service condition. The vulnerabili...

Internet Explorer 9 Memory Corruption Crash PoC

No description provided by source. ?php / Internet Explorer 9 Memory Corruption PoC Exploit Successfully executed with IE9 version 9.0.8112.16421 Discovered by Jean Pascal Pereira [email protected] / settimelimit0; iniset'memorylimit', '300M'; if!fileexistsjunk.htm $string = span id='; for$i = 0;...

Vionlink comments 2.2 Remote File Include Vulnerability

Exploit for php platform in category web applications Exploit-Title: vionlink comments 2.2 Remote File Include Vulnerability Date: 2014-05-06 Author: bd0rk Software-Link: http://www.vionlink.de/downloadcounter.php?version=vcomments2.2 Affected-Version: 2.2 G00gle-D0rK: n/a ---script-kiddieprotect...

Cisco Collaboration Server Source Code Disclosure Vulnerabilities

Cisco Collaboration Server is prone to multiple vulnerabilities that may allow remote attackers to obtain sourcecode, which may aid them in further attacks. Cisco Collaboration Server 5 is vulnerable; other versions may be affected as well. NOTE: The vendor has discontinued this product. OpenVAS...

MPlayer SAMI Subtitle File Overflow

Added: 09/07/2011 BID: 49149 OSVDB: 74604 Background MPlayer is an open source media player with support for many operating systems. Problem MPlayer does not properly validate the contents of Synchronized Accessible Media Interchange SAMI caption files. If a video references a malformed SAMI file...

Bigware Shop 2.0 pollid Remote SQL Injection Vulnerability

No description provided by source. Bigware Shop 2.0 Bug found by D4m14n Vendor: http://www.bigware.de/ Vuln. Version: 2.0 prior versions also may be affected Email: [email protected] GoogleDork: "Diese Shopsoftware wurde entwickelt von Bigware" There's a SQL-Injection in...

bigware-sql.txt

Bigware Shop 2.0 Bug found by D4m14n Vendor: http://www.bigware.de/ Vuln. Version: 2.0 prior versions also may be affected Email: [email protected] GoogleDork: "Diese Shopsoftware wurde entwickelt von Bigware" There's a SQL-Injection in "mainbigware53.tpl.php"! You can find more than this...

Bigware Shop 2.0 - 'pollid' SQL Injection

Bigware Shop 2.0 Bug found by D4m14n Vendor: http://www.bigware.de/ Vuln. Version: 2.0 prior versions also may be affected Email: [email protected] GoogleDork: "Diese Shopsoftware wurde entwickelt von Bigware" There's a SQL-Injection in "mainbigware53.tpl.php"! You can find more than this...

Bigware Shop 2.0 - pollid SQL Injection

Bigware Shop 2.0 - pollid SQL Injection Bigware Shop 2.0 Bug found by D4m14n Vendor: http://www.bigware.de/ Vuln. Version: 2.0 prior versions also may be affected Email: [email protected] GoogleDork: "Diese Shopsoftware wurde entwickelt von Bigware" There's a SQL-Injection in...

[Full-disclosure] Secure Computing - Security Reporter Auth Bypass and Directory Traversal Vulnerability

SECURITYREPORTER - AUTHENTICATION BYPASS AND DIRECTORY TRAVERSAL VULNERABILITY Product: SecurityReporter Version: 4.6.3 Build Date: 04/20/2007 Platform: Win32 Vendor: Secure Computing www.securecomputing.com Product Description ------------------- "SecurityReporter is a security event analysis an...

KPMG-2002026: Jrun sourcecode Disclosure

-------------------------------------------------------------------- Title: Jrun sourcecode Disclosure BUG-ID: 2002026 Released: 01st Jul 2002 -------------------------------------------------------------------- Problem: ======== It is possible for a malicious user to trick the Jrun webserver int...

KPMG-2002012: Sambar Webserver Serverside Fileparse Bypass

-------------------------------------------------------------------- -=Sambar Webserver Serverside Fileparse Bypass=- courtesy of KPMG Denmark BUG-ID: 2002012 Released: 17th Apr 2002 -------------------------------------------------------------------- Problem: ======== A flaw in the serverside UR...