openSUSE Security Update : mozilla-xulrunner181 (mozilla-xulrunner181-383)

The Mozilla XULRunner 1.8.1 engine received backports for security problems in 1.9.0.5. The following security issues were fixed : MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher mozbugra4 reported that an XBL binding, when attached to an unloaded document, can be used t...

WordPress Plugin My Category Order 2.8 - SQL Injection

Source: WordPress Plugin: My Category Order = 2.8 mycategoryorder.php / SQL Injection Vulnerability Download: http://wordpress.org/extend/plugins/my-category-order/ No Dork Author: ManhLuat93 at hcegroupdotnet Errors appears only when you have admin control Open mycategoryorder.php Line 47-48: if...

XML signature HMAC truncation authentication bypass

Overview The XML Signature specification allows for HMAC truncation, which may allow a remote attacker to bypass authentication. Description XML Signature Syntax and Processing XMLDsig is a W3C recommendation for providing integrity, message authentication, and/or signer authentication services f...

win32 xp-sp3 beep and exitprocess shellcode 28 bytes

No description provided by source. windows xp-sp3 beep and exitprocess shellcode this shellcode is using API call "Beep" which is in kernel32.dll adress of this API is 7C837A8Fh adress of exitprocess is 7C81CAFAh here is assembler code using Intel sintax and MASM32 --------------------...

NetBSD x86 Kill All Processes Shellcode

/ netbsd/x86 kill all processes shellcode author REMOVED AT REQUEST OF AUTHOR contact REMOVED AT REQUEST OF AUTHOR this shellcode is using syscall number 37 or 0x25 37 STD int syskillint pid, int signum; here is assembler code using intel syntaxe and NASM --------------begin----------- section...

netbsd/x86 kill all processes shellcode 23 bytes

No description provided by source. / netbsd/x86 kill all processes shellcode this shellcode is using syscall number 37 or 0x25 37 STD int syskillint pid, int signum; here is assembler code using intel syntaxe and NASM --------------begin----------- section .note.netbsd.ident dd 0x07,0x04,0x01 db...

Mandriva Update for openoffice.org MDKA-2007:098 (openoffice.org)

Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDKA-2007:098 openoffice.org Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Mandriva Update for openoffice.org MDKA-2007:098 (openoffice.org)

Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDKA-2007:098 openoffice.org Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

glFusion <= 1.1.2 COM_applyFilter()/order SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================================== glFusion = 4.1 php.ini independent google dork: "Page created in" "seconds by glFusion" +RSS Vulnerability, sql injection in 'order' and 'direction' arguments: look...

Telnet-Ftp Service Server v1.x Multiple Vulnerabilities (post auth)

Exploit for unknown platform in category remote exploits =================================================================== Telnet-Ftp Service Server v1.x Multiple Vulnerabilities post auth =================================================================== / Telnet-Ftp Service Server v1.x...

Syntax Desktop Directory Traversal Vulnerability

Syntax Desktop is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for pcre FEDORA-2008-6110

Check for the Version of pcre OpenVAS Vulnerability Test Fedora Update for pcre FEDORA-2008-6110 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

CVE-2009-0448

Directory traversal vulnerability in admin/modules/aa/preview.php in Syntax Desktop 2.7 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the synTarget parameter...

Directory traversal

Directory traversal vulnerability in admin/modules/aa/preview.php in Syntax Desktop 2.7 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the synTarget parameter...

CVE-2009-0448

CVE-2009-0448 concerns a directory traversal vulnerability in Syntax Desktop 2.7. The flaw resides in admin/modules/aa/preview.php, where a crafted synTarget parameter containing ".." allows remote attackers to include and execute arbitrary local files. The vulnerability enables partial impact to...

CVE-2009-0448

Directory traversal vulnerability in admin/modules/aa/preview.php in Syntax Desktop 2.7 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the synTarget parameter...

Syntax Desktop 2.7 (synTarget) Local File Inclusion Vulnerability

No description provided by source. -----------------:local File Include:----------------- ------------------------------------------------------- script: syntax-desktop 2-7 ------------------------------------------------------------------ download...

Syntax Desktop 2.7 Local File Inclusion

-----------------:local File Include:----------------- ------------------------------------------------------- script: syntax-desktop 2-7 ------------------------------------------------------------------ download...

Syntax Desktop 2.7 - synTarget Local File Inclusion

Syntax Desktop 2.7 - synTarget Local File Inclusion -----------------:local File Include:----------------- ------------------------------------------------------- script: syntax-desktop 2-7 ------------------------------------------------------------------ download...

Syntax Desktop 2.7 (synTarget) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================= Syntax Desktop 2.7 synTarget Local File Inclusion Vulnerability ================================================================= -----------------:local File...