EUVD-2026-4515

Malicious code in test-on-other npm...

Malicious code in test-on-other (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aaeca000a0d70bc52934cc2047e1924aa1f63f790734f0063a190476e7accdf2 The package test-on-other was found to contain malicious code...

MAL-2026-497 Malicious code in test-on-other (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aaeca000a0d70bc52934cc2047e1924aa1f63f790734f0063a190476e7accdf2 The package test-on-other was found to contain malicious code...

EUVD-2026-4509

Malicious code in test-on-other-again npm...

Malicious code in test-on-other-again (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c2b4e18e26bfe221e4ebcdaa18a271ea746bee1977c35172726fd753a923897 The package test-on-other-again was found to contain malicious code. Source: ossf-package-analysis...

Core FTP/SFTP Server 1.2 Build 589.42 Denial Of Service

Exploit Title: Core FTP/SFTP Server 1.2 - Build 589.42 - Denial of Service PoC Discovery by: Victor MondragA3n Discovery Date: 2019-02-13 Vendor Homepage: http://www.coreftp.com/ Software Link: http://www.coreftp.com/server/download/archive/CoreFTPServer589.42.exe Tested Version: v2-Build 673...

Mess Management System 1.0 - SQL Injection

Exploit Title: Mess Management System 1.0 - SQL Injection Dork: N/A Date: 2019-01-28 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.m.testbd.xyz/ Software Link: https://www.sourcecodester.com/sites/default/files/download/biddut/ms0.zip Version: 1.0 Category: Webapps Tested on:...

Oracle FCDB <= 10.5 Cross Site Scripting Vulnerability

Exploit for multiple platform in category remote exploits Title: Cross Site Scripting - Oracle Flex cube Direct Banking Application 10.5 Application: Oracle FCDB Versions Affected: Oracle Flex cube Direct Banking Software 10.5 Note: The payload will bypass the most of the WAFs running behind the...

Oracle VM VirtualBox 4.3.28 - &#039;.ovf&#039; Crash (PoC)

Exploit Title: Oracle VM VirtualBox 4.3.28 Crash Author: sultan albalawi Tested on:win7 open viryualbox --ctrl+i--choose file --double+double+double next ban= '\x0d\x0a\x20\x20\x20\x20\x20\x20\x20\x5c\x20\x20\x20\x2d\x20\x20' ban+='\x2d\x20\x20\x2d\x20\x3c\x73\x65\x72\x76\x65\x72\x3e\x20\x20\x2d'...

New CMS 2.1 Local File Inclusion

=============================================== + TITLE : NEW CMS Local File Inclusion Vulnerability /proc/self/environ + VENDOR : http://new-cms.org/index.php?lng=it&mod=download&pg=indice + VERSION : 2.1 or Later + AUTHOR : R3vanBastard + TESTED ON : Windows + DORK : "New CMS"...

Mini-stream RM-MP3 Converter 3.1.2.2 - Local Buffer Overflow

No description provided by source. Exploit Title : Mini-stream RM-MP3 Converter? V 3.1.2.2 Local Buffer OverFlow Author : SkY-NeT SySteMs Software Link : http://mini-stream.net/rm-to-mp3-converter/download/ Version : 3.1.2.2 Tested on : Xp Sp 2 Category : Local Code : Python Email :...

Silentblast Interactive Shell Upload

-------------------- IN The NAme OF God -------------------- -====CMS Provided by Silentblast Interactive remote file uploader RFU====- Exploit Title:CMS Provided by Silentblast Interactive Exploit Author: FarbodEZRaeL Tested on: Windows xp MAil : [email protected] -====Dork====-...

WordPress SEM WYSIWYG Arbitrary File Upload

Exploit Title: Wordpress sem WYSIWYG Arbitrary File Upload Vulnerability Google Dork: inurl:wp-content/plugins/sem-wysiwyg/ Date: 08/22/2012 Author: Crim3R Tested on: all ================================== D3m0:...

Acal Calendar 2.2.6 - Cross-Site Request Forgery

Acal Calendar 2.2.6 - Cross-Site Request Forgery Exploit Title: Acal calendar 2.2.6 CSRF Vulnerability Date: 11-03-2012 Author: Number 7 Software Link: http://sourceforge.net/projects/acalproj/files/latest/download?source=directory Version: 2.2.6 Dork: "Calendar Admin: Edit Header and Footer"...

PHP Photo Album 0.4.1.16 Cross Site Scripting / Disclosure

---------------------------------------------------------------- PHP Photo Album Poc 2 http://localhost/phpAlbum/main.php?cmd=albumnew&keyword=XSS Demo :http://www.iloveazucar.com/phpAlbum/main.php?cmd=albumnew&keyword="onmouseover%3dprompt975554 bad%3d" Demo :http://www.dolfpretorius.com/main.ph...

Marinet CMS - &#039;room.php&#039; Blind SQL Injection

==================================================== MARINET CMS room.php = Blind SQL Vulnerability ==================================================== Exploit Title: MARINET CMS room.php = Blind SQL Vulnerability Date: 30 - 09 - 2011 Author: BHG Security Center Software Link:...

RGBoard 4.2.1 SQL Injection

Exploit Title: rgboard SQL Injection Vulnerability inurl: rgboard4/list.php Date: 2011. 6.22 Author: hamt0ry [email protected] / / Test on : Windowss XP SP3 Software Link: http://v4.rgboard.com/rg4board/down.php?&bbscode=rgboardpds&bdnum=1757&key=0&mode=down Version: rgboard 4.2.1 SQL Injection...

Symantec AMS Intel Alert Handler Command Execution

// Remote command execution at System level without authentication // Advisory:https://www.foofus.net/?pageid=149 // Exploit Title: Symantec AMS Intel Alert Handler service Design Flaw // Date: 07/28/10 // Author: Spider // Software Link: http://www.foofus.net/spider/code/ams-cmd.cpp.txt // Teste...

New-CMS 1.08 LFI / XSS / XSRF / Shell Upload

Multiple Vulnerability in New-CMS Vendor SW: New-CMS Version: 1.08 but possible all versions Vendor URL: www.new-cms.org Tested on: Ubuntu Server 9.10 Category: Webapps/0day Date: 17 Feb 2010 Author: Alberto "fulgur" Fontanella Author URL: ictsec.wordpress.com Author EMAIL: itsicurezzayahoo.it 1 ...

PHP 5.2.10 safe_mode Bypass

PHP safemode bypass with exec/system/passthru Once again php public new version :php5.2.10 ,and it fix lots of bugs, like this : Bug 45997safemode bypass with exec/system/passthru incorrect fix php5.2.10 ... b = strrchrcmd, PHPDIRSEPARATOR; ifdef PHPWIN32 if b && b == '\' && b == cmd...