4333 matches found
Mantis Bug Tracker 0.19.2/1.0 - 'Bug_sponsorship_list_view_inc.php' File Inclusion
source: https://www.securityfocus.com/bid/15212/info Mantis is prone to a remote and local file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary remote and local PHP code on a...
vBulletin 3.0.8 - Accessible Database Backup Searcher (3)
/ Needed to pentest a few vBulletin forums so I wrote this junk real quick. Reference: http://securitytracker.com/alerts/2005/Aug/1014805.html Good paths: /forum/ / /forum/archive/ /forum/cpadmin/ Update 1: Code error fixes. /str0ke [email protected] Update 2: Fixed datestring-version for...
BNBT EasyTracker Malformed GET Request Remote DoS
The remote host is running BNBT EasyTracker, a packaged BitTorrent Tracker Installer for Windows. The remote version of BNBT EasyTracker fails to properly handle malformed HTTP requests, making it prone to denial of service attacks. An attacker can crash the application by sending a request with ...
Mantis Bug Tracker 0.x/1.0 - Multiple Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/14604/info Mantis is prone to multiple input validation vulnerabilities. These issues involve cross-site scripting, HTML injection and variable poisoning, and are due to a failure in the application to properly sanitize user-supplied input. An attacker ma...
Mantis Bug Tracker 0.x1.0 - Multiple Input Validation Vulnerabilities
Mantis Bug Tracker 0.x1.0 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/14604/info Mantis is prone to multiple input validation vulnerabilities. These issues involve cross-site scripting, HTML injection and variable poisoning, and are due to a failure in th...
CVE-2004-2029
BNBT BitTorrent Tracker, Beta 7.5 Release 2 and earlier, is affected by a vulnerability in Util_DecodeHTTPAuth where a remote attacker can trigger a crash (denial of service) by sending a crafted HTTP Basic Authorization header containing the value "A==". No remediation details are provided in th...
CVE-2004-1860
CVE-2004-1860 concerns a buffer overflow in Check Point SmartDashboard for Check Point NG AI R54/R55. The overflow can be triggered by a large filter on a column when using SmartView Tracker, allowing remote authenticated users to cause a denial of service (server disconnect) and potentially exec...
CVE-2004-1860
Buffer overflow in Check Point SmartDashboard in Check Point NG AI R54 and R55 allows remote authenticated users to cause a denial of service server disconnect and possibly execute arbitrary code via a large filter on a column when using SmartView Tracker...
Sentinel LM 7.x UDP License Service Remote Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ================================================================== Sentinel LM 7.x UDP License Service Remote Buffer Overflow Exploit ================================================================== / SentinelLM, UDP License Service Stack...
TorrentTrader download.php id Parameter SQL Injection
The remote host is running TorrentTrader, a web-based BitTorrent tracker. The remote version of this software is vulnerable to a SQL injection attack that may allow an attacker to inject arbitrary SQL statements in the remote database. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
Mantis Bug Tracker 0.x - New Account Signup Mass Emailing
Mantis Bug Tracker 0.x - New Account Signup Mass Emailing source: https://www.securityfocus.com/bid/10995/info Mantis is reportedly susceptible to a vulnerability in its signup process allowing mass email attacks. When a new user signs up to Mantis, the system automatically sends an email message...
Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities
Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/10994/info Mantis is a web-based bug tracking system. It is written in PHP and supported by a MySQL database. It is reported that Mantis is affected by cross-site scripting...
Mantis Bug Tracker 0.19 - Remote Server-Side Script Execution
Mantis Bug Tracker 0.19 - Remote Server-Side Script Execution source: https://www.securityfocus.com/bid/10993/info Mantix is reportedly susceptible to a remote server-side script execution vulnerability. This vulnerability only presents itself when PHP is configured on the hosting computer with...
Mantis Bug Tracker 0.x - New Account Signup Mass Emailing
source: https://www.securityfocus.com/bid/10995/info Mantis is reportedly susceptible to a vulnerability in its signup process allowing mass email attacks. When a new user signs up to Mantis, the system automatically sends an email message to the given email address. This email contains the users...
Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/10994/info Mantis is a web-based bug tracking system. It is written in PHP and supported by a MySQL database. It is reported that Mantis is affected by cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly...
Mantis Bug Tracker 0.19 - Remote Server-Side Script Execution
source: https://www.securityfocus.com/bid/10993/info Mantix is reportedly susceptible to a remote server-side script execution vulnerability. This vulnerability only presents itself when PHP is configured on the hosting computer with 'registerglobals = on'. When PHP is configured to register glob...
RT: Request Tracker 'ShowConfigTab' Security Bypass
Binary data 5078.prm...
SP Research Labs Advisory 12
SP Research Labs Advisory x12 ----------------------------- BNBT BitTorrent Tracker Denial Of Service ----------------------------------------- Versions: cbtt7520040515 Beta 7.5 Release 2 and prior versions Vendors: http://bnbt.go-dedicated.com/ http://bnbteasytracker.sourceforge.net/...
CVE-2004-2029
The UtilDecodeHTTPAuth function in BNBT BitTorrent Tracker Beta 7.5 Release 2 and earlier allows remote attackers to cause a denial of service crash via a Basic Authorization HTTP request with a "A==" value...
[Full-Disclosure] BNBT BitTorrent Tracker Denial Of Service
SP Research Labs Advisory x12 ----------------------------- BNBT BitTorrent Tracker Denial Of Service ----------------------------------------- Versions: cbtt7520040515 Beta 7.5 Release 2 and prior versions Vendors: http://bnbt.go-dedicated.com/ http://bnbteasytracker.sourceforge.net/...