93 matches found
Uphotogallery Server SQL Injection Vulnerabilty
Exploit for asp platform in category web applications =============================================== Uphotogallery Server SQL Injection Vulnerabilty =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 ...
phpAutoVideo - Cross-Site Request Forgery
phpAutoVideo - Cross-Site Request Forgery Exploit Title: phpAutoVideo csrf SoftWare:https://secure.agaresmedia.com/v6/products/phpautovideo Dork: Copyright Agares Media phpautovideo Author: GoLdeN-z3r0 ----------------------------------------------------------------- | PoC : |...
CVE-2009-0506
CVE-2009-0506 affects IBM WebSphere Application Server 5.1 and 6.0.2 before 6.0.2.33 on z/OS when CSIv2 Identity Assertion is enabled and EJB interaction occurs between a WAS 6.1 instance and a pre-6.1 instance. The vulnerability allows local users to cause an unknown impact via two vectors: (1) ...
FreeBSD Ports: openssl, openssl-overwrite-base
The remote host is missing an update to the system as announced in the referenced advisory. VID 60e26a40-3b25-11da-9484-00123ffe8333 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Unfixed XSS vulnerability at www.politikstube.de
Security researcher PaPPy, has submitted on 29/06/2008 a cross-site-scripting XSS vulnerability affecting www.politikstube.de, which at the time of submission ranked 171678 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/07/2008. It is...
Unfixed XSS vulnerability at www.thaidomain.net
Security researcher Azat Harutyunyan, has submitted on 01/06/2008 a cross-site-scripting XSS vulnerability affecting www.thaidomain.net, which at the time of submission ranked 19676733 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/06/2008...
Unfixed XSS vulnerability at www.webcitation.org
Security researcher Uber0n, has submitted on 30/09/2007 a cross-site-scripting XSS vulnerability affecting www.webcitation.org, which at the time of submission ranked 836082 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/10/2007. It is...
Vote! Pro 4.0 - Multiple PHP Code Execution Vulnerabilities
source: https://www.securityfocus.com/bid/22191/info Multiple VoIP phones using the Aredfox PA168 Chipset are prone to a session-hijacking vulnerability due to a design error. An attacker can exploit this issue to gain administrative access to the embedded webserver running on the affected device...
Newxooper-php 0.9.1 (mapage.php) Remote File Include Vulnerability
No description provided by source. Newxooper-php v0.9.1chemin Remote File Include Vulnerabilty Download:http://www.easy-script.com/newxoope-091.zip Author:Dr Max Virus Location:Egypt Bug in compteur/mapage.php In Line:37 Vul Code: REQUIRE "$chemin/compteur/mapage.txt"; POC:...
CVE-2004-0134
cpr libcpr in SGI IRIX before 6.5.25 allows local users to gain privileges by loading a user provided library while restarting the checkpointed process...
CVE-2004-0313
Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long 1 GET argument or 2 method name...
CVE-2002-2278
Cross-site scripting XSS vulnerability in modsearch/index.php in PortailPHP 0.99 allows remote attackers to inject arbitrary web script or HTML via the 1 $AppTheme, 2 $RubSearch, 3 $RubNews, 4 $RubFile, 5 $RubLiens, or 6 $RubFaq variables...
CVE-1999-1460
CVE-1999-1460 affects the BMC PATROL SNMP Agent prior to version 3.2.07 . The vulnerability lets local users escalate to root by passing the target file as the second argument to the snmpmagt program, resulting in creation of arbitrary world-writeable files. The underlying issue is improper handl...