8 matches found
Technote 2000/2001 'filename' Parameter Command Execution And File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2156/info Technote Inc. offers a multi-communication Package that includes a web board type of service. A script that ships with Technote, 'main.cgi', accepts a parameter called 'filename'. This remotely supplied variable...
Technote 2000/2001 'board' Function File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2155/info Technote Inc. offers a Multicommunication Package which includes a web board type of service. A script that ships with Technote, print.cgi, accepts a parameter called board. This remotely-supplied variable is us...
Azboard <= 1.0 Multiple Sql Injections
Title : Azboard = 1.0 Multiple Sql Injections Published : 2006.5.14 Author : [email protected]/jyj9782/ Link : http://user.chol.com/jyj9782/sec/azboardadvisory.txt 0x01 Summary Azboard is a web board written in asp active server pages. It has a sql injection hole. so we can get the adminbbs's Id...
Netzbrett 1.5.1 SQL inj. vuln.
Netzbrett 1.5.1 SQL inj. vuln. Vuln. dicovered by : r0t Date: 28 nov. 2005 orginal advisory:http://pridels.blogspot.com/2005/11/netzbrett-151-sql-inj-vuln.html Vendor:http://www.weaverslave.ws/index.32.html affected version: 1.5.1 and prior Product Description: Netzbrett is a Web board / forum...
technote-commandexec.txt
Technote Command Excution Technote Inc. from Korea offers a Site Package which includes a web board. Previous exploit discovered way back on year 2000 focused on a File Disclosure Vulnerability http://www.securityfocus.com/bid/2156/discussion/ However, command execution is also possible using the...
Spyke Multiple Remote Vulnerabilities
The remote host is using Spyke - a web board written in PHP. This board stores vital information in the file info.dat, which can be downloaded by anyone. This file contains the name of the administrator of the website, as well as its password. Another flaw lets an attacker download information...
EasyBoard 2000 Remote Buffer Overflow Vulnerability
EasyBoard 2000 Remote Buffer Overflow Vulnerability Jin Ho You, [email protected] 1 Discussion EasyBoard 2000http://ezboard.new21.org is a web board CGI. Improperly manipulated user-supplied input to the Content-Type header can create an buffer overflow condition. This vulnerability...
Technote 20002001 - board File Disclosure
Technote 20002001 - board File Disclosure source: https://www.securityfocus.com/bid/2155/info Technote Inc. offers a Multicommunication Package which includes a web board type of service. A script that ships with Technote, print.cgi, accepts a parameter called "board". This remotely-supplied...