5 matches found
EUVD-2012-1243
Malware in sbrugna...
LibreNMS Authenticated Remote Code Execution Exploit
An authenticated attacker can create dangerous directory names on the system and alter sensitive configuration parameters through the web portal. Those two defects combined then allows to inject arbitrary OS commands inside shellexec calls, thus achieving arbitrary code execution. This module...
Critical Vulnerabilities In Max Web Portal
Multiple Vulnerabilities In Max Web Portal ------------------------------------------ Discovery Date: 05/2003 Versions Vuln : All? / 1.30 Author's URL : http://www.maxwebportal.com http://www.maxcanada.ca Notify Status : Patch Available / Upgrade Product Description...
Max Web Portal < 1.30 - Multiple Vulnerabilities
Max Web Portal Multiple Vulnerabilities Vendor: Max Web Portal Product: Max Web Portal Version: alertdocument.cookie Remember this vuln as I will later explain how it can be used to aide an attacker to compromise user and admin accounts. Hidden Form Field weakness: The Max Web Portal system seems...
RFP2101: RFPlutonium to fuel your PHP-Nuke
-----/ RFP2101 /-------------------------------/ rfp.labs / wiretrip/---- RFPlutonium to fuel your PHP-Nuke SQL hacking user logins in PHP-Nuke web portal ------------------------------------/ rain forest puppy / [email protected] Table of contents: -/ 1 / Standard advisory information -/ 2 / High...