flash-plugin: multiple code execution issues fixed in APSB15-28

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary...

flash-plugin: security protection bypass (APSB14-17)

Adobe Flash Player before 13.0.0.231 and 14.x before 14.0.0.145 on Windows and OS X and before 11.2.202.394 on Linux, Adobe AIR before 14.0.0.137 on Android, Adobe AIR SDK before 14.0.0.137, and Adobe AIR SDK & Compiler before 14.0.0.137 allow attackers to bypass intended access restrictions via...

Quicktech SQL Injection Vulnerability

No description provided by source. + Exploit Title : Quicktech Sql Injection Vulnerability + Author : eXeSoul + Contact : [email protected] + Date : 02-03-2011 + category: Web Apps SQli + HomePage : www.indishell.in + Version : all + Tested on : windows/linux + Vulnerability Style : PHP Sql...

Pina CMS 'search'表单跨站脚本漏洞

Bugtraq ID:65672 Pina CMS是一款内容管理系统。 Pina CMS不正确过滤用户提交的搜索表单数据，远程攻击者可以利用漏洞构建恶意URI，诱使用户解析，可获得敏感Cookie，劫持会话或在客户端上进行恶意操作。 0 Pina CMS 1.4 目前没有详细解决方案提供： http://www.pinacms.com/ Title: Pina CMS SQL Injection and XSS Vulnerabilities Vendor: www.pinacms.com Vendor Notified: 15-02-2014 Vendor Replied:...

WordPress Theme Highlight Premium - Cross-Site Request Forgery Arbitrary File Upload

WordPress Theme Highlight Premium - Cross-Site Request Forgery Arbitrary File Upload Title : Wordpress Highlight Premium Themes CSRF File Upload Vulnerability Author : DevilScreaM Date : 11/10/2013 - 10 November 2013 Category : Web Applications Type : PHP Vendor : http://themeforest.net Download ...

WordPress Cubed Themes Remote File Upload Vulnerability

WordPress Cubed Themes suffers from remote file uplaod vulnerability . . . \ \ | / \ \ \ | || / \ / / \ / |/ \ / | / \ / / /| | |/ \ \ \ // \ / / | \ /\ / | \ \ \ / \ //\ |\ | /\ // | /|\ / / / / / / / Exploit Title: WordPress Cubed Themes Remote File Upload Vulnerability Author:...

Nederlanden's Server Website (.nl) - SQL injection

Exploit for php platform in category web applications | / | | | | | | |/ / | | \ / | | | | | | | | | | || | | |/| |/ | / | | | | | | | | || | | | | | | | || | | || || | | || || | || ||,|\,||, |/ / || / | |/ On 1337day.com |------------------------------------------ Vulnerability info...

Plone Zope SAXutils Command Execution

Added: 01/13/2012 CVE: CVE-2011-3587 BID: 49857 OSVDB: 76105 Background Plone is a free and open source content management system built on top of the Zope application server. Plone can be used for any kind of website, including blogs, internet sites, webshops and internal websites. Problem Plone...

Djm Web Agency (page.asp) Sql Injection Vulnerability

Exploit for php platform in category web applications Djm Web Agency page.asp Sql Injection Vulnerability .:. Author : eXeSoul .:. Contact : email protected .:. Date : 04-03-2011 .:. category : Web Apps SQli .:. HomePage : www.indishell.in .:. Tested on : windows/linux .:. Vulnerability : ASP Sql...

Limelight Software - 'article.php' SQL Injection

© Limelight Software Ltd article.php Sql Injection Vulnerability .:. Author : eXeSoul .:. Contact : [email protected] .:. Date : 04-03-2011 .:. category : Web Apps SQli .:. HomePage : www.indishell.in .:. Tested on : windows/linux .:. Vulnerability : PHP Sql Injection Vunerability .:. Vendor :...

Quicktech SQL Injection Vulnerability

Exploit for php platform in category web applications + Exploit Title : Quicktech Sql Injection Vulnerability + Author : eXeSoul + Contact : email protected + Date : 02-03-2011 + category: Web Apps SQli + HomePage : www.indishell.in + Version : all + Tested on : windows/linux + Vulnerability Styl...

Quicktech - SQL Injection

Exploit Title : Quicktech Sql Injection Vulnerability + Author : eXeSoul + Contact : [email protected] + Date : 02-03-2011 + category: Web Apps SQli + HomePage : www.indishell.in + Version : all + Tested on : windows/linux + Vulnerability Style : PHP Sql Injection Vunerability + Vendor:...

Tech Shop Technote 7 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Technote7Commercial Version, Free Version == SQL Injection Vulnerabilities Google Dork: inurl:/technote/board.php?category= Date: 2011/01/02 Author: MaJ3stYhttp://maj3sty.tistory.com Language : PHP Software Link:...

JDownloader Webinterface Source Code Disclosure Vulnerability

Exploit for php platform in category web applications ============================================================= JDownloader Webinterface Source Code Disclosure Vulnerability ============================================================= Exploit Title: JDownloader Webinterface Source Code...

Maxs Photo Album - Arbitrary File Upload

Maxs Photo Album - Arbitrary File Upload ======================================================================================== | Title : Max's Photo Album Shell Upload Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria...

Jokes Complete Website Cross Site Scripting

======================================================================================== | Title : Jokes Complete Website Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com | Web Site :...

Upload-Point 1.6 Beta - Arbitrary File Upload

Upload-Point 1.6 Beta - Arbitrary File Upload ======================================================================================== $ | Title : Upload-Point 1.6 Beta pload Shell Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El...

paFileDB 3.1 Cross Site Scripting Vulnerability

Exploit for unknown platform in category web applications =============================================== paFileDB 3.1 Cross Site Scripting Vulnerability =============================================== ======================================================================================== | Titl...

Simple PHP Guestbook Remote Admin Access Exploit

No description provided by source. Vendor: http://www.simplephpguestbook.com/ Version: 1.0 Tested on: Windows and Linux -------------------------------------- Simple PHP Guestbook Remote Admin Access Exploit Created by Sora + contact: vhr95zw at hotmail.com Description: Simple PHP Guestbook suffe...

ImageVue 2.0 - Remote Admin Login

Author: Sora Software Link: http://www.imagevuex.com/ Version: 2.0 Tested on: Windows and Linux --------------------------------- / ImageVue 2.0 Remote Admin Login Exploit Created by Sora Contact: vhr95zw at hotmail.com / + Google Dork: "inurl:/admin/" "ImageVue" + Description: ImageVue 2.0 suffe...