Array Networks vxAG 9.2.0.34 and vAPV 8.3.2.17 - Multiple Vulnerabilities

Array Networks vxAG 9.2.0.34 and vAPV 8.3.2.17 - Multiple Vulnerabilities ----------- Author: ----------- xistence ------------------------- Affected products: ------------------------- Array Networks vxAG 9.2.0.34 and vAPV 8.3.2.17 appliances ------------------------- Affected vendors:...

Webuzo 2.1.3 - Multiple Vulnerabilities

Webuzo 2.1.3 - Multiple Vulnerabilities Exploit Title: Webuzo Multiple Vulnerabilities Date: 7 October 2013 Exploit Author: Mahendra Vendor Homepage: www.webuzo.com Software Link: http://downloads.webuzo.com/va.php Version: 2.1.3, other version might be vulnerable. Tested on: CentOS release 6.2...

Microsoft Windows - NDPROXY SYSTEM Privilege Escalation (MS14-002)

Microsoft Windows - NDPROXY SYSTEM Privilege Escalation MS14-002 NDPROXY Local SYSTEM privilege escalation http://www.offensive-security.com Tested on Windows XP SP3 http://www.offensive-security.com/vulndev/ndproxy-local-system-exploit-cve-2013-5065/ Original crash ... null pointer dereference...

Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow

Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow !/usr/bin/perl -w Exploit Title: WatchGuard Firewall XTM version 11.7.4u1 - Remote buffer overflow exploit sessionid cookie Date: Oct 18 2013 Exploit Author: [email protected] a.k.a. [email protected] Vendor Homepage:...

Kasseler CMS 2 r1223 - Multiple Vulnerabilities

Kasseler CMS 2 r1223 - Multiple Vulnerabilities Advisory ID: HTB23158 Product: Kasseler CMS Vendor: Kasseler CMS Vulnerable Versions: 2 r1223 and probably prior Tested Version: 2 r1223 Vendor Notification: May 29, 2013 Vendor Patch: June 28, 2013 Public Disclosure: July 3, 2013 Vulnerability Type...

DS3 Authentication Server - Multiple Vulnerabilities

DS3 Authentication Server - Multiple Vulnerabilities Original: http://www.digitalsec.net/stuff/explt+advs/DS3.AuthServer.txt =============================== - Advisory - =============================== Tittle: DS3 Authentication Server - Command Execution Post Authentication & other minor issues...

CosCMS 1.721 - OS Command Injection

CosCMS 1.721 - OS Command Injection Advisory ID: HTB23145 Product: CosCms Vendor: http://www.coscms.org Vulnerable Versions: 1.721 and probably prior Tested Version: 1.721 Vendor Notification: February 13, 2013 Vendor Patch: February 13, 2013 Public Disclosure: March 6, 2013 Vulnerability Type: O...

glFusion 1.2.2 - Multiple Cross-Site Scripting Vulnerabilities

glFusion 1.2.2 - Multiple Cross-Site Scripting Vulnerabilities Advisory ID: HTB23142 Product: glFusion Vendor: http://www.glfusion.org/ Vulnerable Versions: 1.2.2 and probably prior Tested Version: 1.2.2 Vendor Notification: January 30, 2013 Vendor Patch: January 30, 2013 Public Disclosure:...

SonicWALL GMSViewpointAnalyzer - Authentication Bypass

SonicWALL GMSViewpointAnalyzer - Authentication Bypass -------------------------- NSOADV-2013-002 --------------------------- SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass /sgms/ 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 ...

MySQL 5.15.5 (Windows) - MySQLJackpot Remote Command Execution

MySQL 5.15.5 Windows - MySQLJackpot Remote Command Execution FARLiGHT ELiTE HACKERS LEGACY R3L3ASE Attached is the MySQL Windows Remote Exploit post-auth, udf technique including the previously released mass scanner. The exploit is mirrored at the farlight website http://www.farlight.org. Oracle...

Ektron CMS 8.5.0 - Multiple Vulnerabilities

Ektron CMS 8.5.0 - Multiple Vulnerabilities Sense of Security - Security Advisory - SOS-12-009 Release Date. 05-Sep-2012 Last Update. - Vendor Notification Date. 07-May-2012 Product. Ektron CMS Platform. ASP.NET Affected versions. Ektron CMS version 8.5.0 and possibly others Severity Rating. High...

Airlock WAF 4.2.4 - Overlong UTF-8 Sequence Bypass

Airlock WAF 4.2.4 - Overlong UTF-8 Sequence Bypass SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Airlock WAF overlong UTF-8 sequence bypass product: Airlock vulnerable version: = 4.2.4 without hotfix HF4213 fixed...

Citrix XenApp XenDesktop XML Service - Heap Corruption

Citrix XenApp XenDesktop XML Service - Heap Corruption n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2011.002 28-Jul-2011 Vendor: Citrix, http://www.citrix.com Affected Products: XenApp and XenDesktop Affected Version: See the Citrix security bulletin 2 for a list Vulnerability:...

phpMyAdmin 3.x - Swekey Remote Code Injection

phpMyAdmin 3.x - Swekey Remote Code Injection ':'';? . , \ . . ,/ , / , \ \ // / / / \ | | \ / | |\ /| | | | | | | | / | | | | / | | | || | | | | | \ \ | | | || | \ \ | | | | | | | | | | | | / / | | | | | | | | | | | | | | | |// || || | |// || || ||| | || ||| || | ||...

Microsoft IIS 7.0 FTP Server - Stack Exhaustion Denial of Service (MS09-053) (Metasploit)

Microsoft IIS 7.0 FTP Server - Stack Exhaustion Denial of Service MS09-053 Metasploit Exploit Title: MS09-053 Microsoft IIS FTP Server Software Link: http://www.microsoft.com/ Version: 5.0 - 7.0 Tested on: unpatched version of windows xp & 2k3 $Id: $ This file is part of the Metasploit Framework...

Cisco Unified Operations Manager - Multiple Vulnerabilities

Cisco Unified Operations Manager - Multiple Vulnerabilities Sense of Security - Security Advisory - SOS-11-006 Release Date. 18-May-2011 Last Update. - Vendor Notification Date. 28-Feb-2011 Product. Cisco Unified Operations Manager Common Services Framework Help Servlet Common Services Device...

Log1 CMS 2.0 - Multiple Vulnerabilities

Log1 CMS 2.0 - Multiple Vulnerabilities +---------------------------------------+ | Log1 CMS 2.0 Multiple Vulnerabilities | +---------------------------------------+ Vulnerable Web-App : Log1 CMS 2.0 Vulnerability : Multiple Vulnerabilities. Author : Aodrulez. Atul Alex Cherian Email :...

Panda Global Protection 2010 - Local Denial of Service (unfiltered wcscpy())

Panda Global Protection 2010 - Local Denial of Service unfiltered wcscpy include include include include define SystemModuleInfo 11 / Program : Panda Global Protection 2010 3.01.00 Homepage : http://www.pandasecurity.com Discovery : 2010/04/09 Author Contacted : 2010/07/15 Status of vuln : Patche...

Pandora Fms 3.1 - Blind SQL Injection

Pandora Fms 3.1 - Blind SQL Injection + Introduction Pandora FMS for Pandora Flexible Monitoring System is a software solution for monitoring computer networks. It allows monitoring in a visual way the status and performance of several parameters from different operating systems, servers,...

Google Android 2.02.1 - Use-After-Free Remote Code Execution on Webkit

Google Android 2.02.1 - Use-After-Free Remote Code Execution on Webkit Exploit Title: Android 2.0/2.1 Use-After-Free Remote Code Execution on Webkit Date: 14/11/2010 Author: Itzhak Avraham, mj Tested on: Droid 2.1 CVE : CVE-2010-1807 Better exploit better rate and more flexible for changes, also...

Chipmunk Board 1.3 - index.php?forumID SQL Injection

Chipmunk Board 1.3 - index.php?forumID SQL Injection Exploit Title: Chipmunk Board index.php?forumID Remote SQL Injection Vulnerability Date: October, 01 st 2010 Author: Shamus Software Link: http://www.chipmunk-scripts.com/board/board.zip Version: Chipmunk Forums Version 1.3 Tested on: windows C...

4Images 1.7.8 - Remote File Inclusion

4Images 1.7.8 - Remote File Inclusion Exploit Title: 4images1.7.8 Remote File Include Date: 23-8-2010 Author: LoSt.HaCkEr / aDaMTRoJaN Software Link: http://www.4homepages.de/4images/download.php Version: v 1.7.8 Tested on: Windows XP CVE : Contact: LoSt.HaCkEratyahoodotcom /0r/ ...

sNews - index.php SQL Injection

sNews - index.php SQL Injection Exploit Title:sNews index.php SQL Injection Vulnerability Date: 2010-07-24 Author: MajoR Software Link: http://snews.awddesign.co.uk Version: N/A Tested on: Wnidows xp SP2 CVE : N/A ====================================================sNews index.php SQL Injection...

Joomla! Component Gamesbox 1.0.2 - id SQL Injection

Joomla! Component Gamesbox 1.0.2 - id SQL Injection / / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID...

UFO: Alien Invasion 2.2.1 - Arbitrary Code Execution

UFO: Alien Invasion 2.2.1 - Arbitrary Code Execution Remote Arbitrary Code Execution Vulnerability in UFO: Alien Invasion -------------------------------------------------------------------- June 18th, 2010 ======= Summary ======= Name: Remote Arbitrary Code Execution Vulnerability in UFO: Alien...

Software Index - Arbitrary File Upload

Software Index - Arbitrary File Upload Vendor: http://www.p30vel.ir/ Date: 2010-05-27 Author : indoushka Thanks to : Inj3ct0r.com,Exploit-DB.com,SecurityReason.com,Hack0wn.com ! Contact : [email protected] Home : Bug : Up Tested on : windows SP2 Français V.Pnx2 2.0 Dork : Copyright 2010...

Adobe Flash Reader - Live Malware

Adobe Flash Reader - Live Malware Exploit-DB Note - Live POC originally found at http://qoop.org/security/poc/cve-2010-1297/ File is malicious! Taken from the wild! Beware! To decrypt the file: openssl aes-256-cbc -d -a -in adobe-0day-2010-1297.tar.enc -out adobe-0day-2010-1297.tar Password is...

Joomla! Component MMS Blog 2.3.0 - Local File Inclusion

Joomla! Component MMS Blog 2.3.0 - Local File Inclusion ============================================================================================================= o Joomla Component MMS Blog Local File Inclusion Vulnerability Software : commmsblog version 2.3.0 Vendor : http://mms.pipp.no/...

CactuShop - User Invoices Persistent Cross-Site Scripting

CactuShop - User Invoices Persistent Cross-Site Scripting User Invoices Persistent XSS Vulnerability in CactuShop 1. Advisory Information Title: User Invoices Persistent XSS Vulnerability in CactuShop Advisory Id: CORE-2010-0406 Advisory URL:...

Joomla! Component FLEXIcontent 1.5 - Local File Inclusion

Joomla! Component FLEXIcontent 1.5 - Local File Inclusion Joomla Component comflexicontent Local File Vulnerability +Title: Joomla Component Local File Inclusion Vulnerability +Version: comflexicontent FLEXIcontent 1.5 stable +Download: http://www.flexicontent.org/downloads/latest-version.html...

blog ink - Bypass Setting

blog ink - Bypass Setting ======================================================================================== | Title : blog ink By Pass Setting Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com/vb | Script Home : powered by blog ink | Dork : Powered b...

UCStats 1.1 - SQL Injection

UCStats 1.1 - SQL Injection UCStats 1.1 Remote SQL Injection Vulnerability Author: Sora Contact: vhr95zw at hotmail dot com Website: http://greyhathackers.wordpress.com/ Google Dork: "Powered by UCStats version 1.1" Vulnerability Description: UCStats version 1.1 suffers a remote SQL injection...

4Images 1.7.1 - SQL Injection

4Images 1.7.1 - SQL Injection Exploit Title: 4images 1.7.1 Remote SQL Injection Vulnerability Date: 20-12-2009 Author: Master Mind Version: 1.7.1 CVE : N/A ============================================================= Script Name : 4images 1.7.1 Language : php Author : Master Mind Home :...

TestLink Test Management and Execution System - Multiple Cross-Site Scripting Injection Vulnerabilities

TestLink Test Management and Execution System - Multiple Cross-Site Scripting Injection Vulnerabilities Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Multiple XSS and Injection Vulnerabilities in TestLink Test Management and Execution System 1. Advisory...

Autodesk Maya Script - Nodes Arbitrary Command Execution

Autodesk Maya Script - Nodes Arbitrary Command Execution -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Autodesk Maya Script Nodes Arbitrary Command Execution 1. Advisory Information Title: Autodesk Maya Script...

Mozilla Firefox 2.0.0.16 - UTF-8 URL Remote Buffer Overflow

Mozilla Firefox 2.0.0.16 - UTF-8 URL Remote Buffer Overflow !/usr/bin/python FireFox 2.0.0.16 Windows XP SP3 x86 Remote Exploit Author: Dominic Chell Exploits the UTF-8 URL overflow vulnerability described in CVE-2008-0016. As of September 2009 there are no public exploits for this vulnerability...

Adobe JRun 4 - logfile (Authenticated) Directory Traversal

Adobe JRun 4 - logfile Authenticated Directory Traversal Digital Security Research Group DSecRG Advisory DSECRG-09-052 Application: Adobe JRun Application Server Versions Affected: 4 updater 7 Vendor URL: http://www.adobe.com/products/jrun/ Bug: Directory Traversal File Read Exploits: YES Reporte...

OpenSSL 0.9.8k1.0.0-beta2 - DTLS Remote Memory Exhaustion Denial of Service

OpenSSL 0.9.8k1.0.0-beta2 - DTLS Remote Memory Exhaustion Denial of Service / cve-2009-1378.c OpenSSL http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1378 In dtls1processoutofseqmessage the check if the current message is already buffered was missing...

Easy Scripts Answer and Question Script - Multiple Vulnerabilities

Easy Scripts Answer and Question Script - Multiple Vulnerabilities || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection...

Microsoft Internet Explorer - EMBED Memory Corruption (PoC) (MS09-014)

Microsoft Internet Explorer - EMBED Memory Corruption PoC MS09-014 http://skypher.com/SkyLined/Repro/MSIE/EMBED%20memory%20corruption/repro3.html http://skypher.com/index.php/2009/04/19/ms09-014-embed-element-memory-corruption -- var asMimeTypes = "x-world/x-3dmf", "x-world/x-3dmf",...

Oracle WebLogic IIS connector JSESSIONID - Remote Overflow

Oracle WebLogic IIS connector JSESSIONID - Remote Overflow !/usr/bin/perl No point in keeping this private anymore! ksOSe - 02/16/2009 - CVE-2008-5457 Tested on w2k sp4 and w2k3 R2 sp2 no NX cohelet framework-3.2 ./msfcli multi/handler PAYLOAD=windows/reflectivemeterpreter/reversetcp...

Free Download Manager 3.0 Build 844 - .torrent Local Buffer Overflow

Free Download Manager 3.0 Build 844 - .torrent Local Buffer Overflow !/usr/bin/perl Free Download Manager = 3.0 Build 844 .torrent BOF Exploit ----------------------------------------------------------- Exploit by SkD [email protected] Vendors URL = www.freedownloadmanager.org Download FDM 3.0...

PHPstore Wholesale - id SQL Injection

PHPstore Wholesale - id SQL Injection | | | Wholesale track.php id Remote SQL Injection Vulnerability | | | | | Author: Hussin X | | Home : WwW.IQ-ty.CoM | | email: [email protected] | | | | script : http://www.phpstore.info/productinfo.php?cPath=3653&productsid=162 | | DorK :...

VidiScript (Avatar) - Arbitrary File Upload

VidiScript Avatar - Arbitrary File Upload || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...

phpAuction GPL Enhanced 2.51 - profile.php SQL Injection

phpAuction GPL Enhanced 2.51 - profile.php SQL Injection || | | PHPAuction GPL Enhanced V2.51 profile.php id Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | ...

Kmita Mail 3.0 - file Remote File Inclusion

Kmita Mail 3.0 - file Remote File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV94$2008 ----------------------------------------------------------------------------------------- ECHOADV94$2008 Kmita Mail = 3.0 file Remote File Inclusion...

BlogMe PHP 1.1 - comments.php SQL Injection

BlogMe PHP 1.1 - comments.php SQL Injection + BlogMe PHP remote SQL injection exploit + Script download : http://www.drumster.net/gamma/downloads/BlogMe11.zip + Founded by : His0k4 ALGERIAN HaCkEr + Greetz : All friends & muslims HaCkeRs... + Dork : "BlogMe PHP created by Gamma Scripts" + Exploit...

X.Org xorg-server 1.1.1-48.13 - Probe for Files (PoC)

X.Org xorg-server 1.1.1-48.13 - Probe for Files PoC !/bin/sh Xorg file disclosure vulnerability CVE-2007-5958 Lame xploit by vl4dZ : sh-3.1$ whoami uid=1001kecos gid=1001user groups=1001user sh-3.1$ ./Xorg-File-Existence-PoC.sh /root/.ssh/iddsa ... FILE /root/.ssh/iddsa EXIST !! Vulnerable:...

Vantage Linguistics AnswerWorks 4 - API ActiveX Control Buffer Overflow

Vantage Linguistics AnswerWorks 4 - API ActiveX Control Buffer Overflow Vantage Linguistics AnswerWorks 4 API ActiveX Control Buffer Overflow Exploit function Check var buf = 'A'; while buf.length = 214 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378...

OpenSSL 0.9.7l0.9.8d - SSLv2 Client Crash

OpenSSL 0.9.7l0.9.8d - SSLv2 Client Crash !/usr/bin/perl Copyrightc Beyond Security Written by Noam Rathaus - based on beSTORM's SSL Server module Exploits vulnerability CVE-2006-4343 - where the SSL client can be crashed by special SSL serverhello response use strict; use IO::Socket; my $sock =...