41207 matches found
Blue River Mura CMS - Directory Traversal
Blue River Mura CMS - Directory Traversal Sep 24, 2010 Title: Blue River Mura CMS Directory Traversal Version: 1.0 Issue type: Directory Traversal Affected vendor: Blue River Interactive Group Release date: 24/09/2010 Discovered by: Steven Seeley & Rohan Stelling Summary Mura CMS is an open sourc...
Mozilla Firefox CSS - font-face Remote Code Execution
Mozilla Firefox CSS - font-face Remote Code Execution ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moabu-15-mozilla-firefox-css-font-face-remote-code-execution-vulnerability/...
Adobe Acrobat Reader and Flash - newfunction Remote Code Execution
Adobe Acrobat Reader and Flash - newfunction Remote Code Execution ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | ' + self.eol else: self.content += self.eol + data + self.eol self.content += 'endobj' + self.eol def objSWFStreamself, objnum, data, stream:...
Microsoft Windows - KTM Invalid Free with Reused Transaction GUID (MS10-047)
Microsoft Windows - KTM Invalid Free with Reused Transaction GUID MS10-047 Microsoft Windows KTM Invalid Free with reused transaction GUID ---------------------------------------------------------------------------- CVE-2010-1889 The Kernel Transaction Manager ktm was introduced in Windows Vista...
Zendesk - Multiple Vulnerabilities
Zendesk - Multiple Vulnerabilities /¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯\ :Zendesk Multiple Vulnerabilities : / /Discovered By: \ |Luis Santana | / Overview ¯¯¯¯¯¯¯¯¯¯ Luis Santana of the HackTalk Security team has found multiple vulnerabilities in Zendesk. Product Information ¯¯¯¯¯¯¯¯¯¯...
sX-Shop - view_image.php SQL Injection
sX-Shop - viewimage.php SQL Injection sX-Shop / viewimage.php SQL Injection Author : secret - [email protected] Homepage : http://swissfaking.net/ Date : 05 August, 2010 / // // // \ / // / / // \ / | / |/ / \ \ / / / / / , // / / / / / / , // | / / //// ///||// //////||// ||//|/ //...
Easy CD-DA Recorder 2007 - Local Buffer Overflow (SEH)
Easy CD-DA Recorder 2007 - Local Buffer Overflow SEH Exploit Title : Easy CD-DA Recorder 2007 SEH Buffer Overflow Date : June 7, 2010 Author : chap0 http://www.seek-truth.net Software Link : http://download.cnet.com/Easy-CD-DA-Recorder/3000-26464-10059726.html Tested on : Windows XP SP3 En Type o...
Joomla! Component JE Poll - pollid SQL Injection
Joomla! Component JE Poll - pollid SQL Injection / / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID...
U.S.Robotics USR5463 0.06 Firmware - setup_ddns.exe HTML Injection
U.S.Robotics USR5463 0.06 Firmware - setupddns.exe HTML Injection source: https://www.securityfocus.com/bid/40292/info U.S.Robotics USR5463 firmware is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code...
Samba 3.4.73.5.1 - Denial of Service
Samba 3.4.73.5.1 - Denial of Service =============================================================================== stratsec Security Advisory: SS-2010-005 =============================================================================== Title: Samba Multiple DoS Vulnerabilities Version: 1.0 Issue...
Urgent Backup 3.20 ABC Backup Pro 5.20 ABC Backup 5.50 - .zip File (SEH)
Urgent Backup 3.20 ABC Backup Pro 5.20 ABC Backup 5.50 - .zip File SEH !/usr/bin/ruby Software : Urgent Backup 3.20 / ABC Backup Pro 5.20 / ABC Backup 5.50 Author : Lincoln Date : April 27, 2010 Reference : http://www.corelan.be:8800/advisories.php?id=CORELAN-10-034 OS : Windows Tested on : XP SP...
WHMCompleteSolution (WHMCS) control (WHMCompleteSolution) - SQL Injection
WHMCompleteSolution WHMCS control WHMCompleteSolution - SQL Injection =Info======================================================================= Software: WHMCS control WHMCompleteSolution Sql Injection Vulnerability: Remote Sql Injection Google Dork: Powered by WHMCompleteSolution - or "...
G5 Scripts Guestbook PHP 1.2.8 - Cross-Site Scripting
G5 Scripts Guestbook PHP 1.2.8 - Cross-Site Scripting :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = Guestbook PHP XSS Vulnerability Author = Valentin Hoebel Contact = [email protected]...
Easy-Clanpage 2.2 - Multiple SQL Injections
Easy-Clanpage 2.2 - Multiple SQL Injections ----------------------------Information------------------------------------------------ +Name : Easy-Clanpage 2.2 http://www.easy-clanpage.de /?section=downloads&action=viewdl&id=18 +Price : for free +Language : PHP +Discovered by Easy Laster +Security...
Asp - comersus7F Shopping Cart Software Backup Dump
Asp - comersus7F Shopping Cart Software Backup Dump ======================================================================================== | Title : Asp - comersus7F Shopping Cart Software Backup Dump Vulnerability | Author : indoushka | Home : www.iqs3cur1ty.com | Bug : Database Disclosure...
Interactivefx.ie CMS - SQL Injection
Interactivefx.ie CMS - SQL Injection ================================================ Interactivefx.ie CMS SQL Injection Vulnerability ================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ ...
Calendarix 0.8.20071118 - SQL Injection
Calendarix 0.8.20071118 - SQL Injection Informatique inside Calendarix : SQL injection Version : 0.8.20071118 et infrieur Author : Thibow Contact : Thibow4tlinformatique-insidedotcom Location : France Website : http://www.informatique-inside.com Dork : "inurl:calday.php?op=day&catview=" Solution ...
Novaboard 1.1.2 - SQL Injection
Novaboard 1.1.2 - SQL Injection NovaBoard v1.1.2 SQL Injection Vulnerability Plugin Home: http://www.novaboard.net/ Author: Delibey Site: www.1923turk.com Download Script : http://novaboard.googlecode.com/files/NovaBoard1.1.2.zip Exploit:...
Diesel Job Site 1.4 - Multiple Vulnerabilities
Diesel Job Site 1.4 - Multiple Vulnerabilities ======================================================================================== | Title : Diesel Job Site 1.4 Multiple Vulnerabilities | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi ...
XOOPS Module dictionary 2.0.18 - detail.php SQL Injection
XOOPS Module dictionary 2.0.18 - detail.php SQL Injection XOOPS Module dictionary 2.0.18 detail.php SQL Injection Vulnerability XOOPS Version: XOOPS 2.0.18 http://www.xoops.org/modules/repository/ AUTHOR : Palyo34 HOME : http://www.1923turk.biz DORK : allinurl: "modules/dictionary/detail.php?id"...
IRAN N.E.T E-Commerce Group - SQL Injection
IRAN N.E.T E-Commerce Group - SQL Injection ALGERIAN HACKER - NORTH-AFRICA SECURITY TEAM - ! IRAN N.E.T E-commerce Group SQL Injection Vulnerability ! Author : Dr.0rYX and Cr3w-DZ ! MAIL : [email protected] & [email protected] / Software Information + Vendor : http://iranmc.org + script : IRAN N.E.T...
Invision Power Board 2.3.63.0.4 - Local File Inclusion SQL Injection
Invision Power Board 2.3.63.0.4 - Local File Inclusion SQL Injection ============================================= - Severity: Moderately High ============================================= I. VULNERABILITY ------------------------- Invision Power Board = 3.0.4 Local PHP File Inclusion and SQL...
Adobe Reader Acrobat - .U3D File Invalid Array Index Overflow
Adobe Reader Acrobat - .U3D File Invalid Array Index Overflow Felipe Andres Manzano [email protected] http://twitter/feliam doc=''' Title: U3D CLODProgressiveMeshContinuation Split Position Index arbitrary dereference. Product: Adobe Acrobat Reader Version: =8.1.6, =9.1.3 Product...
Microsoft Internet Explorer 567 - Memory Corruption (MS09-054)
Microsoft Internet Explorer 567 - Memory Corruption MS09-054 MSIE Content-Encoding: deflate memory corruption vulnerability a.k.a. MSRC 8769, MS09-054, CVE-2009-1547, “Data Stream Header Corruption Vulnerability” Microsoft fixed a bug in Internet Explorer’s “Content-Encoding:deflate”...
EZRecipeZee CMS 91 - Remote File Inclusion
EZRecipeZee CMS 91 - Remote File Inclusion !/usr/bin/perl + Author : kaMtiEz [email protected] + Date : September 30, 2009 + Homepage : http://www.indonesiancoder.com + Vendor : http://www.jdtmmsm.com/ + Download : http://www.jdtmmsm.com/downloads/index.php?setFilter=11232 + version : v91 + Meth...
Linux Kernel 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure (2)
Linux Kernel 2.6.31-rc7 - AFIRDA 29-Byte Stack Disclosure 2 / cve-2009-3002.c Linux Kernel http://jon.oberheide.org Information: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3002 The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions,...
Paypal Shopping Cart Script - index.php?cid SQL Injection
Paypal Shopping Cart Script - index.php?cid SQL Injection source: https://www.securityfocus.com/bid/43471/info Paypal Shopping Cart Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data...
Mozilla Firefox 3.5 (OSX) - Font Tags Remote Buffer Overflow
Mozilla Firefox 3.5 OSX - Font Tags Remote Buffer Overflow !/usr/bin/env python FireFox 3.5 Heap Spray OS X Exploit Modified by: DrIDE Originally Discovered by: Simon Berry-Bryne Pythonized by: David Kennedy ReL1K @ SecureState Thanks to HDM Tested on OS X 10.5.7 from BaseHTTPServer import...
Linux Kernel 2.6.30 2.6.30.1 SELinux (RHEL 5) - Local Privilege Escalation
Linux Kernel 2.6.30 2.6.30.1 SELinux RHEL 5 - Local Privilege Escalation / super fun 2.6.30+/RHEL5 2.6.18 local kernel exploit in /dev/net/tun A vulnerability which, when viewed at the source level, is unexploitable! But which, thanks to gcc optimizations, becomes exploitable : Also, bypass of...
VS PANEL 7.5.5 - results.php?Cat_ID SQL Injection
VS PANEL 7.5.5 - results.php?CatID SQL Injection Homepage: http://www.vspanel.gr/ Product: VS PANEL v.7.5.5 DeScOvRed By:C0D3R-Dz File: results.php ContACt:[email protected] Dork: "Powered by VS PANEL 7.5.5" SQL Injection...
Multiple HTTP Server - slowloris.pl Low Bandwidth Denial of Service
Multiple HTTP Server - slowloris.pl Low Bandwidth Denial of Service !/usr/bin/perl -w use strict; use IO::Socket::INET; use IO::Socket::SSL; use Getopt::Long; use Config; $SIG'PIPE' = 'IGNORE'; Ignore broken pipe errors print EOTEXT;...
XOOPS 2.3.3 - .htaccess Remote File Disclosure
XOOPS 2.3.3 - .htaccess Remote File Disclosure ======================================================================== XOOPS = 2.3.3 Remote Arbitrary File Retrieval ======================================================================== Affected Software : XOOPS = 2.3.3 Author : Luca "daath" De...
Java SE Runtime Environment JRE 6 Update 13 - Multiple Vulnerabilities
Java SE Runtime Environment JRE 6 Update 13 - Multiple Vulnerabilities ------------------------------------------------------------------------- Java SE Runtime Environment - JRE 6 Update 13 Multiple Vulnerabilities url: http://java.sun.com/ Author: shinnai mail: shinnaiatautisticidotorg site:...
MiniTwitter 0.2b - Remote User Options Changer
MiniTwitter 0.2b - Remote User Options Changer || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH!...
XRDP 0.4.1 - Remote Buffer Overflow (PoC)
XRDP 0.4.1 - Remote Buffer Overflow PoC / XRDP = 0.4.1 pre-auth remote PoC exploit. xrdp.sourceforge.net 01:59:56 root@crateria:/xrdp gcc -w -lssl -lX11 xrdp-poc.c -o xrdp-poc 02:00:29 root@crateria:/xrdp ./xrdp-poc 10.0.0.13 = Connected to 10.0.0.13 = Hit CTRL-C if the progress bar stops. Be...
IBM Director 5.20.3su2 CIM Server - Remote Denial of Service
IBM Director 5.20.3su2 CIM Server - Remote Denial of Service SEC-CONSULT Security Advisory ========================================================================================= title: IBM Director CIM Server Remote Denial of Service Vulnerability program: IBM Director for Windows vulnerable...
powermovielist 0.14b - SQL Injection Cross-Site Scripting
powermovielist 0.14b - SQL Injection Cross-Site Scripting =============================================================================================== Found : brainpillow Dork : "PowerMovieList 0.14 Beta Copyright" Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Mail :...
Nokia Phoenix 2008.4.7 Service Software - ActiveX Controls Multiple Buffer Overflow Vulnerabilities
Nokia Phoenix 2008.4.7 Service Software - ActiveX Controls Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/33726/info Nokia Phoenix Service Software ActiveX controls are prone to multiple buffer-overflow vulnerabilities because they fail to properly bounds-check...
GNUBoard 4.31.04 (09.01.30) - Multiple LocalRemote Vulnerabilities
GNUBoard 4.31.04 09.01.30 - Multiple LocalRemote Vulnerabilities GNUBoard V4.31.04 09.01.30 Multiple Local/Remote Vulnerability bY [email protected] / SIR GNUBoard VERSION 4.31.04 09.01.30is a widely used bulletin board system of Korea. It is freely available for all platforms that supports PHP...
YourFreeWorld Forced Matrix Script - SQL Injection
YourFreeWorld Forced Matrix Script - SQL Injection Forced Matrix Script id Remote SQL Injection Vulnerability Author: Hussin X Home : www.IQ-TY.com & www.TrYaG.cc script : http://www.yourfreeworld.com/script/subscriptionforcedmatrix.php DorK : inurl:"tr1.php?id=" Forced Matrix Exploit :...
VideoLAN VLC Media Player 0.9.2 Media Player - XSPF Memory Corruption
VideoLAN VLC Media Player 0.9.2 Media Player - XSPF Memory Corruption -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ VLC media player XSPF Memory Corruption 1. Advisory Information Title: VLC media player XSPF...
6rbScript 3.3 - singerid SQL Injection
6rbScript 3.3 - singerid SQL Injection || | | 6rbScript V3.3 singerid Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.IQ-ty.CoM | WwW.TrYaG.CC | | email: darkangelg85atYahooDoTcom | | | | | | | | script :...
Acoustica Beatcraft 1.02 Build 19 - .bcproj Local Buffer Overflow
Acoustica Beatcraft 1.02 Build 19 - .bcproj Local Buffer Overflow !/usr/bin/perl Acoustica Beatcraft bcproj file Local BOF Exploit Author: Koshi Date: 08-30-08 0day Application: Acoustica Beatcraft Versions: v1.02 Build 19 Site: http://acoustica.com/beatcraft/index.htm Tested On: Windows XP SP3...
Pligg CMS 9.9.0 - Cross-Site Scripting Local File Inclusion SQL Injection
Pligg CMS 9.9.0 - Cross-Site Scripting Local File Inclusion SQL Injection GulfTech Security Research July 30, 2008 Vendor : Pligg LLC URL : http://www.pligg.com/ Version : Pligg alertdocument.cookie; The above example link would display the end users cookie to them. Of course this can also be use...
Claroline 1.8.9 - clarolineredirector.php?url Arbitrary Site Redirect
Claroline 1.8.9 - clarolineredirector.php?url Arbitrary Site Redirect source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may...
Joomla! Component DBQuery 1.4.1.1 - Remote File Inclusion
Joomla! Component DBQuery 1.4.1.1 - Remote File Inclusion @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@...
PHP-Nuke Platinium 7.6.b.5 - Remote Code Execution
PHP-Nuke Platinium 7.6.b.5 - Remote Code Execution Date: 02/07/08 Note I modified a bit phpsploit for this exploit, because PHP Nuke plays with REQUESTURI var ... Requirements registerglobals=On phpreter phpreter is really easy to use: You can change mode using "mode=", with = sql, php or cmd If...
Creative Software AutoUpdate Engine - ActiveX Stack Overflow
Creative Software AutoUpdate Engine - ActiveX Stack Overflow +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ CacheFolder property is vulnerable to stack-based buffer overflow after 260 bytes, @ 512 bytes overwrites SEH and allows code execution reliably. Original Advisory @...
Mitra Informatika Solusindo cart - SQL Injection
Mitra Informatika Solusindo cart - SQL Injection SolpotCrew Community Mitra Informatika Solusindo cart Remote Sql Injection Exploit vendor : http://www.mitrainformatika.com/ Bug Found By : homeedition2001 a.k.a bius 4-03-2008 contact: [email protected] Website :...
PHP Webquest 2.6 - Get Database Credentials
PHP Webquest 2.6 - Get Database Credentials --==+================================================================================+==-- --==+ PHP Webquest 2.6 Get Database's Credential +==-- --==+================================================================================+==-- Author: MhZ91...