41207 matches found
Aanval 7.1 build 70151 - Multiple Vulnerabilities
Aanval 7.1 build 70151 - Multiple Vulnerabilities ----------- Author: ----------- xistence ------------------------- Affected products: ------------------------- Aanval 7.1 build 70151 ------------------------- Affected vendors: ------------------------- Aanval http://www.aanval.com/...
FluxBB 1.5.3 - Multiple Vulnerabilities
FluxBB 1.5.3 - Multiple Vulnerabilities !-- FluxBB 1.5.3 Multiple Remote Vulnerabilities Vendor: FluxBB Product web page: http://www.fluxbb.org Affected version: 1.5.3 Summary: FluxBB is fast, light, user-friendly forum software for your website. Desc: FluxBB suffers from a cross-site scripting,...
MCImageManager - Multiple Vulnerabilities
MCImageManager - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/61825/info MCImageManager is prone to multiple security vulnerabilities. An attacker may exploit these issues to execute arbitrary HTML and script code in the browser of an unsuspecting user in the context of the...
McAfee ePO 4.6.6 - Multiple Vulnerabilities
McAfee ePO 4.6.6 - Multiple Vulnerabilities Classification: NON SENSITIVE INFORMATION RELEASABLE TO THE PUBLIC Multiple vulnerabilities in McAfee ePO 4.6.6 Affected Product: McAfee ePO 4.6.6 Build 176 & potentially earlier versions Timeline: 08 June 2013 - Vulnerability found 12 June 2013 - Vendo...
Mobile Atlas Creator 1.9.12 - Persistent Command Injection
Mobile Atlas Creator 1.9.12 - Persistent Command Injection Title: ====== Mobile Atlas Creator 1.9.12 - Persistent Command Injection Vulnerability Date: ===== 2013-06-11 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=970 VL-ID: ===== 970 Common Vulnerability Scoring...
SPBAS Business Automation Software 2012 - Multiple Vulnerabilities
SPBAS Business Automation Software 2012 - Multiple Vulnerabilities SPBAS Business Automation Software- XSS & CSRF Vulnerability Date: 16 June 2013 Author: Christy Philip Mathew - www.offcon.org Vendor or Software Link: http://www.spbas.com Version: 2012 1.XSS Vulnerability a Client Area - My Info...
AfterLogic WebMail Lite PHP 7.0.1 - Cross-Site Request Forgery
AfterLogic WebMail Lite PHP 7.0.1 - Cross-Site Request Forgery 1. 2. 3. + Exploit Title : AfterLogic WebMail Lite PHP CSRF 4. + Author : Pablo '7days' Riberio 5. + Team: So Good Security 6. + Other 0days : http://pastebin.com/u/7days 7. + Version : = 7.0.1 8. + Tested on : windows/internet explor...
Sony Playstation 3 (PS3) 4.31 - Save Game Preview .SFO Handling Local Command Execution
Sony Playstation 3 PS3 4.31 - Save Game Preview .SFO Handling Local Command Execution Title: ====== Sony PS3 Firmware v4.31 - Code Execution Vulnerability Date: ===== 2013-05-12 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=767 VL-ID: ===== 767 Common Vulnerability...
ColdFusion 9-10 - Credential Disclosure
ColdFusion 9-10 - Credential Disclosure !/usr/bin/env python -- coding: utf-8 -- intro=""" Cold ,''' Fusion || | | \ / | Cold ,''' /-- Fusion | | | | / |. Cold -,,' Fusion Name : ColdSub-Zero.pyFusion v2 Description : CF9-10 Remote Root Zeroday Crew : HTP """ cyan = "\x1b1;36m" red = "\x1b1;31m"...
PonyOS 0.4.99-mlp - Multiple Vulnerabilities
PonyOS 0.4.99-mlp - Multiple Vulnerabilities Advisory: PonyOS Security Issues John Cartwright Introduction ------------ Like countless others, I was pretty excited about PonyOS yesterday April 1st 2013 and decided to give it a go. After wasting a lot of time nyan'ing, I knew this was the future o...
MailOrderWorks 5.907 - Multiple Vulnerabilities
MailOrderWorks 5.907 - Multiple Vulnerabilities Title: ====== MailOrderWorks v5.907 - Multiple Web Vulnerabilities Date: ===== 2013-01-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=798 VL-ID: ===== 796 Common Vulnerability Scoring System:...
GnuTLS libgnutls - Double-Free Certificate List Parsing Remote Denial of Service
GnuTLS libgnutls - Double-Free Certificate List Parsing Remote Denial of Service Sorry I forgot to write headers in previous mail. Exploit Title: possible ways to exploit CVE-2012-1663 GNUTLS-3.0.13 Google Dork: if relevant we will automatically add these to the GHDB Date: Mar 20, 2013 Exploit...
Cool PDF Reader 3.0.2.256 - Buffer Overflow
Cool PDF Reader 3.0.2.256 - Buffer Overflow Exploit Title: Cool PDF Reader 3.0.2.256 buffer overflow Vulnerability Disclosed to US-CERT by Chris Gabriel: 11-20-2012 Emailed vendor: 12-4-2012 Francis Provencher discovered vulnerability and reported to Secunia: 12-19-2012 Vulnerability Discovery:...
pfSense UTM Platform 2.0.1 - Cross-Site Scripting
pfSense UTM Platform 2.0.1 - Cross-Site Scripting ┴┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┴ │ Exploit Title: pfSense = 2.0.1 XSS & CSRF during IPSec XAuth authentication │ Date: 04/01/2013 │ Author: Dimitris Strevinas │ Vendor or Software Link: www.pfsense.or...
Grep 2.11 - Integer Overflow Crash (PoC)
Grep 2.11 - Integer Overflow Crash PoC Grep /dev/null Segmentation fault core dumped Method two: $ perl -e 'print "\nx"x231' | grep -c x /dev/null Twitter: https://twitter.com/MegaManSec CVE: CVE-2012-5667 -- Joshua Rogers - Retro Game Collector && IT Security Specialist gpg pubkey...
Novell NetIQ Privileged User Manager 2.3.1 - auth.dll pa_modify_accounts() Remote Code Execution
Novell NetIQ Privileged User Manager 2.3.1 - auth.dll pamodifyaccounts Remote Code Execution Novell NetIQ Privileged User Manager 2.3.1 auth.dll pamodifyaccounts Remote Code Execution pre auth / SYSTEM privileges Tested against: Microsoft Windows 2003 r2 sp2 download url:...
Novell Groupwise Internet Agent - LDAP BIND Request Overflow
Novell Groupwise Internet Agent - LDAP BIND Request Overflow Application: Novell Groupwise Platforms: Windows Version: 8.0.2 HP3 and 2012 Secunia: SA50622 PRL: 2012-33 ZDI: ?? Novell TID: 5150711 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter:...
Invision Power Board (IP.Board) 3.3.4 - Unserialize Regex Bypass
Invision Power Board IP.Board 3.3.4 - Unserialize Regex Bypass ?php / So this is the patch that sanitizes, static public function safeUnserialize $serialized // unserialize will return false for object declared with small cap o // as well as if there is any ws between O and : if isstring...
CMSQLite 1.3.2 - Multiple Vulnerabilities
CMSQLite 1.3.2 - Multiple Vulnerabilities Title: ====== CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Date: ===== 2012-10-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=726 VL-ID: ===== 726 Common Vulnerability Scoring System: ==================================== 4...
FileBound 6.2 - Local Privilege Escalation
FileBound 6.2 - Local Privilege Escalation Sense of Security - Security Advisory - SOS-12-010 Release Date. 10-Oct-2012 Last Update. - Vendor Notification Date. 14-Aug-2012 Product. FileBound On-Site Platform. Windows Affected versions. All versions prior to 6.2 Severity Rating. High Impact...
JPEGsnoop 1.5.2 - WriteAV Crash (PoC)
JPEGsnoop 1.5.2 - WriteAV Crash PoC !/usr/bin/perl JPEGsnoop 1.5.2 Vendor URI: http://sourceforge.net/projects/jpegsnoop/ Vendor Description: JPEGsnoop is a detailed JPEG image decoder and analysis tool. It reports all image metadata and can even help identify if an image has been edited. Debug...
Fortigate UTM WAF Appliance - Multiple Vulnerabilities
Fortigate UTM WAF Appliance - Multiple Vulnerabilities Title: ====== Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities Date: ===== 2012-09-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=557 VL-ID: ===== 557 Common Vulnerability Scoring System:...
Winlog Lite SCADA HMI system - Overwrite (SEH)
Winlog Lite SCADA HMI system - Overwrite SEH Vuln Title: Winlog Lite SCADA HMI system SEH 0verwrite Vulnerability Author: FaryadR a.k.a Ciph3r tested on : winXp sp3 and Winlog Lite 2.06.17 Version Twitter : https://twitter.com/faryadR Mail : [email protected] Website : http://0c0c0c0c.com...
Wireshark 1.6.01.8.2 - Buffer Overflow (PoC)
Wireshark 1.6.01.8.2 - Buffer Overflow PoC / WireShark Buffer Overflow 0day author: X-h4ck,[email protected],www.pirate.al greetz to people that i love and my girlfriend , and yes imm proud to be albanian.only the poc, no exploit available so i wont confuse the script kiddies, eax,ecx,edx,ebx...
IOServer 1.0.18.0 - Directory Traversal
IOServer 1.0.18.0 - Directory Traversal ===================================================================== BEGIN Foofus.net Security Advisory: foofus-20120817 BEGIN ===================================================================== Title: IOServer "Root Directory" Trailing Backslash Web...
T-dah Webmail - Cross-Site Request Forgery Persistent Cross-Site Scripting
T-dah Webmail - Cross-Site Request Forgery Persistent Cross-Site Scripting ----------------------------------------------------------- / | | | | | | | | | | | | | | | | | / |/ |/ \ | | || | || | | | | / | ||\,|,||| ----------------------------------------------------------- T-dah Webmail CSRF &...
WespaJuris 3.0 - Multiple Vulnerabilities
WespaJuris 3.0 - Multiple Vulnerabilities Then, go to http://localhost/juris/clientdir/30/dl/webshell.php and see your webshell. :: How this exploit works? Manually work. Login bypass On login form, enter "SQLi strings": Login: '...
Openconstructor CMS 3.12.0 - id Multiple SQL Injections
Openconstructor CMS 3.12.0 - id Multiple SQL Injections Title: Openconstructor CMS 3.12.0 'id' parameter multiple SQL injection vulnerabilities Affected Software: http://www.openconstructor.org/ http://code.google.com/p/openconstructor/downloads/list...
XOOPS Cube PROJECT FileManager - xupload.php Arbitrary File Upload
XOOPS Cube PROJECT FileManager - xupload.php Arbitrary File Upload source: https://www.securityfocus.com/bid/53945/info FileManager is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to adequately sanitize user-supplied input. An...
Agora-Project 2.12.11 - Arbitrary File Upload
Agora-Project 2.12.11 - Arbitrary File Upload Exploit Title: agora-project2.12.1112-2011 Remote Shell Upload Google Dork: n0 N0obs Date: 10/06/2012 Exploit Author: Misa3l Vendor Homepage: http://sourceforge.net/projects/agora-project/ Software Link:...
BulletProof FTP Client 2010 - Buffer Overflow (PoC)
BulletProof FTP Client 2010 - Buffer Overflow PoC Title: ====== BulletProof FTP Client 2010 - Buffer Overflow Vulnerability Date: ===== 2012-04-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=475 VL-ID: ===== 475 Introduction: ============= BPFTP Client is a fully...
Open Journal Systems (OJS) 2.3.6 - libpkpclassescoreString.inc.php?String::stripUnsafeHtml() Method Cross-Site Scripting
Open Journal Systems OJS 2.3.6 - libpkpclassescoreString.inc.php?String::stripUnsafeHtml Method Cross-Site Scripting source: https://www.securityfocus.com/bid/52666/info Open Journal Systems is prone to following multiple vulnerabilities because the software fails to sufficiently sanitize...
Open Journal Systems (OJS) 2.3.6 - index.php?authors[][url] Cross-Site Scripting
Open Journal Systems OJS 2.3.6 - index.php?authorsurl Cross-Site Scripting source: https://www.securityfocus.com/bid/52666/info Open Journal Systems is prone to following multiple vulnerabilities because the software fails to sufficiently sanitize user-supplied input: 1. An arbitrary-file-deletio...
TYPSoft FTP Server 1.1 - APPE Remote Denial of Service
TYPSoft FTP Server 1.1 - APPE Remote Denial of Service !/usr/bin/python SEH overflow exploiting a vulnerability in Typesoft-FTP APPE command. Date of Discovery: 3/16/2012 0 Day Author: Brock Haun Vulnerable Software Download: http://sourceforge.net/projects/ftpserv/ Software Version: 1.1 Target O...
Mozilla Firefox 4.0.1 - Array.reduceRight() Remote Overflow
Mozilla Firefox 4.0.1 - Array.reduceRight Remote Overflow function hexx var y = x.toString16; y = "0x"+y; return y; function itoai return String.fromCharCodei; // n - length in bytes 1 unicode char = 2 bytes function puffx, n whilex.length n x += x; return x.substring0,n; function arr2hextab var ...
GAzie 5.20 - Cross-Site Request Forgery
GAzie 5.20 - Cross-Site Request Forgery ======================================== GAzie Date: 5/02/2012 Site: http://www.giudinvx.altervista.org/ -------------------------------------------------------- @Application Info: Multicompany finance application written in PHP using a MySql database backe...
Linux Kernel 2.6.39 3.2.2 (Gentoo Ubuntu x86x64) - Mempodipper Local Privilege Escalation (1)
Linux Kernel 2.6.39 3.2.2 Gentoo Ubuntu x86x64 - Mempodipper Local Privilege Escalation 1 / Exploit code is here: http://git.zx2c4.com/CVE-2012-0056/plain/mempodipper.c Blog post about it is here: http://blog.zx2c4.com/749 EDB-Note: Updated version can be found here:...
Kaspersky Internet SecurityAnti-Virus - .cfg File Memory Corruption
Kaspersky Internet SecurityAnti-Virus - .cfg File Memory Corruption source: https://www.securityfocus.com/bid/51161/info Kaspersky Internet Security and Anti-Virus are prone to a local memory-corruption vulnerability. A local attacker can exploit this issue to cause the affected application to...
Attachmate Reflection FTP Client - Heap Overflow
Attachmate Reflection FTP Client - Heap Overflow Application: Attachmate Reflection FTP Client Heap Overflow Platforms: Windows Exploitation: Remote code execution CVE Number: PRL: 2011-09 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter:...
URL Shortener Script 1.0 - SQL Injection
URL Shortener Script 1.0 - SQL Injection =================================================================================== url shortener script 1.0 sql injection Vulnerabilities =================================================================================== Exploit Title: url shortener scri...
Actfax FTP Server 4.27 - USER Stack Buffer Overflow (Metasploit)
Actfax FTP Server 4.27 - USER Stack Buffer Overflow Metasploit This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
DmxReady Faqs Manager 1.2 - SQL Injection
DmxReady Faqs Manager 1.2 - SQL Injection Exploit Title: DmxReady Faqs Manager v1.2 SQL Injection Vulnerability Google Dork: inurl:incfaqsmanager.asp Date: 03.07.2011 Author: Bellatrix Software Link: http://www.dmxready.com/?product=faqs-manager-v1 Version: v1.2 Language: ASP Price : $99.97 Teste...
Microsoft Windows Movie Maker 2.1.4026 - .avi Remote Buffer Overflow
Microsoft Windows Movie Maker 2.1.4026 - .avi Remote Buffer Overflow source: https://www.securityfocus.com/bid/46835/info Windows Movie Maker is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Successful...
Movavi VideoSuite 8.0 Slideshow - .jpg Local Crash (PoC)
Movavi VideoSuite 8.0 Slideshow - .jpg Local Crash PoC !/usr/bin/perl Title : Movavi VideoSuite 8.0 SlideShow.exe Local Crash PoC Author : KedAns-Dz E-mail : [email protected] Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : Windows Impact : Crashs...
Limelight Software - article.php SQL Injection
Limelight Software - article.php SQL Injection © Limelight Software Ltd article.php Sql Injection Vulnerability .:. Author : eXeSoul .:. Contact : [email protected] .:. Date : 04-03-2011 .:. category : Web Apps SQli .:. HomePage : www.indishell.in .:. Tested on : windows/linux .:. Vulnerability :...
Quicktech - SQL Injection
Quicktech - SQL Injection + Exploit Title : Quicktech Sql Injection Vulnerability + Author : eXeSoul + Contact : [email protected] + Date : 02-03-2011 + category: Web Apps SQli + HomePage : www.indishell.in + Version : all + Tested on : windows/linux + Vulnerability Style : PHP Sql Injection...
sap crystal report server 2008 - Directory Traversal
sap crystal report server 2008 - Directory Traversal Source: http://packetstormsecurity.org/files/view/97865/DSECRG-11-003.txt ÇDSECRG-11-003 Internal DSECRG-00145 SAP Crystal Report Server 2008 - Directory Traversal Directory traversal vulnerability discovered in the module PerformanceManagement...
Openfire 3.6.4 - Multiple Cross-Site Scripting Vulnerabilities
Openfire 3.6.4 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/45682/info Openfire is prone to multiple cross-site-scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues ...
WordPress 3.0.1 - do_trackbacks() SQL Injection
WordPress 3.0.1 - dotrackbacks SQL Injection Description: SQL injection vulnerability in dotrackbacks function of WordPress allows remote attackers to execute arbitrary SELECT SQL query. Access Vector: Network Attack Complexity: Medium Authentication: Single Instance Confidentiality Impact: Parti...
Native Instruments Traktor Pro 1.2.6 - Stack Buffer Overflow (PoC)
Native Instruments Traktor Pro 1.2.6 - Stack Buffer Overflow PoC !/usr/local/bin/perl Native Instruments Traktor Pro 1.2.6 Stack-based Buffer Overflow Vulnerability Vendor: Native Instruments GmbH Product web page: http://www.native-instruments.com Affected version: 1.2.6.8491 Standalone Summary:...