47153 matches found
Vbulletin 4.0.2 XSS Vulnerability
================================= Vbulletin 4.0.2 XSS Vulnerability ================================= + Vbulletin 4.0.2 XSS Vulnerability 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / / 1 1 / / 0 0...
[Onapsis Security Advisory 2010-004] SAP J2EE Authentication Phishing Vector
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory 2010-004: SAP J2EE Authentication Phishing Vector This advisory can be downloaded from http://www.onapsis.com/research.html. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco IronPort Encryption Appliance
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco IronPort Encryption Appliance Advisory ID: cisco-sa-20100210-ironport Revision 1.0 For Public Release 2010 February 10 1600 UTC GMT...
[ MDVSA-2009:344 ] perl-DBD-Pg
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:344 http://www.mandriva.com/security/ Package : perl-DBD-Pg Date : December 28, 2009 Affected: 2008.0 Problem Description: Multiple vulnerabilities was discovered and corrected in perl-DBD-Pg: Heap-based...
[security bulletin] HPSBMA02478 SSRT090251 rev.1 - HP Operations Manager for Windows, Remote Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01931960 Version: 1 HPSBMA02478 SSRT090251 rev.1 - HP Operations Manager for Windows, Remote Unauthorized Access NOTICE: The information in this Security Bulletin should be acted upon as soon as...
Microsoft Security Bulletin MS09-053 - Important Vulnerabilities in FTP Service for Internet Information Services Could Allow Remote Code Execution (975254)
Microsoft Security Bulletin MS09-053 - Important Vulnerabilities in FTP Service for Internet Information Services Could Allow Remote Code Execution 975254 Published: October 13, 2009 Version: 1.0 General Information Executive Summary This security update resolves two publicly disclosed...
[security bulletin] HPSBMA02447 SSRT090062 rev.1 - Insight Control Suite For Linux (ICE-LX) Cross Site Request Forgery (CSRF) , Remote Execution of Arbitrary Code, Denial of Service (DoS), and Other Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01820968 Version: 1 HPSBMA02447 SSRT090062 rev.1 - Insight Control Suite For Linux ICE-LX Cross Site Request Forgery CSRF , Remote Execution of Arbitrary Code, Denial of Service DoS, and Other...
ZDI-09-049: Sun Java Pack200 Decoding Inner Class Count Integer Overflow Vulnerability
ZDI-09-049: Sun Java Pack200 Decoding Inner Class Count Integer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-049 August 5, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- Vulnerability Details: This vulnerability allow...
[security bulletin] HPSBMA02433 SSRT090084 rev.1 - HP Discovery & Dependency Mapping Inventory (DDMI) Running on Windows, Remote Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01760771 Version: 1 HPSBMA02433 SSRT090084 rev.1 - HP Discovery & Dependency Mapping Inventory DDMI Running on Windows, Remote Unauthorized Access NOTICE: The information in this Security Bulleti...
ftpdmin v. 0.96 RNFR remote buffer overflow exploit
?php / ftpdmin v. 0.96 RNFR remote buffer overflow exploit xp sp3 / case study by Nine:Situations:Group::surfista software site: http://www.sentex.net/mwandel/ftpdmin/ our site: http://retrogod.altervista.org/ bug found by rgod in 2006, RNFR sequences can trigger a simple eip overwrite. We can us...
Max.Blog <= 1.0.6 (offline_auth.php) Offline Authentication Bypass
Salvatore "drosophila" Fresta Application: Max.Blog http://www.mzbservices.com Version: Max.Blog = 1.0.6 Bug: Offline Authentication Bypass Exploitation: Remote Dork: intext:"Powered by Max.Blog" Date: 27 Jan 2009 Discovered by: Salvatore "drosophila" Fresta Author: Salvatore "drosophila" Fresta...
İltaweb Kolay Site (urundetay) Sql injection Vulnerability (Tr)
Author: BiLGi ASD Contact: [email protected] Home: Bilgi-Asd.Ch Script: ltaweb Kolay Site Tr Sql injection Vulnerability http://www.aspindir.com/goster/5665 $Price$: 100 Exploit: urundetay.asp?id=67+union+select+0,1,sifre,kullaniciadi,4,5,6,7,8,9,10,11,12+from+uyeler Demo:...
Remote and Local File Inclusion Vulnerability <= 1.1 Rportal
RPortal v1.1 Rportal is a management system of contents simple and powerful Web, enabling you to create your site in a few minutes, while profiting from a complete and effective administration. Remote and Local File Inclusion Vulnerability = 1.1 Found the 29th September 2008 Author: Kad mail :...
MS Internet Explorer 7 Denial Of Service Exploit
!-- MS Internet Explorer 7 Denial Of Service Exploit Type : Denial Of Service Release Date : 2007-09-29 Product / Vendor : Microsoft http://www.Microsoft.com MS Internet Explorer 7 Denial Of Service Exploit : -- titleMS Internet Explorer 7 Denial Of Service Exploit/title body bgcolor="000000" br ...
CS-Cart <= 1.3.5 SQL Injection
GulfTech Security Research September 02, 2008 Vendor : CS-Cart.com URL : http://www.cs-cart.com/ Version : CS-Cart = 1.3.5 Risk : SQL Injection Description: CS-Cart Cart is a full featured online ecommerce application written in php that allows users to build, run and promote an online store. The...
Cisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks Advisory ID: cisco-sa-20080708-dns http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml Revision 1.0 For Public Release 2008 July 08 1800 UTC GMT...
[SECURITY] [DSA 1605-1] DNS vulnerability impact on the libc stub resolver
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1605-1 [email protected] http://www.debian.org/security/ Florian Weimer July 08, 2008 http://www.debian.org/security/faq -...
[Full-disclosure] Opera - heap based buffer overflow (CVE-2007-6521)
============================================ ||| Security Advisory AKLINK-SA-2008-006 ||| ||| CVE-2007-6521 CVE candidate ||| ============================================ Opera - heap-based buffer overflow ================================== Date released: 28.05.2007 Date reported: 05.10.2007...
PHP-Nuke NSN Script Depository module <= 1.0.3 Remote Source / DB Credentials Disclosure
--------------------------------------------------------------- / | | / | / |/ | | |/ | | / | | | | | |/ | | // | || | ||| /| / / | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg...
[ MDKSA-2007:188 ] - Updated postgresql packages prevent access abuse using dblink
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2007:188 http://www.mandriva.com/security/ Package : postgresql Date : September 25, 2007 Affected: 2007.0, 2007.1, Corporate 3.0, Corporate 4.0 Problem Description: PostgreSQL 8.1 and probably later and earlier...
PHMe CMS 0.0.2 local File Include Vulnerabilitiy
Tilte: PHMe CMS 0.0.2 local File Include Vulnerabilitiy www.Aria-security.Com For English www.Aria-Security.net For Persian Author: YouYou Software: PHMe CMS Site Script: http://sourceforge.net/projects/phme proof Of Concept : www.example.com/path/resources/functionlist.php?action=Local Script00...
Security Advisory: Login bypass in LedgerSMB 1.2.0 through 1.2.6
A security issue has been found which allows an unauthenticated user to bypass the authentication system in LedgerSMB 1.2.0 through 1.2.6. Severity: Highly Critical Versions affected: 1.2.0 through 1.2.6 Status: Vendor solution available upgrade to 1.2.7 Effect: Authentication bypass. Required...
Microsoft Security Bulletin MS07-026 Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832)
Microsoft Security Bulletin MS07-026 Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution 931832 Published: May 8, 2007 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Exchange Server Impact of Vulnerability: Remote Code Execution Maximum Severit...
NeatUpload vulnerability and fix
Product: NeatUpload Synopsis: A race condition in several versions of the NeatUpload ASP.NET component could sometimes cause portions of responses to be sent to the wrong user, potentially revealing sensitive information to unauthorized users. Vulnerable versions: 1.2.11-1.2.16, 1.1.18-1.1.23, an...
[waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20
waraxe-2007-SA049 - Multiple vulnerabilities in Phorum 5.1.20 ==================================================================== Author: Janek Vind "waraxe" Date: 19. April 2007 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-49.html Target software description: Phorum 5.1.20...
Path Disclosure - Wordpress 2.1.2
Product : Wordpress 2.1.2 Vulnerability Details : All the sites running on the latest version of wordpress 2.1.2 are exposed to a full path disclosure vulnerability. Proof of Concept: http://www.anysite.com/Pathtowordpress/wp-includes/vars.php Error Returned: Fatal error: Call to undefined functi...
Microsoft Windows Workstation service buffer overflow
Buffer overflow in RPC based service...
Segue CMS <= 1.5.8 (themesdir) Remote File Include Vulnerability
+------------------------------------------------------------------------------------------- + Segue CMS = 1.5.8 themesdir Remote File Include Vulnerability +------------------------------------------------------------------------------------------- + Affected Software .: Segue CMS = 1.5.8 + Vend...
vtiger CRM 5 Beta Remote File Include Vulnerability
!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!! -------------------------------------------------------------------------------- Title : vtiger CRM 5 Beta Remote File Include Vulnerability -------------------------------------------------------------------------------- Author: CrackersChild cont@ct:...
Sql injection in Moodle
Hi, There is a sql injection in Moodle 1.6.1+ and maybe before versions : The "$blogEntry" parameter passed to "insertrecord" function in /blog/edit.php, is not checked properly . Version 1.6.2 has been released moodle.org. - Omid...
ADOdb Date Library Full path Bugs
Hello,, ADOdb Date Library, part of the ADOdb abstraction library Full path bugs Discovered By : HACKERS PAL Copy rights : HACKERS PAL Website : http://www.soqor.net Email Address : [email protected] ADOdb Date Library, part of the ADOdb abstraction library Full path adodb/server.php...
MusicBox <= 2.3.4 XSS SQL injection Vulnerability
MusicBox 2.3.4 http://www.musicboxv2.com ------------ PHPinfo page ------------ /phpinfo.php -------------------------- Cross Site Scripting XSS -------------------------- http://www.target.xx/?id=scriptalert/EllipsisSecurityTest//script&page=0...
Rocks Clusters <=4.1 local root
direct link: http://xavier.tigerteam.se/advisories/TSEAD-200606-6.txt tigerteam.se security advisory - TSEAD-200606-6 www.tigerteam.se Advisory: Rocks Clusters =4.1 local root vulnerabilities Date: Wed Jul 5 15:52:59 EDT 2006 Application: mount-loop, umount-loop Vulnerability: Lack of filtering o...
VBZooM <=V1.11 " ignore-pm.php" SQL Injection
=========================================== Discovered By: C.B.B.L CrAzY CrAcKeR ,Breeeeh ,BoNy-m ,LiNuXrOOt =========================================== Search:- POWERED BY: VBZooM V1.11 Example:- ignore-pm.php?UserID=SQL Injection ===========================================...
[Full-disclosure] phpBB 2.0.20 Full Path Disclosure and SQL Errors
Source: http://securityreason.com/achievementsecurityalert/38 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.20 Full Path Disclosure and SQL Errors Author: Maksymilian Arciemowicz cXIb8O3 Date: - -Written: 1.5.2006 - -Public: 5.5.2006 from SecurityReason.Com CVE: - - CVE-2006-2219 Full...
LoudBlog <= 0.4 arbitrary remote inclusion
------------- LoudBlog = 0.4 arbitrary remote inclusion ----------- software: site: http://loudblog.de/ description: "Loudblog is a sleek and easy-to-use Content Management System CMS for publishing media content on the web. It automatically generates a skinnable website and an RSS-Feed for...
HPSBTU01210 SSRT4743, SSRT4884 rev.0 - HP Tru64 UNIX TCP/IP remote Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP SECURITY BULLETIN HPSBTU01210 REVISION: 0 SSRT4743, SSRT4884 rev.0 - HP Tru64 UNIX TCP/IP remote Denial of Service DoS NOTICE: There are no restrictions for distribution of this Security Bulletin provided that it remains complete and intact. The...
1. Exploit for Cutenews 1.3 1.3.1 1.3.2, AND Bug in Cutenews v1.3.6
Cutenews v1.3 v1.3.1 v1.3.2 Shell exploit 2. bug-traq :: Cutenews 1.3.6 Shell Network security team nst.e-nex.com Title: shell in Cutenews 1.3.6 Bug found by: тёмыч Date: 7.09.2004 web: http://cutephp.com/ Бага работает толька в v1.3.6 Все ваши дальнейшие скрипты должны быть на хостинге каторый...
Microsoft Security Bulletin MS04-012
Microsoft Security Bulletin MS04-012 Cumulative Update for Microsoft RPC/DCOM 828741 Issued: April 13, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of vulnerability: Remote Code Execution Maximum Severity Rating: Critical Recommendation:...
NOVL-2003-2966205 - iChain 2.2 Field Patch 1a
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 For Immediate Disclosure ============================== Summary ============================== Security Alert: NOVL-2003-2966205 Title: iChain 2.2 Field Patch 1a Date: 05-Jun-2003 Revision: Original Product Name: iChain 2.2 OS/Platforms: Netware...
[ANNOUNCE] Apache 2.0.45 Released
-----BEGIN PGP SIGNED MESSAGE----- Apache 2.0.45 Released The Apache Software Foundation and The Apache HTTP Server Project are pleased to announce the eighth public release of the Apache 2.0 HTTP Server. This Announcement notes the significant changes in 2.0.45 as compared to 2.0.44. OS2 users;...
EEYE: Macromedia ColdFusion/JRun Remote SYSTEM Buffer Overflow Vulnerabilities
Macromedia ColdFusion/JRun Remote SYSTEM Buffer Overflow Vulnerabilities Release Date: November 12, 2002 Severity: High Remote SYSTEM level code execution Systems Affected: Macromedia Coldfusion 6.0 and prior IIS ISAPI Macromedia JRun 4.0 and prior IIS ISAPI Description: Macromedia JRun and...
Blazix 1.2 jsp view and free protected folder access
Auriemma Luigi, PivX security advisory Application: Blazix http://www.blazix.com Version: 1.2 and previous Bug: Bad management of files requested with at the end some "bad" characters Risk low: An attacker can view jsp and other server side scripts with the ability to access any password protecte...
Three Windows XP UPNP DOS attacks
Below you will find a quick recap of a few denial of service exploits I discovered against Windows XP and selected versions of WinME. Microsoft confirmed my findings: bulletin MS01-54. The paper is a narrative and the author hopes it will be useful for newbies and an enjoyable paper for the...
PGPsdk Key Validity Vulnerability
http://www.pgp.com/support/product-advisories/pgpsdk.asp A vulnerability in PGP's display of key validity has been discovered that could allow an attacker to fool users into thinking that a valid signature was created by what is actually an invalid user ID. If the attacker can obtain a signature ...
Обход Trend Micro AppletTrap (protection bypass)
Можно обойти защиту от Javascript Используя Unicode - кодировку...
Security Advisory 2001-009: Race condition between sugid-exec and ptrace(2)
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2001-009 ================================= Topic: Race condition between sugid-exec and ptrace2 Version: All official releases up to and including 1.5 Severity: Local user may gain superuser privileges Fixed: NetBSD-current: June 15, 200...
Brute Forcing FTP Servers with enabled anti-hammering (anti brute-force) modus
Brute Forcing FTP Servers with enabled anti-hammering ant brute-force modus ----------------------------------------------------------------------------- While playing around with Serv-U FTP Server, I found out that it is possible to bypass it's hammering protection which should protect accounts...
Cisco CDP attacks
Folks, when playing around with CDP, I discovered several interesting things. Due the leak of Cisco hardware around here, I ask you for your expiriences. Details as follows: Program: http://www.phenoelit.de/irpas/cdp.c Known effekts: -IOS 11.11: when flooding the cisco with random deviceID update...
[SECURITY] [DSA 3291-1] drupal7 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3291-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 18, 2015 https://www.debian.org/security/faq -...