56796 matches found
Linux Kernel 2.4.22 "do_brk()" local Root Exploit (PoC)
No description provided by source. ; Christophe Devine devine at cr0.net and Julien Tinnes julien at cr0.org ; ; This exploit uses sysbrk directly to expand his break and doesn't rely ; on the ELF loader to do it. ; ; To bypass a check in sysbrk against available memory, we use a high ; virtual...
GetSolutions GetInternet Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/11150/info getInternet is vulnerable to multiple remote SQL injection vulnerabilities in the 'welcome.asp', 'checklogin.asp', and 'lostpassword.asp' scripts. These issues are due to a failure of the application to properl...
Free Realty 3.1-0.6 - Multiple Vulnerabilities
No description provided by source...
Compaq Web-Based Management Agent Access Violation Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8015/info Compaq Web-Based Management Agent has been reported prone to a remote denial of service vulnerability when handling malformed GET requests. The resulting error reports an access violation, effectively causing th...
Pine <= 4.56 Remote Buffer Overflow Exploit
No description provided by source. / Mon Sep 15 09:35:01 CEST 2003 remote? Pine = 4.56 exploit by sorbo sorbox yahoo com darkirco Ok won't talk much about the bug since as usual idefense advisories are proper advisories and explain everything... exploiting the bug is trivial after reading the adv...
Faq-O-Matic 2.711 Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/16251/info Faq-O-Matic is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to hav...
Softbiz Classifieds Script gallery.php radio Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/32569/info Softbiz Classifieds Script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary scri...
OpenDocMan 1.2.5 view_file.php XSS
No description provided by source. source: http://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...
Bitrix Site Manager 6/7 Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/33689/info Bitrix Site Manager is prone to multiple input-validation vulnerabilities: - An authentication-bypass vulnerability - A cross-site scripting vulnerability An attacker may leverage these issues to gain...
Alt-N MDaemon 2-8 Remote Pre-Authentication IMAP Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18129/info Alt-N MDaemon IMAP Server is susceptible to a remote buffer-overflow vulnerability. This issue is due to the application's failure to properly bounds-check user-supplied input before copying it to an...
ownCloud 6.0.0a - Multiple Vulnerabilities
No description provided by source. Exploit Title: ownCloud 6.0.0a File Deletion XSS and CSRF Protection Bypass Vendor Homepage: www.ownCloud.org OwnCloud Version: 6.0.0a Browsers tested: Iceweasel 22.0; Internet Explorer 11; Server: Debian. Default LAMP set-up. Exploit Author: James Sibley absane...
Linux Kernel <= 2.6.3 (setsockopt) Local Denial of Service Exploit
No description provided by source. / setsockopt proof of concept code by Julien TINNES julien a.t cr0.org vulnerability found as always by Paul Starzetz This is only a lame POC which will crash the machine, no root shell here. Maybe later, when everybody will have an updated box. It should work o...
Joomla Tags (index.php, tag parameter) SQL Injection
No description provided by source. Exploit Title: Joomla tag Remote Sql Exploit dork: inurl:index.php?option=comtag Date: 18-10-2012 Author: Daniel Barragan D4NB4R Twitter: @D4NB4R Vendor: http://www.joomlatags.org Version: all License: Non-Commercial Download:...
SZUserMgnt 1.4 Username Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16454/info SZUserMgnt is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
Skype Technologies Skype 1.5 NSRunAlertPanel Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20218/info Skype is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied input before using it in the format-specification argument of a formatted-printing functio...
Wordpress Dimension Theme - CSRF Vulnerability
No description provided by source. Title : Wordpress Dimension Themes CSRF File Upload Vulnerability Author : DevilScreaM Date : 11/17/2013 - 17 November 2013 Category : Web Applications Type : PHP Vendor : http://themeforest.net Download :...
Netcut 2.0 - Denial of Service Vulnerability
No description provided by source. !/usr/bin/env python Exploit Title: Netcut Denial of Service Vulnerability Author: MaYaSeVeN Blog: http://mayaseven.blogspot.com PoC: Video http://www.youtube.com/user/mayaseven Picture...
MySmartBB 1.7 Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/38385/info MySmartBB is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the...
Home FTP Server 1.11.1.149 - Post-Auth Directory Traversal
No description provided by source...
PunBBAnnuaire <= 0.4 - Blind SQL Injection Vulnerability
No description provided by source. PunBBAnnuaire =0.4 Blind SQL Injection Vulnerability ======================================================== .:. Author : Metropolis .:. Home : http://xrayoptics.by.ru/ .:. Script : PunBBAnnuaire .:. Version : 0.4 .:. Download Script:...
symphony cms 2.3 - Multiple Vulnerabilities
No description provided by source. Symphony cms 2.3 multiple vulnerabilities -------------------------------------------------------------------------------------------- 20121017 - Justanotherhacker.com : Symphony cms - Multiple vulnerabilities JAHx122 -...
PostNuke 0.76 RC2 Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/18319/info PostNuke is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection vulnerabilities, because the application fails to properly sanitize user-supplied input. A...
IBM Rational ClearQuest 7.0 - Multiple Parameters Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/28296/info IBM Rational ClearQuest is prone to multiple cross-site scripting vulnerabilities because it fails to adequately sanitize user-supplied input. An attacker could exploit these vulnerabilities to execute arbitrar...
vBulletin 3.0.10 Portal.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18197/info vBulletin is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow...
Okyanusmedya Index.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24285/info Okyanusmedya is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
Asterisk 1.4 SIP T.38 SDP - Parsing Remote Stack Buffer Overflow Vulnerabilities (2)
No description provided by source. source: http://www.securityfocus.com/bid/23648/info Asterisk is prone to multiple remote stack-based buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data before copying it to insufficiently sized buffers...
Captaris Infinite WebMail 3.61.5 HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6411/info An HTML injection vulnerability has been discovered in Captaris Infinite WebMail. Due to insufficient sanitization of HTML content, it is possible for an attacker to embed malicious script code into HTML email...
Monkey HTTPD 1.1.1 - Crash PoC
No description provided by source. Title: ====== Monkey HTTPD 1.1.1 - Denial of Service Vulnerability Date: ===== 2013-05-28 References: =========== http://bugs.monkey-project.com/ticket/181 Introduction: ============= Monkey is a lightweight and powerful web server for GNU/Linux. It has been...
ultrascripts ultraboard 1.6 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1164/info UltraBoard 1.6 and possibly all 1.x versions is vulnerable to a directory traversal attack that will allow any remote browser to download any file that the webserver has read access to. On Windows instalations,...
Absolute News Feed 1.0 - Remote Insecure Cookie Handling Vulnerability
No description provided by source. Discovered by : Hakxer Script : Absolute News Feed http://www.xigla.com/absolutenf/demo.htm Greetz : Allah , All My friend ,www.educ-up.com ------------------------------- Poc : javascript:document.cookie=xlaAFSuser=p=admin; Exploit Go To admin login :...
SoftBiz Image Gallery 0 insert_rating.php img_id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17339/info Softbiz Image Gallery is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A...
SimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Vulnerability
No description provided by source. SimpleBlog 2.0 = comments.asp SQL Injection Exploit - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Credit by | Chironex Fleckeri Mail | [email protected] Googledork | Powered By SimpleBlog 2.0 - - - - - - - - - - - - - - - - - - -...
Traceroute-nanog 6 Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6166/info A vulnerability has been discovered in Traceroute-nanog. It has been reported that Traceroute-nanog contains a buffer overflow condition. The overflow occurs in the 'getorigin' function in the 'traceroute.c' fil...
Injader CMS Multiple Vulnerabilities
No description provided by source. Vulnerability ID: HTB22745 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininjadercms1.html Product: Injader CMS Vendor: http://www.injader.com/ http://www.injader.com/ Vulnerable Version: 2.4.4 Vendor Notification: 07 December 2010 Vulnerability...
Sami HTTP Server 2.0.1 GET Request Denial of Service Exploit
No description provided by source...
Acrobat Reader 9.4 - Memory Corruption Vulnerability
No description provided by source. http://www.exploit-db.com/sploits/xplpdf.bin http://extraexploit.blogspot.com/2010/11/full-disclosure-xplpdf-adober-reader-94.html...
Adobe U3D CLODProgressiveMeshDeclaration Array Overrun
No description provided by source. $Id: adobeu3dmeshcont.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms o...
vqServer 1.9.x CGI Demo Program Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4573/info vqServer is a HTTP server implemented in Java. vqServer is available on any architecture supporting Java, including Linux and Microsoft Windows. Reportedly, numerous default CGI scripts included with vqServer...
University of Washington - imap LSUB Buffer Overflow
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
VMware Workstation <= 7.1.1 VMkbd.sys Denial of Service Exploit
No description provided by source. !/usr/bin/python Title: VMware Workstation = 7.1.1 VMkbd.sys Denial of Service Exploit Author: Lufeng Li of Neusoft Corporation Vendor: www.vmware.com Platform: Windows Vista Tested: VMware Workstation v7.1.1 build-282343 Vulnerable: VMware Workstation = 7.1.1...
Linux x86 execve("/usr/bin/wget", "aaaa"); - 42 bytes
No description provided by source. / Title: Linux x86 execve/usr/bin/wget, aaaa; - 42 bytes Author: Jonathan Salwan submit AT shell-storm.org Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Database of Shellcodes http://www.shell-storm.org/shellcode/ 08048054 .text:...
pilot cart 7.3 - Multiple Vulnerabilities
No description provided by source. Title: ASPilot Pilot Cart 7.3 multiple vulnerabilities Date: 07.11.2010 Author: Ariko-Security Software Link: http://www.pilotcart.com Version: 7.3 CVE Reference: CVE-2008-2688 only 1 SQL injection EDB-ID: 5765 only 1 SQL injection Ariko-Security: Security Audit...
IBM Access Support ActiveX Control Buffer Overflow
No description provided by source. $Id: ibmegathgetxmlvalue.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...
HP-UX 11 RWrite Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7489/info HP-UX rwrite utility has been reported prone to a buffer overflow vulnerability. Although unconfirmed code execution with elevated privileges may be possible. The condition presents itself when excessive data is...
OllyDBG 1.10 and ImpREC 1.7f - (export name) BOF PoC
No description provided by source. ;-------------------------------------------------------------------------; ; OllyDBG v1.10 and ImpREC v1.7f export name buffer overflow vulnerability ; PoC probably older versions affected too, not tested though. ; ; Included shellcode shows a messagebox WinXP...
ASPilot Pilot Cart 7.3 newsroom.asp SQL Injection Vulnerability
No description provided by source. Title: ASPilot Pilot Cart 7.3 SQL Injection Date: 12.11.2010 Author: Daikin Software Link: http://www.pilotcart.com Version: 7.3 maybe also lower Vendor's Description of Software and demo: http://www.pilotcart.com Dork: Powered by Pilot Cart V.7.3 Application...
Hotfoon Dialer 4.0 - Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6156/info A buffer overflow vulnerability has been reported for the Hotfoon dialer. The vulnerability exists in a text input field for dialing telephone numbers. Reportedly, Hotfoon4.exe does not adequately perform bounda...
PHP 5.2.1 STR_IReplace Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22505/info PHP is prone to a denial-of-service vulnerability because it fails to properly sanitize user-supplied input. An attacker who can run PHP code on a vulnerable computer may exploit this vulnerability to crash PHP...
PHP 5.2.11/5.3.0 - Multiple Vulnerabilities
No description provided by source. ?php / PHP 5.2.11/5.3.0 symlink openbasedir bypass by Maksymilian Arciemowicz http://securityreason.com/ cxib a.T securityreason d0t com CHUJWAMWMUZG / $fakedir=cx; $fakedep=16; $num=0; // offset of symlink.$num if!empty$GET'file' $file=$GET'file'; else...
WMNews 0 wmcomments.php ArtID Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17076/info WMNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...