56796 matches found
Magic Forum Personal view_thread.cfm Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15774/info CFMagic Products are prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. These vulnerabilities allow an attacker to inject malicious SQL co...
Netscape 7.0 JavaScript Regular Expression Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6959/info It has been reported that Netscape based browsers may be vulnerable to a denial of service condition when executing certain JavaScript methods. If a malicious page containing a specially crafted JavaScript regul...
Groovy Media Player 3.2.0 (.mp3) - Buffer Overflow Vulnerability
No description provided by source. Title: ==== Groovy Media Player 3.2.0 Buffer Overflow Vulnerability Credit: ====== Name: Akshaysinh Vaghela Company/affiliation: Cyberoam Technologies Private Limited Website: www.cyberoam.com CVE: ===== CVE-2013-2760 Reserved Date: ==== 21-03-2013 CL-ID: ====...
axoverzicht.CGI Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17584/info The axoverzicht.cgi script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed ...
Shadow Stream Recorder 3.0.1.7 - Buffer Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Intel Video Codecs 5.0 - Remote Denial of Service Vulnerability
No description provided by source...
[Raspberry Pi] Linux/ARM - reverse_shell(tcp,10.1.1.2,0x1337)
No description provided by source. / Title: Linux/ARM - reverseshelltcp,10.1.1.2,0x1337 execve/bin/sh, 0, 0 vars - 72 bytes Date: 2012-09-08 Tested on: ARM1176JZF-S v6l - Raspberry Pi Author: midnitesnake 00008054 start: 8054: e28f1001 add r1, pc, 1 8058: e12fff11 bx r1 805c: 2002 movs r0, 2 805e...
PHPEasyData 1.5.4 - last_records.php annuaire Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to...
Sights 'N Sounds Streaming Media Server 2.0.3 SWS.EXE Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15809/info Sights 'n Sounds Streaming Media Server is prone to a buffer overflow vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. Successful exploitation will like...
Telestream Flip4Mac - 'WMV' File Remote Memory Corruption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22286/info Flip4Mac is prone to a remote memory-corruption vulnerability. Flip4Mac is prone to a remote memory-corruption vulnerability because the application fails to properly handle malformed WMV files. An attacker can...
Verylost LostBook 1.1 Message Entry HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10825/info Reportedly Verylost lostBook is affected by an HTML injection vulnerability in its message entry functionality. This issue is due to a failure of the application to properly validate and sanitize user-supplied...
WeBid 1.0.6 - SQL Injection Vulnerability
No description provided by source. Exploit Title: WeBid 1.0.6 SQL Injection Vulnerability Google Dork: Powered by WeBid Date: 1/9/13 Exploit Author: Life Wasted Vendor Homepage: http://www.webidsupport.com/ Version: Tested on 1.0.6, but could affect other version Tested On: Linux, Windows...
PHP-Coolfile 1.4 Unauthorized Administrative Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9018/info PHP-Coolfile allows unauthorized administrative access due to an error in the way access is evaluated in the action.php file. This could allow a remote user to obtain the administrative username and password for...
eCMS 0.4.2 - Multiple Security Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/29304/info eCMS is prone to multiple security vulnerabilities, including a security-bypass issue and an SQL-injection issue. Exploiting these issues may allow an attacker to bypass certain security restrictions and gain...
ecms 0.4.2 (sql/pb) Multiple Vulnerabilities
No description provided by source. ...::::eCMS-v0.4.2 SQL/PB Multiple Remote Vulnerabilities ::::... Virangar Security Team www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to ...
phpMyAdmin <= 2.11.1 Server_Status.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26301/info phpMyAdmin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
Wikepage Opus 13 2007.2 - 'index.php' Multiple Directory Traversal Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/28664/info Wikepage Opus is prone to multiple directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues using directory-traversal...
methane IRCd 0.1.1 - Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8038/info Behamut IRCd has been reported prone to remotely exploitable format string vulnerability. The issue presents itself when Behamut is compiled with DEBUGMODE defined. Reportedly a remote attacker may send maliciou...
Exploit: NCMedia Sound Editor Pro 7.5.1 - SEH & DEP
No description provided by source. !/usr/bin/python --------------------------------------------------------------------------- Exploit: NCMedia Sound Editor Pro v7.5.1 SEH&DEP Author: b33f - http://www.fuzzysecurity.com/ OS: Windows 7 Pro SP1 probably universal across 32-bit POC - Julien Ahrens ...
DCP-Portal 3.7/4.x/5.x news.php cid Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/11338/info DCP-Portal is reported prone to multiple cross-site scripting vulnerabilities. It is reported that DCP-Portal does not sufficiently filter URI parameters supplied to several scripts. Because of this deficiency,...
Microsoft Clip Art Gallery 5.0 - Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1034/info A vulnerability exists within the Microsoft Clip Art Gallery, where a remote user can crash the Clip Art application or possibly execute arbitrary code. Clip art can be downloaded from any website and incorporat...
Microsoft Internet Explorer 6.0 HREF Save As Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10552/info A vulnerability is reported to exist in Internet Explorer that may allow an attacker to cause the application to crash. The issue presents itself when a user attempts to invoke the Save As option on a malicious...
C-Cart 1.0 Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8368/info C-Cart is prone to a path disclosure vulnerability. Passing invalid data as a URI parameter to several C-Cart scripts will cause an error message to be displayed, which contains installation path information...
Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation
No description provided by source. / american-sign-language.c Linux Kernel 2.6.37-rc2 ACPI custommethod Privilege Escalation Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4347 This custommethod file allows to inject...
Pligg 1.1.4 - SQL Injection Vulnerability
No description provided by source. Exploit Title: Pligg = 1.1.4 SQL injection Date: 03/23/2011 Author: Null-0x00 Software Link: http://pligg.com/ Version: = 1.1.4 Websites: zenk-security.com & hackerzvoice.net Description An SQL Injection has been found on /rsssearch.php in pligg CMS 1.1.4. Prior...
Jax PHP Scripts 1.0/1.34/2.14/3.31 jax_guestbook.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An attacker may leverage any of the...
MailEnable 1.1/1.7 IMAP Rename Request Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15556/info MailEnable is prone to a remote denial of service vulnerability. The vulnerability presents itself when a user issues a malicious rename request following authentication. Remote attackers can exploit this issue...
Social Web CMS 2 'index.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38329/info Social Web CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...
Microsoft Windows 95/98/NT 4.0 Help File Trojan Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/868/info The help files for the Windows Help system .cnt, .hlp can be edited so that they run an arbitrary executable when selected by a user. The executable will run at the privelege level of the user. The .cnt files are...
Jana Server <= 2.4.4 (http/pna) Denial of Service Exploit
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
Simple Machines Forum (SMF) <= 1.1.8 - (avatar) Remote PHP File Execute PoC
No description provided by source...
WeBid <= 0.7.3 RC9 Multiple Remote File Inclusion Vulnerabilities
No description provided by source. ----------------------------------------------------------------------------------------- ECHOADV104$2009 WeBid = 0.7.3 RC9 Multiple Remote File Inclution Vulnerabilities -----------------------------------------------------------------------------------------...
odlican.net cms 1.5 - Remote File Upload Vulnerability
漏洞分析 upload.php php if isset$POST'pokreni' $targetpath = "files/"; $targetpath = $targetpath . basename $FILES'uploadedfile''name'; ifmoveuploadedfile$FILES'uploadedfile''tmpname', $targetpath echo "Datoteka ". basename $FILES'uploadedfile''name'. " je snimljena na server"; else echo "Došlo je...
Tridia DoubleVision 3.0 7.00 Local Root Compromise
No description provided by source. source: http://www.securityfocus.com/bid/1697/info A utility integral to Tridia DoubleVision for SCO UnixWare 7.x has been found to be vulnerable to a buffer overflow attack. dvtermtype, which is setuid root, is run by a user at login time to tell DoubleVision...
SmartCode ServerX VNC Server ActiveX 1.1.5.0 (scvncsrvx.dll) DoS Exploit
No description provided by source. Title: SmartCode ServerX VNC Server ActiveX 1.1.5.0 scvncsrvx.dll DoS Exploit Vendor: SmartCode Solutions Product Web Page: htt://www.s-code.com Version Tested: 1.1.5.0 Summary: SmartCode ServerX VNC Server control is a VNC server implemented as an ActiveX...
gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (ppc)
No description provided by source. !/usr/bin/perl -w Heh - Code by KF kflistsatdigitalmunitiondotcom - Shellcode by Charles Stevenson http://www.digitalmunition.com FrSIRT 24/24 & 7/7 - Centre de Recherche on Donkey Testicles. Free 14 day Testicle licking trial available! IIIIIIIIII I::::::::I...
Joomla MojoBlog Component 0.15 - Multiple Remote File Include Vulnerabilities
No description provided by source. Joomla Component MojoBlog Multiple Remote File Include vulnerability Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : November 20, 2009 Software Information + Vendor : http://www.joomlify.com/ + Download :...
Soft Direct 1.05 - Multiple Vulnerabilities
No description provided by source...
Microsoft Windows NT 4.0/4.0 SP1/4.0 SP2/4.0 SP3/4.0 SP4/4.0 SP5 RAS Dial-up Networking "Save Password" Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/232/info Windows NT allows users to save their RAS and/or RRAS credentials by using the 'Save Password' checkbox when making a dial-up connection. Credentials saved in this manner are stored in the...
iOS iDocManager 1.0.0 - Directory Traversal
No description provided by source. Exploit Title: iDocManager v1.0.0 for iPhone / iPod touch, Directory Traversal Date: 02/24/2011 Author: R3d@l3rt, Sp@2K, Sunlight, H@ckk3y Software Link : http://itunes.apple.com/kr/app/idocmanager/id376421606?mt=8 Version: 1.0.0 Tested on: iPhone, iPod 3GS with...
com_extcalendar Mambo Component <= 2.0 Include Vulnerability
No description provided by source. -------------------------------------------------------------------------------- Title : ExtCalendar Mambo Module = v2 Remote File Include Vulnerabilities Discovered By OLiBekaS ----------------------------------------------------------------------------- dork :...
TP-Link TL-WA701N / TL-WA701ND - Multiple Vulnerabilities
No description provided by source. Device Name: TL-WA701N / TL-WA701ND Vendor: TP-Link ============ Vulnerable Firmware Releases: ============ Firmware Version: 3.12.6 Build 110210 Rel.37112n Firmware Version: 3.12.16 Build 120228 Rel.37317n - Published Date 2/28/2012 Hardware Version: WA701N v1...
Active Calendar 1.2 ShowCode.PHP Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22704/info Active Calendar is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local...
CKEditor < 4.1 - Persistent XSS WYSIWYG module Drupal 6.x & 7.x
No description provided by source. Exploit Title: Persistent XSS in wysiwyg CKEditor 4.1 Drupal 6.x & 7.x Date: 15/05/2013 Exploit Author: r0ng Vendor Homepage: http://www.websitesecurityscan.net, http://www.hackers2devnull.blogspot.co.uk Software Links: http://ckeditor.com/release/CKEditor-4.0.3...
Joomla Component com_jdrugstopics SQL Injection Vulnerability
No description provided by source. Title: Joomla Component comjdrugstopics SQL Injection Vulnerability Author: SadHaCkEr Data : 2010-04-12 InformatioN AUTHOR: SadHaCkEr Email: [email protected] ANY ONE IF U lucky U will Find Me Website: http://www.sadx.297m.com/ Forum : http://v4-team.net/cc...
ListProc 8.2.9 Catmail ULISTPROC_UMASK Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7533/info ListProc catmail has been reported prone to a buffer overflow vulnerability when handling a ULISTPROCUMASK environment variable of excessive length. The issue is likely due to a lack of sufficient bounds checkin...
UltraISO <= 9.3.3.2685 CCD/IMG Universal Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl UltraISO = 9.3.3.2685 CCD/IMG Universal Buffer Overflow Exploit ---------------------------------------------------------------- Discovered and Exploited by SkD [email protected] A nice exploit for this software that was just recently patched aft...
Nuked-Klan <= 1.7.6 - Multiple Vulnerabilities Exploit
No description provided by source. ?php / Name: Nuked-Klan = 1.7.6 Multiple Vulnerabilities Exploit Credits: Charles real F. charlesfolathotmail.fr URL: http://realn.free.fr/releases/46556 Date: 04-01-08 - Remote Code Execution - Remote File Upload - Admin Hash Extraction Remote Code Exec...
Destiny Media Player 1.61 0 (.m3u File) Local Buffer Overflow PoC
No description provided by source. !/usr/bin/perl -w Program : Destiny Media Player Version : 1.61.0 website : http://www.pirateradio.com/downloads/ Download : http://www.pirateradio.com/downloads/destinymp3.exe Type : .m3u File local Stack Overflow PoC EAX 61616161 ECX 00000001 EDX 014377A0 EBX...
Aviosoft Digital TV Player Professional 1.x (Direct Retn)
No description provided by source. Exploit Title: Aviosoft Digital TV Player Professional 1.x Direct Retn Date: 11-25-2012 Exploit Author: Nezim @nezimlufni Vendor Homepage: http://www.aviosoft.com/ Version: Aviosoft Digital TV Player Professional 1.x Tested on: Windows XP SP3 Reference :...