56796 matches found
Core News 2.0.1 Index.PHP Remote Code Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17067/info Core News is prone to a code-execution vulnerability. An attacker can exploit this issue to execute arbitrary malicious PHP code and execute it in the context of the webserver process. This may facilitate a...
ViewCVS 0.9.2 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4818/info ViewCVS does not filter HTML tags from certain URL parameters, making it prone to cross-site scripting attacks. An attacker may exploit this by constructing a malicious link with script code to a site running...
AM4SS 1.2 CSRF add admin Vulnerability
No description provided by source. Title : AM4SS Version 1.2 - CSRF add Admin Script : AM4SS Version 1.2 Language : Php Download : http://am4ss.org/am4ss.tar.gz Date : 2011/09/09 Version : 1.2 Dork : Powered by AM4SS Found : by red virus [email protected] Homepage : www.alm3refh.com html form name=r3dviru...
Joomla Component com_jepoll (pollid) SQL Injection Vulnerability
No description provided by source...
PHP 5.2.0 / PHP with PECL ZIP <= 1.8.3 zip:// URL Wrapper BoF Exploit
No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...
PHP-Nuke 6.x/7.x Public Message SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9615/info It has been reported that the 'public message' feature of PHP-Nuke is vulnerable to an SQL injection vulnerability. The issue is due to improper sanitization of user-defined parameters supplied to the module. As...
clearBudget 0.9.8 - Remote File Include Vulnerability
No description provided by source. Exploit Title: clearBudget v0.9.8 Remote File Include Date: 10/08/2010 Author: Offensive [email protected] Red-Stone On Community ! Software Link: http://www.clearbudget.net Version : v0.9.8 Tested on: Windows XP C0nditi0ns : PHP Version 4.x.x Expl0it Code :...
Audacity 1.2.6 (.gro File) Local Buffer Overflow PoC
No description provided by source. ----------------------------------------------------------- Author : Houssamix ----------------------------------------------------------- Audacity 1.2.6 .gro file Local buffer overflow POC download : http://audacity.sourceforge.net/ Audacity® is free, open sour...
PortailPHP 2.4 Index.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14474/info Portail PHP is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. The consequences of this attack...
Quantum Art QP7.Enterprise news.asp p_news_id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...
ActiveWeb Contentserver 5.6.2929 Picture_Real_Edit.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24894/info activeWeb contentserver is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...
Dolibarr ERP & CRM OS Command Injection
No description provided by source. Dolibarr ERP & CRM OS Command Injection =================================== 1. Advisory Information Date published: 2012-4-6 Vendors contacted: Dolibarr Release mode: Coordinated release 2. Vulnerability Information Class: Injection Remotely Exploitable: Yes...
WebPortal CMS <= 0.7.4 (code) Remote Code Execution Vulnerability
No description provided by source. WebPortal = 0.7.4 code Remote Code Execution Vulnerability Download : http://webportal.ivanoculmine.com/download.php?mid=14 Vuln : ? if $GETaction == execute eval stripslashes$POSTcode; ? POC : /index.php?m=admin&f=console&action=execute&code=id; passthruid;...
AfterLogic Pro and Lite 7.1.1.1 - Stored XSS
No description provided by source...
Joomla Component com_guide SQL Injection Vulnerability
No description provided by source. InformatioN Title : Joomla Component comguide SQL Injection Vulnerability Author : DevilZ TM By D3v1l Homepage : http://www.DEVILZTM.com Email : [email protected] Contact : [email protected] ExploiT Vulnerable File :...
PECL 3.0.x - Alternative PHP Cache Extension 'apc_search_paths()' Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28457/info PECL Alternative PHP Cache APC extension is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute...
Campsite 2.6.1 ShortURL.php g_documentRoot Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/23874/info Campsite is prone to multiple remote file-include vulnerabilities. Exploiting this issue allows remote attackers to execute code in the context of the webserver. This issue affects Campsite 2.6.1. Earlier...
ovidentia 5.6.x/5.8 approb.php babInstallPath Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...
SurgeMail 3.0 - Real CGI executables Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27992/info SurgeMail is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input. Successfully exploiting this issue allows remote attackers to execute arbitrary machin...
Civica Display.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20354/info Civica is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Castripper 2.50.70 - (.pls) stack buffer overflow DEP bypass exploit
No description provided by source. !/usr/bin/python Castripper 2.50.70 .pls stack buffer overflow w/ DEP bypass exploit Author: mrme - https://net-ninja.net - mrme AT corelan.be Download: http://www.mini-stream.net/castripper/ Tested on Wind0ws XP SP3 /noexecute=alwayson Greetz: Corelan Security...
MMGallery 1.55 Thumbs.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21281/info The mmgallery script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the...
Alsaplayer < 0.99.80-rc3 - Vorbis Input Local Buffer Overflow Exploit
No description provided by source. I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this: whats@debian:$...
HP LaserJet Pro P1606dn - Webadmin Password Reset
No description provided by source. !/usr/bin/python Exploit Title: HP LaserJet Pro P1606dn Webadmin password reset Date: 20.05.2013 Exploit Author: m3tamantra http://m3tamantra.wordpress.com/blog Vendor Homepage: http://www8.hp.com/de/de/products/printers/product-detail.html?oid=4110411 Firmware...
Social Engine 4.x (Music Plugin) Arbitrary File Upload Vulnerability
No description provided by source. Exploit Title: Social Engine 4.x Music Plugin Arbitrary File Upload Google Dork: inurl:user/auth/forgot Date: 22/12/2010 Author: MyDoom Moroccan Hacker Contact: [email protected] Software Link: http://http://www.socialengine.net Version: Social Engine 4.x...
Php-X-Links Script SQL Injection Vulnerabilitiy
No description provided by source. Exploit Title: Php-X-Links Script SQL Injection Vulnerabilitiy Google Dork: Powered by Php-X-Links Date: 1/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Version: All Version Category:: webapps Security Risk:: High Teste...
ProSSHD 1.2 20090726 - Buffer Overflow Exploit
No description provided by source. Author: S2 Crew Hungary Tested on: Windows XP SP2 EN CVE: - Registers: EAX 000003E4 ECX 0012ED44 EDX 7C90EB94 ntdll.KiFastSystemCallRet EBX 00000674 ESP 0012EFC0 ASCII BBBBBBBBBBBBBBBBBB... EBP 0012F3DC ASCII BBBBBBBBBBBBBBBBBB... ESI 7C81DD9A kernel32.CreatePip...
Skype Technologies Skype 1.5 NSRunAlertPanel Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20218/info Skype is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied input before using it in the format-specification argument of a formatted-printing functio...
Fastgraf's whois.cgi Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl whois.pl - Marco van Berkum - [email protected] homepage: http://ws.obit.nl - exploits Fastgraf's whois.cgi DO NOT EDIT THIS HEADER, else the bedbugs will bite Greets to sigmo for finding stupid POST examples Also greetings to DUCKEL YES YOU HAVE...
IndexScript <= 2.8 (show_cat.php cat_id) SQL Injection Vulnerability
No description provided by source. Site: http://indexscript.com Found By: xssvgamer Google Dork: allintext: This site is powered by IndexScript exploit: http://www.example.com/showcat.php?catid=-1 UNION ALL SELECT login,password FROM dirlogin / Blind SQL injection in indexscript.. Vul Code: $sql ...
Arab Portal System 2.0 online.php title Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17285/info ArabPortal System is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...
Tyger Bug Tracking System 1.1.3 ViewBugs.php s Variable SQL
No description provided by source. source: http://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails to sufficiently sanitize...
PalmOS 3/4 ICMP Flood Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7597/info A problem with PalmOS may result in a denial of service. It has been reported that PalmOS becomes unstable when flooded with ICMP ECHOREQUEST traffic. A remote attacker can trigger a device lockup condition or...
Surfboard httpd 1.1.9 - Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9299/info It has been reported that Surfboard httpd is prone to a remote buffer overflow condition that may allow an attacker to gain unauthorized access to a system running the vulnerable software. The issue presents...
sirang web-based d-control Multiple Vulnerabilities
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 8 0 day | | | | || / \ || | | | || ||// \/|/ ''' - Title : Sirang Web-Based D-Control Multiple Remote Vulnerabilities - Affected Version : = v6.0 - Vendor Site :...
Prozilla <= 1.3.7.4 (ftpsearch) Results Handling Buffer Overflow Exploit
No description provided by source. include stdio.h include string.h include stdlib.h define OVERFLOW 110+32 define SLEDSIZ 110 define RETADDR 0x806977a+SLEDSIZ/2 define OUTPUT AdvResults.asp / prozilla bug, found while auditing for gentoo bug 70090 [email protected] / / execve /bin/id / unsigned...
Bloq 0.5.4 admin.php page[path] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/20512/info Bloq is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to compromise the application and the...
WISE-FTP 4.1/5.5.8 FTP Client 'LIST' Command Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29844/info WISE-FTP is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this issue allows an attacker to write arbitrary files to location...
Kemana Directory 1.5.6 - kemana_admin_passwd Cookie User Password Hash Disclosure
No description provided by source. ? Kemana Directory 1.5.6 kemanaadminpasswd Cookie User Password Hash Disclosure Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easi...
HP Mercury Quality Center ActiveX Control ProgColor Buffer Overflow
No description provided by source. $Id: hpmqcprogcolor.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
WordPress <= 2.2.3 wp-admin/edit.php backup Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27123/info WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the brows...
W-Agora 4.1.6 a login.php loginuser Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/11283/info Multiple vulnerabilities are reported to affect the application. These issues arise due to insufficient sanitization of user-supplied data. A remote attacker may leverage these vulnerabilities to carry out SQL...
phpbb-auction 1.x auction_room.php ar Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/19179/info PHPBB-Auction is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. These vulnerabilities could permit remote...
CartWIZ 1.10 SearchResults.ASP IDCategory Argument SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13335/info CartWIZ is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input prior to utilizing the data in an SQL query. Successful exploitatio...
Reptile Web Server Reptile Web Server 20020105 Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9482/info Reptile has been reported prone to a remote denial of service vulnerability. It has been reported that this issue exists because the affected server does not time out on incomplete requests. A remote attacker ma...
ZipItFast 3.0 - (.ZIP) Heap Overflow Exploit
No description provided by source. !/usr/bin/perl +Exploit Title: ZipItFast v3.0 .ZIP File Heap Overflow Exploit +Date: 08\07\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.freewarefiles.com/ZipItFast---Zip-It-Free-Vprogram22803.html +Version: v3.0 +Tested On: WIN-XP SP3 Brazilian Portugue...
PhotoPost PHP 3.3.1 'cat' Parameter Cross Site Scripting and SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/35996/info PhotoPost PHP is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...
McAfee ePolicy Orchestrator 4.6.0-4.6.5 (ePowner) - Multiple Vulnerabilities
No description provided by source. Exploit Title: McAfee ePolicy Orchestrator 4.6.0-4.6.5 ePowner - Multiple vulnerabilities Date: 20 November 2012 Exploit Author: [email protected] a.k.a. [email protected] Vendor Homepage: http://www.mcafee.com/uk/products/epolicy-orchestrator.aspx Version...
dl_stats Multiple Vulnerabilities
No description provided by source. :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: |:: General Information |:: Advisory/Exploit Title = dlstats Multiple Vulnerabilitie |:: Author = Valentin Hoebel |:: Contact = [email protected] |:: |::...
Noah's Classifieds 1.3 Index.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14835/info Noah's Classifieds is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...