phpbb-auction 1.x auction_room.php ar Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/19179/info PHPBB-Auction is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. These vulnerabilities could permit remote...

CartWIZ 1.10 SearchResults.ASP IDCategory Argument SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13335/info CartWIZ is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input prior to utilizing the data in an SQL query. Successful exploitatio...

Reptile Web Server Reptile Web Server 20020105 Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9482/info Reptile has been reported prone to a remote denial of service vulnerability. It has been reported that this issue exists because the affected server does not time out on incomplete requests. A remote attacker ma...

ZipItFast 3.0 - (.ZIP) Heap Overflow Exploit

No description provided by source. !/usr/bin/perl +Exploit Title: ZipItFast v3.0 .ZIP File Heap Overflow Exploit +Date: 08\07\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.freewarefiles.com/ZipItFast---Zip-It-Free-Vprogram22803.html +Version: v3.0 +Tested On: WIN-XP SP3 Brazilian Portugue...

PhotoPost PHP 3.3.1 'cat' Parameter Cross Site Scripting and SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/35996/info PhotoPost PHP is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

McAfee ePolicy Orchestrator 4.6.0-4.6.5 (ePowner) - Multiple Vulnerabilities

No description provided by source. Exploit Title: McAfee ePolicy Orchestrator 4.6.0-4.6.5 ePowner - Multiple vulnerabilities Date: 20 November 2012 Exploit Author: [email protected] a.k.a. [email protected] Vendor Homepage: http://www.mcafee.com/uk/products/epolicy-orchestrator.aspx Version...

dl_stats Multiple Vulnerabilities

No description provided by source. :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: |:: General Information |:: Advisory/Exploit Title = dlstats Multiple Vulnerabilitie |:: Author = Valentin Hoebel |:: Contact = [email protected] |:: |::...

Noah's Classifieds 1.3 Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14835/info Noah's Classifieds is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Qualcomm Eudora 6.0.1/6.1.1 Attachment LaunchProtect Warning Bypass Weakness (2)

No description provided by source. source: http://www.securityfocus.com/bid/9101/info A problem has been identified in the implementation of LaunchProtect within Eudora. Because of this, it may be possible to trick users into performing dangerous actions. May 21, 2004 - Eudora version 6.1.1 has...

Trend Micro InterScan VirusWall for Windows NT 3.51 Configurations Modification Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2859/info A remote user could utilize the administrator functions of Interscan Viruswall without providing authentication credentials. This may allow the user to make configuration changes when submitting specially crafte...

Myuploader >> upload shell exploit

No description provided by source...

ACDSee PRO 5.1 CUR Image Processing Heap Overflow

No description provided by source. Application: ACDSee PRO CUR Image Processing Heap Overflow Platforms: Windows Secunia: SA48804 PRL: 2012-19 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...

Photodex ProShow Gold/Producer 5.0.3310 & 6.0.3410 - ScsiAccess Local Privilege Escalation

No description provided by source. Exploit-DB Note: Vuln still in 6.0.3410 as well as 'Photodex ProShow Gold' Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Incorrect Default...

Velhost Uploader Script 1.2 - Local File Inclusion Vulnerability

No description provided by source. =============================================================== velhost uploader script v1.2 Local File Inclusion Vulnerability =============================================================== + velhost uploader script v1.2 Local File Inclusion Vulnerability...

PHP <= 5.2.3 snmpget() object id Local Buffer Overflow Exploit (EDI)

No description provided by source. ?php / Inphex reference -http://milw0rm.com/exploits/4204 317 Bytes , Windows Command Shell Bind TCP Inline , Architecture x86 , Windows TinyXP - vm. GET /script.php HTTP/1.1\n telnet 192.168.2.32 4444 Microsoft Windows XP Version 5.1.2600 C Copyright 1985-2001...

Campsite 2.6.1 Country.php g_documentRoot Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/23874/info Campsite is prone to multiple remote file-include vulnerabilities. Exploiting this issue allows remote attackers to execute code in the context of the webserver. This issue affects Campsite 2.6.1. Earlier...

Solaris 10, 11 Telnet - Remote Authentication Bypass

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

Cerbere Proxy Server 1.2 Long Host Header Field Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11085/info Cerbère Proxy server is reported prone to a remote denial of service vulnerability. This issue presents itself when a remote attacker sends a malformed HTTP GET request to the server. A remote attacker may caus...

Postfix <= 2.6-20080814 - (symlink) Local Privilege Escalation Exploit

No description provided by source. !/bin/sh rspocfix.sh PoC for Postfix local root vulnerability: CVE-2008-2936 by Roman Medina-Heigl Hernandez a.k.a. RoMaNSoFt [email protected] Tested: Ubuntu / Debian Madrid, 30.Aug.2008 Config writabledir=/tmp spooldir=/var/mail Use postconf mailspooldirectory...

GNU Ffingerd 1.19 Username Validity Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1841/info A vulnerability in Ffingerd version 1.19, the popular remote user-information server, which allows a remote user to determine whether or not a given username exists on the system. Normally, if a user has decline...

subrion cms 2.2.1 - Multiple Vulnerabilities

No description provided by source...

Multiple Vendor - TLS Protocol Session Renegotiation Security Vulnerability

No description provided by source. include errno.h include stdio.h include string.h include unistd.h include sys/time.h include sys/socket.h include netinet/in.h include arpa/inet.h include netdb.h include openssl/ssl.h include openssl/ssl3.h void failconst char proc perrorproc; exit1; void...

ExpressionEngine 1.6 Avtaar Name HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34193/info ExpressionEngine is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and...

W-Agora 4.0 - create_user.php bn_dir_default Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/28366/info w-Agora is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...

PHPizabi 0.8 'notepad_body' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34223/info PHPizabi is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

AsteriDex <= 3.0 - Remote (callboth.php) Remote Code Execution Exploit

No description provided by source. Begin exploit !/bin/bash echo Asteridex PoC Exploit callboth.php vulnerability echo By Carl Livitt / Hoku Security / June 2007 echo This has to be a a valid SIP address, and b must answer when dialled. The exploit will fail without these conditions being met...

Asterisk <= 1.2.15 / 1.4.0 pre-auth Remote Denial of Service Exploit

No description provided by source. / this will cause asterisk to segfault, the bug that this exploits has been patched in release 1.2.16 & 1.4.1 CLI Program received signal SIGSEGV, Segmentation fault. Switching to Thread 1082719152 LWP 2510 registerverify p=0x81cf600, sin=0x4088e750,...

Yerba SACphp <= 6.3 (mod) Local File Inclusion Exploit

No description provided by source. ! /usr/bin/perl -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Yerba SACphp = 6.3 / Local File Inclusion Exploit -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Program: Yerba SACphp Version: = 6.3 File affected: index.php Download:...

Korean GHBoard FlashUpload Component download.jsp name Parameter Arbitrary File Access

No description provided by source. source: http://www.securityfocus.com/bid/26182/info GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process...

Microsoft WordPerfect Converter Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8538/info The Microsoft WordPerfect Converter, which ships with Office and a number of other products, is prone to a buffer overrun vulnerability. This could result in execution of malicious, attacker-supplied code when a...

FlexWATCH Network Camera Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18936/info FlexWATCH Network Camera is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

LinksCaffe 2.0/3.0 Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19763/info LinksCaffe is prone to an authentication-bypass vulnerability because of a lack of required authentication on the application's administrative script. An attacker can use administrative functions simply by...

WordPress IP-Logger Plugin <= 3.0 - SQL Injection Vulnerability

No description provided by source. Exploit Title: WordPress IP-Logger plugin = 3.0 SQL Injection Vulnerability Date: 2011-08-16 Author: Miroslav Stampar miroslav.stamparatgmail.com @stamparm Software Link: http://downloads.wordpress.org/plugin/ip-logger.3.0.zip Version: 3.0 tested --- PoC ---...

Flip 3.0 'config.php' Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30312/info Flip is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this issue to execute malicious PHP code in the context of the webserve...

Comdev ECommerce 3.0 Config.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14478/info Comdev eCommerce is prone to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

PHP <= 3.0.13 'safe_mode' Failure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/911/info PHP Version 3.0 is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to allow web...

Clever Copy 3.0 - 'postview.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28437/info Clever Copy is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

Ecommerce Corporation Online Store Kit 3.0 More.PHP id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/9676/info Multiple vulnerabilities have been identified in the software due to improper sanitization of user-supplied input. Successful exploitation of these issues could allow an attacker to carry out cross-site scriptin...

OpenASP <= 3.0 - Blind SQL Injection Vulnerability

No description provided by source. / OpenASP = 3.0 Blind SQL Injection Vulnerability ----------------------------------------------------- by athos - stakerathotmaildotit thanks XaDoS,anyway i've found another sql injection http://openasp.it -----------------------------------------------------...

Aleris Web Publishing Server 3.0 Page.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26207/info Aleris Web Publishing Server is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacke...

CesarFTP 0.99 g Remote CWD Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7950/info A vulnerability has been reported for CesarFTP. Reportedly, an attacker may crash a target server by supplying excessive data as the argument to the 'CWD' command. This may result in the server hanging,...

Business Classified Listing SQL Injection Vulnerability

No description provided by source. Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:Business Classified Listing SQl Vulnerable Vendor url:http://www.webvolume.co.uk Version:8 Price:n/a Published: 2010-06-15 Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue, S1ayer,d3c0d3r,KD and to...

NetcPlus BrowseGate 2.80 DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1702/info NetcPlus BrowseGate 2.80 will crash as the result of an invalid read error if a number of character strings consisting of 8 KB are inserted into GET request arguments through port 80. For example: GET / HTTP/1.0...

mobilelib gold 3.0 - (auth bypass/sql) Multiple Vulnerabilities

No description provided by source. ------------------Mobilelib Gold v3 Auth Bypass/SQL Multiple Remote Vulnerabilities---------------------------- ---------------------------------------------------------------------------------------------------------------- Script : Mobilelib Gold version : 3.0...

xoops incontent module 3.0 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12406/info Xoops Incontent module is reported prone to a directory traversal vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input. A malicious user could issue a reques...

betaparticle blog 2.0/3.0 upload.asp Unauthenticated File Upload

No description provided by source. source: http://www.securityfocus.com/bid/12861/info betaparticle blog is reported prone to multiple vulnerabilities. The following individual issues are reported: It is reported that betaparticle blog fails to sufficiently secure the authentication credential...

WespaJuris <= 3.0 - Multiple Vulnerabilities

No description provided by source...

profitcode software payprocart 3.0 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13006/info ProfitCode Software PayProCart may allow a remote attacker to carry out directory traversal attacks. It is reported that this issue can be exploited by issuing a specially crafted HTTP GET request and supplying...

Power System Of Article Management 3.0 - (DD/XSS) Vulnerabilities

No description provided by source. --------------------------------------------------------- Portal Name: Power System Of Article Management Version : 3.0 Author : PouyaServer , [email protected] Vulnerability : DD/XSS --------------------------------------------------------- DD:...

F-Secure Policy Manager 5.11 FSMSH.DLL CGI Application Installation Path Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11869/info F-Secure Policy Manager includes a CGI application named 'fsmsh.dll'. By supplying unexpected input as an argument to the 'fsmsh.dll' application the vulnerable software will return an error message that includ...