56796 matches found
ProjectApp 3.3 cat.asp keywords Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16011/info ProjectApp is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
Xomol CMS <= 1.2 Login Bypass / LFI Vulnerabilities
No description provided by source. '/ -.- -------------oOO------OOo------------ | Xomol CMS v1 Login Bypass & LFI | | coded by DNX | ---------------------------------------- ! Discovered.: DNX ! Vendor.....: http://www.xomol.net ! Detected...: 12.05.2008 ! Reported...: 13.05.2008 didn't work: hos...
TugZip 3.5 Zip File Buffer Overflow
No description provided by source. !/usr/bin/perl Software : TugZip 3.5 .zip Author : Lincoln Assisted by : corelanc0d3r OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH Greetz to : Corelan Security Team http://www.corelan.be:8800/index.php/security/corelan-team-members/ Script...
Caedo HTTPd Server 0.5.1 ALPHA - Remote File Download
No description provided by source. !/usr/bin/perl use LWP::Simple; Caedo HTTPd Server v 0.5.1 ALPHA Remote File Download Exploit Author : Zer0 Thunder if @ARGV 3 print\r\n; printCaedo HTTPd Server Remote File Download Exploit\r\n; printVuln Found and Exploited by Zer0 Thunder\r\n; print;...
Microsoft SQL Server sp_replwritetovarbin Memory Corruption via SQL Injection
No description provided by source. $Id: ms09004spreplwritetovarbinsqli.rb 11730 2011-02-08 23:31:44Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensi...
Sun Solaris 2.5.1/2.6/7.0/8/9 Wall Spoofed Message Origin Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6509/info Solaris is the freely available UNIX Operating System variant distributed by Sun Microsystems. The wall client packaged with Solaris makes assumptions about a user's environment when the client is executed. The...
k_shoutbox <= 4.4 - Remote File Inclusion Vulnerability
No description provided by source. Kurdish Security ShoutBox Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : ShoutBox Site : http://www.knusperleicht.at Code : // // INCLUDE PATH define'SBINCLUDEPATH',...
AutoIndex PHP Script 2.2.2/2.2.3 Index.PHP Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26410/info AutoIndex PHP Script is prone to a remote denial-of-service vulnerability because the application fails to properly handle unexpected input. Successfully exploiting this issue allows remote attackers to consume...
PHP Content Architect 0.9 pre 1.2 MFA_Theme.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23843/info PHP Content Architect is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and...
Alt-N MDaemon 2.8.5 0 WebConfig Overflow DoS Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/820/info The Mdaemon mail server for Windows includes a small web server for web-based remote administration. This webserver is vulnerable due to an unchecked buffer that handles incoming GET requests. An abnormally large...
Webbler CMS 3.1.3 Mail A Friend Open Email Relay Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25045/info The 'webbler' is prone to an open-email-relay vulnerability. An attacker may leverage the issue to use webservers that are hosting the vulnerable software to send arbitrary unsolicited bulk email. Attackers may...
TugZip 3.5 Zip File Parsing Buffer Overflow Vulnerability
No description provided by source. $Id: tugzip.rb 13868 2011-10-11 03:30:14Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
IPSwitch IMail 6.x/7.0/7.1 Web Messaging HTTP Get Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5323/info IMail is a commercial email server software package distributed and maintained by Ipswitch, Incorporated. IMail is available for Microsoft Operating Systems. The web messaging server is vulnerable to a buffer...
Gallarific - Multiple Script Direct Request Authentication Bypass
No description provided by source. source: http://www.securityfocus.com/bid/28163/info Gallarific is prone to a cross-site scripting vulnerability and multiple authentication-bypass vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an...
Nokia N97 m3u Playlist Crash PoC
No description provided by source. !/usr/bin/perl Title : Nokia N97 PlayList M3U Crash PoC Author : KedAns-Dz E-mail : [email protected] Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : hardware Impact : Crashs & Reboot Some Times Rebooted Tested on...
Thomson Wireless VoIP Cable Modem Auth Bypass
No description provided by source. Exploit Title: Thomson Wireless VoIP Cable Modem Auth Bypass Date: February 22, 2011 Authors: Glafkos Charalambous, George Nicolaou Product: TWG850-4 Wireless VoIP Cable Modem Software Version: ST9A.01.06 Severity: High Other Vulnerabilities: Unauthenticated...
Secure Computing e.iD Authenticator for Palm 2.0 PIN Brute-Force Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2105/info Summary: An attacker that obtains access to the sceiddb.pdb file, part of Secure Computing's e.iD Authenticator for Palm, can determine the user's PIN. Problem Description: Secure Computing's SafeWord is a syste...
JBS 2.0 / JBSX - Administration panel Bypass and File Upload Vulnerability
No description provided by source. Administration panel bypass and Malicious File Upload Vulnerability JBS v2.0 JBSX and other Jiro's Products Google Dork: inurl:/files/redirect.asp Go to url files/login.asp admin 'or' '=' password 'or' '=' H4ckers may upload malicious files by using upload panel...
Adobe Flash Player Object Type Confusion
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...
VWar <= 1.5.0 R15 - (mvcw.php) Remote File Inclusion Vulnerability
No description provided by source. '/ -.- --------------------oOO------OOo-------------------- | VWar = v1.5.0 R15 mvcw.php Remote File Inclusion | | coded by DNX | ------------------------------------------------------- ! Discovered: DNX ! Vendor: http://www.vwar.de ! Detected: 26.02.2007 !...
FlashBB <= 1.1.8 (phpbb_root_path) Remote File Include Exploit
No description provided by source. !/usr/bin/perl TUFaT FlashBB = 1.1.5 phpbbrootpath Remote File Include Exploit Bugs found & code By h4ntu aka TeloGanyong base on http://www.securityfocus.com/bid/18456/ http://h4ntu.com c 2006 usage: perl flashBB.pl target cmd shell location cmd shell variable...
open auto classifieds <= 1.5.9 - Multiple Vulnerabilities
No description provided by source. MorningStar Security - Advisory http://www.morningstarsecurity.com/ Multiple security issues in Open Auto Classifieds 1. Advisory Information ---------------------------------------------------------------------------------------------- Title: Multiple security...
PSO Proxy 0.91 - Stack Buffer Overflow
No description provided by source. $Id: psoproxy91overflow.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
OpenFAQ 0.4 Validate.PHP HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17860/info OpenFAQ is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script cod...
Winace UnAce 1.x ACE Archive Remote Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12628/info A remotely exploitable client-side directory-traversal vulnerability affects Winace unace. The application fails to properly sanitize file and directory names contained within malicious ACE format archives. An...
Internet Security Systems Protocol Analysis Module ICQ Parsing Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9913/info It has been reported that the Internet Security Systems ISS Protocol Analysis Module is prone to a remote buffer overflow vulnerability when parsing the ICQ protocol. This issue exists due to insufficient bounds...
WinFTP Server 1.6 - Denial of Service Exploit
No description provided by source. !/usr/local/bin/perl -w WinFTP server ver 1.6 D.o.S Exploit Discovered,exploited by KaGra Tested on WinXP SP1 English version Sending 40 times a username and a buffer of 1500 bytes as pass,will crash the server,as soon as is not minimized in Target computer.If h...
reos 2.0.5 - Multiple Vulnerabilities
No description provided by source. ===================================== Vulnerability ID: HTB22807 Reference: http://www.htbridge.ch/advisory/sqlinjectioninreos1.html Product: ReOS Vendor: IT ELAZOS S.L. http://reos.elazos.com/ Vulnerable Version: 2.0.5 Vendor Notification: 20 January 2011...
Windows RSH daemon <= 1.8 - Remote Buffer Overflow Exploit
No description provided by source. Windows RSH daemon = 1.8 Remote Buffer Overflow Exploit Exploit-DB mirror: http://www.exploit-db.com/sploits/2008-prdelka-vs-MS-rshd.tar.gz milw0rm.com 2008-01-21...
Yahoo Messenger 5.5 - Remote Exploit (DSR-ducky.c)
No description provided by source. / --- Remote yahoo Messenger V5.5 exploiter on Windows XP --- Dtors Security Research DSR Code by: Rave The buffer looks like this |-----| Fillup x offsetJMP 0x3EIPNOPSSHELLCODE ^^ / include windows.h include stdio.h include stdlib.h include string.h include...
Wordpress Plugin Is-human <= 1.4.2- Remote Command Execution Vulnerability
No description provided by source. Exploit Title: is-human 1.4.2 and prior Worpdress plugin. Date: 16.05.2011 Author: neworder www.neworder-ind.net Software Link: http://wordpress.org/extend/plugins/is-human/ Version: 1.4.2 Tested on: Linux Platform The vulnerability exists in /is-human/engine.ph...
PHPX 3.x admin/news.php CSRF Arbitrary Command Execution
No description provided by source. source: http://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative command...
Fujitsu Chocoa 1.0 beta7R "Topic" Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/573/info The Chocoa IRC client has an unchecked buffer in the code that processes channel topics. If the server returns a topic that overwrites the client's buffer and contains exploit code arbitrary commands can be run o...
Radasm 2.2.1.6 - (.rap ) Local Buffer Overflow PoC
No description provided by source. /Radasm .rap file local buffer overflow POC I'll be back in a few hours with the exploit. The vuln is in the filename field. snip Files...1=AVP OVERFLOW... snip / includestdio.h void genrandomchar,const int; void printchar; unsigned int getFsizeFILE,char; void...
ESCPUtil 1.15.2 2 Local Printer Name Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6658/info It has been reported that a buffer overflow in escputil exists. When supplied with excessively long arguments, it is possible to overwrite stack memory. escputil is reportedly installed setgid 'sys' on Mandrake...
Comdev ECommerce 3.0 Config.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14478/info Comdev eCommerce is prone to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute...
Zeroboard 4.1 PHP Include File Arbitrary Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5028/info Zeroboard is a PHP web board package available for the Linux and Unix platforms. Under some circumstances, it may be possible to include arbitrary PHP files. The head.php file does not sufficiently check or...
Comdev eCommerce 3.0 WCE.Download.PHP Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14479/info Comdev eCommerce is prone to a directory traversal vulnerability. A remote unauthorized user can disclose the contents of arbitrary local files through the use of directory traversal strings '../' relative to t...
Pars4U Videosharing 1.0 - XSS / Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print \n; print VIVA ISLAME VIVA ISLAME \n; print VIVA ISLAME VIVA ISLAME \n; print \n; print Pars4u Videosharing V1 Blind SQL Injection Exploit \n; print \n; print categoriesportal.php catid \n; pri...
PHPCommunityCalendar 4.0 - Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/14763/info phpCommunityCalendar is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before being used in SQL queries. Successful exploitation...
ZeroBoard 4.1 - Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12596/info ZeroBoard is reported prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user. This may...
phpldapadmin 0.9.8 copy_form.php dn Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17643/info PHPLDAPAdmin is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to execute...
promise webpam 2.2.0.13 - Multiple Vulnerabilities
No description provided by source. Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use, designed to simplif...
My Little Forum <= 1.5 (searchstring) SQL Injection Exploit
No description provided by source. ?php mlfexpl.php My Little Forum 1.5 possibly prior versions SQL Injection / MD5 password hash disclosure poc exploit with proxy support by rgod site: http://rgod.altervista.org make these changes in php.ini if you have troubles to launch this script:...
SaralBlog 1.0 - Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/16306/info saralblog is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...
asp talk (sql/css) Multiple Vulnerabilities
No description provided by source. 000000 00000 0000 0000 000 00 000000 0000000 0000 000000 00000 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00000 0 0 0 0 0 0 0 0 00000 0000 0 0 0 0 00000 0 0 0 0 0 0 0 0 0 0 000 0 0 0 ...
DESlock+ <= 3.2.6 DLMFENC.sys Local Kernel ring0 link list zero PoC
No description provided by source. / deslock-list-zero.c Copyright c 2008 by [email protected] DESlock+ = 3.2.6 local kernel ring0 link list zero POC by mu-b - Fri 21 Dec 2007 - Tested on: DLMFENC.sys 1.0.0.26 - Private Source Code -DO NOT DISTRIBUTE - http://www.digit-labs.org/ -- Digit-Labs...
Invision Power Board 2.1 <= 2.1.6 - Remote SQL Injection Exploit (2)
No description provided by source. !/usr/bin/perl use LWP::UserAgent; $ua = LWP::UserAgent-new; &header; if @ARGV 2 &info; exit; $server = $ARGV0; $dir = $ARGV1; print + SERVER $server\r\n; print + DIR $dir\r\n; Step 1, detecting vulnerability print 1 Testing forum vulnerability...; $q = UNION...
Enterpriser16 Load Balancer 7.1 - Multiple XSS Vulnerabilities
No description provided by source...
php-revista <= 1.1.2 - Multiple Remote SQL Injection Vulnerabilities
No description provided by source. php-revista = 1.1.2 Remote SQL Injection Exploit Found by & contact : Cold z3ro , [email protected] script : http://downloads.sourceforge.net/php-revista/revista-1.1.2.tgz?modtime=1025654400&bigmirror=0 Exploits :...