RedHat Linux 4.2,SGI IRIX <= 6.3,Solaris <= 2.6 mailx Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/393/info A buffer overrun exists in the /bin/mailx program. This program was originally developed as part of BSD, and is available on many Unix systems. By supplying a long, well crafted buffer as the username argument, a...

Commercial Interactive Media SCOOP! 2.3 category.asp Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/16015/info Commercial Interactive Media SCOOP! is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

phpFox <= 3.0.1 (ajax.php) Remote Command Execution Exploit

No description provided by source. ?php / ----------------------------------------------------------- phpFox = 3.0.1 ajax.php Remote Command Execution Exploit ----------------------------------------------------------- author.............: Egidio Romano aka EgiX mail...............:...

TPLINK WR740N/WR740ND - Multiple CSRF Vulnerabilities

No description provided by source. Exploit Title: TPLINK WR740N Multiple CSRF Vulnerabilities Date: 11/24/2013 Author: SaMaN @samanL33T Vendor Homepage: http://tplink.com Category: Hardware/Wireless Router Firmware Version: 3.16.6 Build 130529 Rel.47286n and below Tested on: WR740N/WR740ND May be...

Pilot Group eTraining lessons_login.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/35834/info PG eTraining is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the...

PHPSlideShow 0.9.9 Directory Parameter Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26575/info PHPSlideShow is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute arbitrary HTML or script code in a...

Snort 2.4.0 - 2.4.3 - Back Orifice Pre-Preprocessor Remote Exploit

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

Opera 7 Denial of Service Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/8066/info Opera has been reported to be prone to five denial of service vulnerabilities. These issues can be triggered when the browser attempts to interpret a document with malformed code. Exploitation could cause the...

GNU Mailman 2.1 'email' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6677/info A vulnerability has been discovered in GNU Mailman. It has been reported that Mailman is prone to cross site scripting attacks. This is due to insufficient santization of URI parameters. As a result, attackers m...

Gravity Board X 1.1 CSS Template Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14502/info Gravity Board X GBX is affected by an unauthorized access vulnerability. This issue is due to a failure in the application to perform proper access validation before granting access to privileged functions. An...

Softbiz B2B trading Marketplace Script buyers_subcategories SQL Injection Vulnerability

No description provided by source. Exploit Title: Softbiz B2B trading Marketplace Script buyerssubcategories SQL Injection Vulnerability Date :15/4/2010 Author : AnGrY BoY Contact: [email protected] & [email protected] Home : http://www.kurd-security.com Software Link : N/A Version : Softbiz B2B...

D-Link DIR615h OS Command Injection

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

Electronic Arts SnoopyCtrl ActiveX Control Buffer Overflow

No description provided by source. $Id: eacheckrequirements.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...

DATAC RealWin SCADA Server Buffer Overflow

No description provided by source. $Id: realwin.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Oracle WebCenter Sites (FatWire Content Server) Multiple Vulnerabilities

No description provided by source. SEC Consult Vulnerability Lab Security Advisory 20121017-2 ======================================================================= title: Multiple vulnerabilities in Oracle WebCenter Sites product: Oracle WebCenter Sites former FatWire Content Server vulnerable...

Maia Mailguard 1.0.2 Login.PHP Multiple Local File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/24770/info Maia Mailguard is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues may allow an unauthorized user to view files and execute...

Red Hat Apache 2.0.40 Directory Index Default Configuration Error

No description provided by source. source: http://www.securityfocus.com/bid/8898/info The Red Hat Apache configuration may allow an attacker to view directory listings. The problem is reported to present itself when an attacker issues an HTTP GET request to a vulnerable server containing '//'...

icblogger 2.0 - (YID) Remote SQL Injection Vulnerability

No description provided by source. Icblogger = YID Remote Blind SQL Injection - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Credit by | Chironex Fleckeri Mail | [email protected] - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Usage :...

SquirrelMail 1.x Email Header HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10439/info SquirrelMail is reported to be prone to an email header HTML injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied email header strings. An attacker can...

CoolPlayer 2.17 - 'CPLI_ReadTag_OGG()' Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27061/info CoolPlayer is prone a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. The issue occurs when handling specially crafted OGG files...

EQdkp <= 1.3.2 (listmembers.php rank) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w EQdkp = 1.3.2 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code listmembers.php: $sql = 'SELECT m., m.memberearned-m.memberspent+m.memberadjustment AS...

phpList 2.10.17 Remote SQL Injection and XSS Vulnerability

No description provided by source. phpList 2.10.17 Remote SQL Injection and XSS Vulnerability Vendor: phpList Ltd Product web page: http://www.phplist.com Affected version: 2.10.17 Summary: phplist is the world's most popular open source email campaign manager. phplist is free to download, instal...

Xine 0.9/1.0 Playlist Handling Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17579/info The xine package is reported prone to a remote format-string vulnerability. This issue arises when the application handles specially crafted playlist files. An attacker can exploit this vulnerability by craftin...

VWar 1.x war.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/19327/info Vwar is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. These issues occur because the application fails to properly sanitize user-supplied input. A...

MS Windows IIS 5.0 - 5.1 - Remote Denial of Service Exploit

No description provided by source. / Microsoft IIS versions 5.0 and 5.1 remote denial of service exploit that makes use of the vulnerability recently published by SPI dynamics Published on 31.05.2003 / include windows.h include winsock.h include stdio.h pragma comment lib,ws232 void graphitte...

ABBS Electronic Flashcards 2.1 - Buffer Overflow Exploit (MSF)

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Savant Webserver 3.1 - Denial of Service Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/8243/info Savant web server has been reported prone to multiple denial of service vulnerabilities. Reportedly, a remote attacker may invoke many HTTP requests in succession, against the Savant web server and cause the...

EFS Easy Address Book Web Server <= 1.2 - Remote File Stream Exploit

No description provided by source. / ========================================================================== 0-day Alternative File Stream Exploit for EFS Easy Address Book Web Server =========================================================================== EFS' Easy Address Book Web Server ...

SiteBuilder-FX Top.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18756/info SiteBuilder-FX is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an...

Xivo 1.2 Arbitrary File Download

No description provided by source. Xivo 1.2 Arbitrary File Download under root privileges =============================================================== Date: 6/11/2012 Exploit Author: Mr.Un1k0d3r Vendor Homepage: https://wiki.xivo.fr Software Link:...

LEADTOOLS 11.5.0.9 - (ltisi11n.ocx) DriverName() Access Violation DoS

No description provided by source. html Test Exploit Page object classid='clsid:00110050-B1BA-11CE-ABC6-F5B2E79D9E3F' id='target' //object script language='vbscript' targetFile = C:\Program Files\Rational\common\ltisi11n.ocx prototype = Property Let DriverName As String memberName = DriverName...

Slackware Linux 3.1/3.2 color_xterm Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/369/info In Slackware Linux 3.1 and 3.2, the version of color xterm included is vulnerable to a buffer overflow attack that allows for a local user to gain root access. / exploit for colorxterm, modified by zgv / / origin...

Quick Classifieds 1.0 - controlcenter/sign-up.php3 DOCUMENT_ROOT Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the applicati...

EdrawSoft Office Viewer Component ActiveX 5.6 (officeviewermme.ocx) BoF PoC

No description provided by source. EdrawSoft Office Viewer Component ActiveX 5.6 officeviewermme.ocx BoF PoC Vendor: EdrawSoft Product web page: http://www.edrawsoft.com Affected version: 5.6.5781 Summary: Edraw Office Viewer Component contains a standard ActiveX control that acts as an ActiveX...

E-Xoops 1.0.5/1.0.8 myalbum/ratephoto.php lid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

CCLeague Pro <= 1.2 Insecure Cookie Authentication Vulnerability

No description provided by source. -+================================================================================+- -+ CCLeague Pro = 1.2 Insecure Cookie Authentication Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZ...

surgemail 6.0a4 - Stored XSS

No description provided by source. !/usr/bin/python ''' Author: loneferret of Offensive Security Product: SurgeMail Version: 6.0a4 Vendor Site: http://www.netwinsite.com Software Download: http://netwinsite.com/download.htm Timeline: 29 May 2012: Vulnerability reported to CERT 30 May 2012: Respon...

Dan Bernstein QMail 1.0 3 RCPT Denial of Service Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/2237/info qmail is an e-mail server package developed by Dan Bernstein. The qmail smtp server is subject to a denial of service. By specifying a large number of addresses in the recipient field RCPT, qmail will stop...

Lan Messenger sending PM Buffer Overflow(UNICODE) - Overwrite SEH

No description provided by source. Exploit Title: Lan Messenger Version 1.2 Buffer Overflow vulnerability - UNICODEPOC Date: 09-05-2013 Exploit Author: ariarat Vendor Homepage: http://lmadhavan.com Software Link: http://lmadhavan.com/software/archive/lanmsg12.zip Version: 1.2 & may be old version...

Hylafax Hylafax 4.0.2 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/765/info Hylafax is a popular fax server software package designed to run on multiple UNIX operating systems. Some versions of Hylafax ship with a vulnerable sub program 'faxalter'. This program is installed SUID UUCP and...

SumatraPDF 1.1 - Denial of Service PoC

No description provided by source. Exploit Title: SumatraPDF v1.1 Denial-of-Service Date: June, 14, 2010 Author: Matthew Bergin Software Link: blog.kowalczyk.info/software/sumatrapdf Version: 1.1 Tested on: Windows XP Home SP3 Code was generated utilizing a custom fuzzer, PoC creates an Access...

Scriptegrator plugin for Joomla! 1.5 0day File Inclusion Vulnerability

No description provided by source. Exploit Title: Scriptegrator plugin for Joomla! 1.5 0day File Inclusion Originally Reported: Early 2011 Independently Discovered: 20 April 2011 Released: 13 June 2011 Author: jdc Software Link:...

Ipswitch IMail 5.0.8/6.0/6.1 IMonitor status.cgi DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/914/info IMail includes a service called IMail Monitor which is used for local and remote performance measuring and diagnostics. It includes a small webserver operating on port 8181 to support web-based monitoring. One of...

VideoLAN Client (VLC) Win32 smb:// URI Buffer Overflow

No description provided by source. $Id: vlcsmburi.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

vCard 2.9 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18122/info vCard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

Joomla JV Comment Extension 3.0.2 (index.php, id param) - SQL Injection

No description provided by source...

TuttoPHP Morris Guestbook 'view.php' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36415/info Morris Guestbook is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser o...

Win32 Mini HardCode WinExec&ExitProcess Shellcode 16 bytes

No description provided by source. Title: Win32 Mini HardCode WinExec&ExitProcess Shellcode 16 bytes ;Test on xpsp2cn,no zero in shellcode,it will run write.exe ;--------------------------------------------- push 7C808E9DH ;write ;68 xx xx xx xx ;program string in memory push 7C81CAA2H ;exitproce...

redaxo cms 4.2.1 - Remote File Inclusion Vulnerability

No description provided by source...

Microsoft IIS 5.0 False Content-Length Field DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3667/info Microsoft IIS 5.0 may be prone to a denial of service condition when sent a specially crafted malformed HTTP GET header. If an IIS 5.0 web server is sent a crafted HTTP GET request which contains a falsified and...