56796 matches found
RealNetworks Multiple Products Multiple Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/17202/info Various RealNetworks products are prone to multiple buffer-overflow vulnerabilities. These issues can result in memory corruption and facilitate arbitrary code execution. A successful attack can allow remote...
4CMS SQL Injection and Local File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/34355/info 4CMS is prone to multiple SQL-injection vulnerabilities and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting the SQL-injection issues could allow an...
RealPlayer <= 10.5 (6.0.12.1040-1348) - SWF Buffer Overflow PoC
No description provided by source. !/usr/bin/perl RealPlayer: Buffer overflow vulnerability / PoC CVE-2006-0323 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0323 RealNetworks Advisory http://service.real.com/realplayer/security/03162006player/en/ Federico L. Bossi Bonin...
CubeCart 3.x - Remote File Upload Vulnerability
No description provided by source...
Python < 2.5.2 Imageop Module - 'imageop.crop()' Buffer Overflow Vulnerability
No description provided by source. Python's 'imageop' module is prone to a buffer-overflow vulnerability. Successful exploits may allow attackers to execute arbitrary code in the context of applications using the vulnerable Python module. This may result in a compromise of the underlying system...
phpcksec 0.2 'phpcksec.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/32890/info The 'phpcksec' script is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected...
Opera 6.0.1/6.0.2 Arbitrary File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4834/info A vulnerability has been reported in Opera 6.01/6.02. The vulnerability is related to handling of the 'file' HTML input-type. It is possible for a server to set the file value, while fooling Opera into thinking ...
WebPortal CMS <= 0.7.4 (fckeditor) Arbitrary File Upload Vulnerability
No description provided by source. S.W.A.T. Title: WebPortal = 0.7.4 fckeditor Remote Arbitrary File Upload Vendor: http://webportal.ivanoculmine.com/download.php?mid=14 Discover by : S.W.A.T. [email protected] Impact: Medium Fix: Disable It In The Config File ; Site: wWw.SvvaT.IR - Exploit:...
BestWebApp Dating Site login_form.asp msg Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/21158/info BestWebApp Dating Site is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker...
CyberStrong EShop 4.2 10browse.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14112/info CyberStrong eShop is prone to an SQL injection vulnerability. As a result, the attacker may modify the structure and logic of an SQL query that is made by the application. The attacker may accomplish this by...
Apple Mac OS X 10 nidump Password File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2953/info A vulnerability exists in all versions of Apple MacOS X. It has been found to contain a vulnerability which could allow disclosure of passwords and other sensitive system information. nidump is a Mac OS X system...
sX-Shop (view_image.php) SQL Injection Vulnerability
No description provided by source. sX-Shop / viewimage.php SQL Injection Author : secret - [email protected] Homepage : http://swissfaking.net/ Date : 05 August, 2010 / // // // \ / // / / // \ / | / |/ / \ \ / / / / / , // / / / / / / , // | / / //// ///||// //////||// ||//|/ // sX-Shop ...
OpenMPT <= 1.17.02.43 Multiple Remote Buffer Overflow Exploit PoC
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include stdint.h ifdef WIN32 include winsock.h // htonl else include netinet/in.h endif define VER 0.1 define HEAPOVERSZ 512 define ITPHEAPOVERSZ 150000 define ALLOCSAMPLESZ 39 & 7 + 16 defi...
GNU GNATS 3.113 .1_6 Queue-PR Database Command Line Option Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8232/info A stack overflow vulnerability has been reported for the queue-pr utility of GNATS. The vulnerability occurs due to insufficient checks performed on the arguments to the '-d' commandline option. Successful...
Joomla Component Seyret (com_seyret) - Local File Inclusion Vulnerability
No description provided by source. Exploit Title: Joomla Component Seyret comseyret Date: 2010-06-26 Author: mlk Software Link: null Version: null Tested on: Linux,BSD and windows CVE : null Code : on paper Joomla Component Seyret comseyret - Local File Inclusion Vulnerability + Discovered by : m...
TrackerCam PHP Argument Buffer Overflow
No description provided by source. $Id: trackercamphpargoverflow.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
Apple Mac OS X Safari <= 2.0.3 (417.9.2) Multiple Vulnerabilities PoC
No description provided by source. !--- Safari 2.0.3 417.9.2 CELLSPACING Issue.. Discovered by: Tom Ferris tommyatsecurity-protocolsdotcom Tested on: Mac OS X 10.4.5 using Safari 03/16/2006 Security-Protocols.com Advisory: http://www.security-protocols.com/advisory/sp-xxx This program is free...
Visual MP3 Splitter & Joiner 6.1 - Denial of Service Vulnerability
No description provided by source. Exploit Title: Visual MP3 Splitter & Joiner 6.1 .mp3 , .wav DoS Date: 9 / 8 / 2010 Author: Oh Yaw Theng Software Link: http://www.maniactools.com/soft/mp3-splitter-joiner/index.shtml Version: 6.1 Tested on: Windows XP SP 2 CVE : N /A !/usr/bin/python User needs ...
Huawei HG866 Authentication Bypass
No description provided by source. Exploit Title: Huawei HG866 Authentication Bypass Date: Jun 14 2012 Exploit Author: hkm Vendor Homepage: http://www.huawei.com Version: V1R2C01SPC202, R3.2.4.92sbn - R3.4.2.257sbn, 3FE53864AOCB16 Tested on: HG866GTAVER.C, 01, 02 Advisory:...
obotix IP Camera M1 1.9.4 .7/M10 2.0.5 .2 eventplayer get_image_info_abspath Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input. An attacker may leverage these issues t...
QContacts 1.0.6 (Joomla component) SQL injection
No description provided by source. Exploit Title: QContacts 1.0.6 Joomla component SQL injection Google Dork: inurl:/components/comqcontacts/ Date: Decembar/08/2011 Author: Don BalcanCrew & BalcanHack Software Link: http://www.latenight-coding.com/joomla-addons/qcontacts.html Version: 1.0.6 Teste...
Web-APP.net WebAPP 0.9.x index.cgi Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17359/info Web-App.Org and Web-App.Net are prone to multiple cross-site scripting vulnerabilities because the applications fail to properly sanitize user-supplied input. An attacker may leverage these issues to execute...
Apple QuickTime 5.0 Content-Type Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4064/info Apple QuickTime is a freely available media player. It runs on a number of platforms including MacOS and Windows 9x/ME/NT/2000/XP operating systems. Apple QuickTime For Windows does not perform sufficient bounds...
Mozilla Suite/Firefox < 1.5.0.5 - Navigator Object Code Execution
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
GMailSite 1.0.x Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16081/info GMailSite is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site...
SearchSimon Lite 1.0 Filename.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26142/info SearchSimon Lite is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code...
MNOGoSearch 3.1.20 Search.CGI UL Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/7865/info mnoGoSearch 'search.cgi' has been reported prone to a buffer overflow vulnerability. The issue is a result of a lack of sufficient bounds checking performed on user-supplied URI parameters that are passed to the...
mod_security <= 2.1.0 (ASCIIZ byte) POST Rules Bypass Vulnerability
No description provided by source. modsecurity = 2.1.0 ASCIIZ byte POST Rules Bypass Vulnerability http://www.php-security.org/MOPB/BONUS-12-2007.html Affected is modsecurity = 2.1.0 Detailed information Detailed information When modsecurity receives a request it parses it into web application...
rgboard <= 3.0.12 (rfi/xss) Multiple Vulnerabilities
No description provided by source. Rgboard 3.0.x Multiple Vulnerabilities RFI/XSS // Author:: e.wiZz! // Site:: www.balcanwarez.com // Contact:: N/A :D =========================================================== // Script :: Rgboard // Vulnerable version :: 3.0.0/3.0.12 // Not vulnerable :: 4.0 /...
w3bcms Gaestebuch 3.0.0 - Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwPOST; use Getopt::Long; '/ -.- ------------------oOO------OOo----------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Research...
dynpage <= 1.0 - Multiple Vulnerabilities (0day)
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-7-dynpage-multiple-remote-vulnerabilities/ ''' - Title : DynPage Multiple Remote Vulnerabilities. - Affected...
ZyWALL 100 HTTP Referer Header - Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29110/info ZyWALL 100 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
PANews 2.0 - Remote PHP Script Code Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12611/info PaNews is reported prone to a remote PHP script code execution vulnerability. It is reported that PHP script code may be injected into the PaNews software through the 'showcopy' parameter of the 'adminsetup.php...
Linux Kernel 2.4.x/2.6.x Bluetooth Signed Buffer Index Vulnerability (4)
No description provided by source. source: http://www.securityfocus.com/bid/12911/info A local signed-buffer-index vulnerability affects the Linux kernel because it fails to securely handle signed values when validating memory indexes. A local attacker may leverage this issue to gain escalated...
PEHEPE Membership Management System 3.0 - Sol_menu.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16885/info PEHEPE Membership Management System is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...
PayProCart <= 1146078425 Multiple Remote File Include Vulnerabilities
No description provided by source. google dork :powered by: profitCode exploite: http://url/index.php?proMod=http://shell.txt? discoverde by momo26 ;!!!!!!!!!!!!!!! +-------------------------------------------------------------------- + + ppalCart V2.5 EE Remote File Inclusion +...
Demarc PureSecure 1.0.5 Authentication Check SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4520/info Demarc PureSecure is a commercially available graphical front-end for Snort, in addition to being a generalized network monitoring solution. Snort is an open-source NIDS Network Intrusion Detection System. Demar...
Symantec Web Gateway <= 5.0.3.18 Arbitrary Password Change (MSF)
No description provided by source. @Kc57 Symantec Web Gateway = 5.0.3.18 Arbitrary Password Change require 'msf/core' class Metasploit3 Msf::Auxiliary include Msf::Exploit::Remote::HttpClient def initializeinfo= superupdateinfoinfo, 'Name' = Symantec Web Gateway = 5.0.3.18 Arbitrary Password...
PHP-Nuke 6.0 - Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/6409/info It has been discovered that multiple PHP scripts used by PHP-Nuke are vulnerable to cross-sitescripting attacks. Due to insufficient sanitization of web requests it is possible for script code to be embedded in...
Apache Tomcat 4.0/4.1 Servlet Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4575/info Apache Tomcat is a servlet container for use with the Java Servlet and JavaServer Pages technologies. Tomcat may be run on most UNIX and Linux variants as well as Microsoft Windows. Apache Tomcat ships with a...
Finjan SurfinGate 6.0/7.0 FHTTP Restart Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9478/info Finjan SurfinGate is prone to a vulnerability that may permit remote attackers to execute certain management commands using the FHTTP protocol through the management control port 3141/TCP. It has been reported...
Microsoft XML Core Services <= 6.0 SubstringData Integer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25301/info Microsoft XML Core Services is prone to an integer-overflow vulnerability because the application fails to ensure that integer values are not overrun. Attackers can exploit this issue by enticing unsuspecting...
Novell Access Manager 3 Identity Server IssueInstant Parameter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21921/info Access Manager Identity Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary scri...
CodeThatShoppingCart 1.3.1 catalog.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13560/info CodeThatShoppingCart is reportedly affected by multiple input validation vulnerabilities. These issues may allow remote attackers to carry out cross-site scripting and SQL injection attacks. An attacker may als...
Caudium 1.x Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11567/info Caudium is reported prone to a remote denial of service vulnerability. Remote attackers may exploit this vulnerability to crash affected Web servers, denying service to legitimate users. Versions of Caudium pri...
Google Chrome 2.0.172 'chrome://history/' URI Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/35841/info Google Chrome is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary script code in the context of th...
Free Simple Software SQL Injection Vulnerability
No description provided by source. 'Free Simple Software' SQL Injection Vulnerability CVE-2010-4298 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Free Simple Software' download module which allows for a 'UNION SELEC...
Python 2.2/2.3 Documentation Server Error Page Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7353/info It has been reported that the Python Documentation Server is vulnerable to a cross-site scripting problem in error pages. Because of this, an attacker could potentially cause the execution of malicious HTML and...
PBBoard 2.1.4 - Local File Inclusion
No description provided by source. Exploit Title: PBBoard 2.1.4 Local File Inclusion Software Link: http://www.pbboard.com/PBBoardv2.1.4.zip Author: n4ss1m Date: 25-05-2012 Tested on: win/linux Home : www.Sec4ever.com Exploit-DB note: Need to be logged in, at the very least, as a standard user to...
Cisco WLC 4402 - Basic Auth Remote Denial of Service (meta)
No description provided by source. require 'msf/core' class Metasploit3 Msf::Auxiliary include Msf::Exploit::Remote::Tcp include Msf::Auxiliary::Dos def initializeinfo = superupdateinfoinfo, 'Name' = 'Cisco WLC 4200 Basic Auth Denial of Service', 'Description' = %q This module triggers a Denial o...