Joomla Component MediQnA 1.1 - LFI Vulnerability

No description provided by source...

Musicqueue 0.9/1.0/1.1 - Multiple Buffer Overrun Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/8903/info Multiple buffer overrun vulnerabilities have been discovered in Musicqueue. Both issues stem from the lack of bounds checking when passing user-supplied input to the sprintf libc function. As a result, it may be...

ssldump 0.9 b1 Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2096/info ssldump is a traffic analyzer for monitoring network traffic in real time. It is written and maintained by Eric Rescorla. A problem exists which could allow the arbitrary execution of code. The problem exists in...

Plesk 7.5/8.0 - login_up.php3 XSS

No description provided by source. source: http://www.securityfocus.com/bid/21067/info Plesk is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues may allow an attacker to execute HTML and script code in the...

Kingsoft Antivirus <= 2010.04.26.648 Kernel Buffer Overflow Exploit

No description provided by source. !/usr/bin/python Title: Kingsoft Antivirus Kernel Buffer Overflow Exploit Author: Lufeng Li of Neusoft Corporation Vendor: www.duba.net Platform: Windows XPSP3 Chinese Simplified Tested: Kingsoft Antivirus v2010.04.26.648 Vulnerable: Kingsoft Antivirus...

Cisco IOS 12 MSFC2 Malformed Layer 2 Frame Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9562/info A problem has been identified in the handling of specific types of traffic by Cisco 6000, 6500, and 7600 routers with the MSFC2 device. Because of this, an attacker could potentially crash a vulnerable system...

ffdshow Video Codec Denial of Service Vulnerability

No description provided by source. !/usr/bin/perl Exploit Title: Malformed MP4 Local DoS for ffdshow Video Codec tryouts rev. 3467 20100713 x86 Date: 08/08/2010 Author: Nishant Das Patnaik Web: http://nishantdaspatnaik.yolasite.com Software Link:...

VBulletin 3.0 Search.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9656/info It has been reported that VBulletin is prone to a cross-site scripting vulnerability in the 'search.php' script. This issue is reportedly due to a failure to sanitize user input and so allow HTML and script code...

CPanel 5-10 SUID Wrapper Remote Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20163/info cPanel is prone to a remote privilege-escalation vulnerability. A remote attacker can exploit this issue to gain administrative access to the affected application. This may lead to other attacks. !- for use old...

Psychoblogger PB-beta1 errormessage XSS

No description provided by source. source: http://www.securityfocus.com/bid/9293/info It has been reported that Psychoblogger may be prone to multiple cross-site scripting vulnerabilities that may allow a remote attacker to execute HTML or script code in a user's browser. The issues are reported ...

Cisco IOS 12.x HTTP Server Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/33260/info Cisco IOS HTTP Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script co...

Linux kernel 2.0/2.1/2.2 autofs Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/312/info The autofs module provides support for the automount filesystem, as well as the interface between the kernel and the automountd daemon, which is responsible for the actual mounting. Calls such as chdir executed i...

Zeus Web Server 3.x Null Terminated Strings Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/977/info Appending %00 to the end of a CGI script filename will permit a remote client to view full contents of the script if the CGI module option allow CGIs anywhere is enabled. Scripts located in directories which are...

Clever Copy 2.0 Private Message Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14397/info Clever Copy is affected by an unauthorized access vulnerability. This issue is due to a failure in the application to perform proper access validation checks before granting access to private message functions...

Fred N. van Kempen dip 3.3.7 - Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/86/info A buffer overflow resides in 'dip-3.3.7o' and derived programs. This is a problem only on systems where 'dip' is installed setuid. The culpable code is an 'sprintf' in line 192 in 'main.c': sprintfbuf, %s/LCK..%s,...

Maxthon Browser 3.0.20.1000 - .ref .replace DoS

No description provided by source. ?html head Exploit Title: Maxthon Browser v3.0.20.1000 .ref .replace DOS Date: January 30 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://dl.maxthon.com/mx3/mx3.0.20.3000.exe Version: v3.0.20.1000 Tested on: Windows xp sp3 ,windows 7 ,linux...

Indusoft Thin Client 7.1 ActiveX - Buffer Overflow

No description provided by source. html !-- InduSoft Thin Client v7.1 Date: October 8, 2013 Exploit Author: Blake Software Link: http://www.indusoft.com/Products-Downloads/Download-Library Version: 7.1 Tested on: Windows XP SP3 / IE6 Affected File:i386\novapi7.dll Member Name: Initialize2 Program...

Zebedee 2.4.1 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14796/info A remote denial of service vulnerability affects Zebedee. This issue is due to a failure of the application to properly handle exceptional network requests. Specifically, Zebedee is unable to handle requests fo...

viart shopping cart 3.5 - Multiple Vulnerabilities

No description provided by source. =============================================================== !vuln ViArt Shopping Cart v3.5 is prone to multiple remote vulnerabilities. Earlier versions may also be affected. ===============================================================...

WinMerge 2.12.4 - Project File Handling Stack Overflow Vulnerability

No description provided by source. !/usr/bin/perl Title: WinMerge v2.12.4 Project File Handling Stack Overflow Vulnerability Vendor: Thingamahoochie Software Product web page: http://www.winmerge.org Affected version: 2.12.4.0 Unicode Summary: WinMerge is an Open Source differencing and merging...

Dotproject 2.0 /modules/projects/gantt2.php dPconfig[root_dir] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/16648/info Dotproject is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...

Qualcomm Eudora 6.0.1/6.1.1 Attachment LaunchProtect Warning Bypass Weakness (1)

No description provided by source. source: http://www.securityfocus.com/bid/9101/info A problem has been identified in the implementation of LaunchProtect within Eudora. Because of this, it may be possible to trick users into performing dangerous actions. May 21, 2004 - Eudora version 6.1.1 has...

Mini-stream Ripper 3.0.1.1 (.smi) Local Buffer Overflow PoC

No description provided by source. !/usr/bin/python Tested on: win XPsp3 webpage: d3b4g.info EAX 00E1C880 EDX 00000001 EBX 41414141------------------------------------------------ ESP 000D198C EBP 00E1C880 controle over registers ESI 41414141------------------------------------------------ EDI...

Ruby on Rails 1.2.3 To_JSON - Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24161/info Ruby on Rails is prone to a script-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied script code...

Ruby on Rails Known Secret Session Cookie Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

Alt-N MDaemon 6.x/WorldClient Form2Raw Raw Message Handler Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/9317/info It has been reported that MDaemon/WorldClient mail server may be prone to a buffer overflow vulnerability when handling certain messages with a 'From' field of over 249 bytes. This issue may allow a remote...

ZaireWeb Solutions Newsletter ZWS Administrative Interface Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10605/info Newsletter ZWS is reported prone to an administrative interface authentication bypass vulnerability. The vulnerability exists due to a design error in the implementation of the authentication system for the...

HM Software S to Infinity 3.0 - Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/1368/info A number of vulnerabilities exist in HM Software S to Infinity, a security access control, desktop lockdown and transparent encryption application. Intended features include restriction of access to folders,...

Doruk100Net Info.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23675/info Doruk100Net is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the...

Bitweaver 1.1.1 my.php sort_mode Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15962/info bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

City Directory Review and Rating Script (search.php) SQL Injection Vulnerability

No description provided by source. Exploit Title: City Directory Review and Rating Script SQL Injection Vulnerability Date: 22.12.2012 Author: 3spi0n Script Vendor or Software Link: http://b-scripts.com/en/18-city-reviewer-yelp-clone.html Category: WebApps Type: SQL Injection MySQLi Tested On:...

HP Power Manager 'formExportDataLogs' Buffer Overflow

No description provided by source. $Id: hppowermanagerfilename.rb 14016 2011-10-20 17:40:21Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

IRIX 6.2/6.3 lpstat Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1529/info Certain versions of IRIX ship with a version of lpstat which is vulnerable to a buffer overflow attack. The program, lpstat, is used to check the status of the printer being used by the IRIX machine. The problem...

3Com TFTP Service <= 2.0.1 (Long Transporting Mode) Overflow PoC

No description provided by source. !/usr/bin/python Buffer Overflow Long transporting mode Vulnerability Exploit This is just a DoS exploiting code Tested on Windows xp SP2 Requires python and impacket Coded by Liu Qixu Of NCNIPC SUMMARY: 3CTftpSvc TFTP Server is a Freeware TFTP server for Window...

Ipswitch IMail 5.0 IMonitor Buffer Overflow DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/504/info The IMail IMonitor service can be crashed by exploiting a buffer overflow vulnerability. Telnet to target machine, port 8181 Send: glob1 hit enter twice Where glob1 is 2045 characters...

Blue Coat Authentication and Authorization Agent (BCAAA) 5 Buffer Overflow

No description provided by source. $Id: bcaaabof.rb 13137 2011-07-09 04:10:52Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

iphone ishred 1.93 - Directory Traversal

No description provided by source. ---------------------------------------------------------------- Software : iPhone ishred 1.93 Type of vunlnerability : Directory Traversal Tested On : iPhone 4 IOS 4.0.1 Risk of use : High ---------------------------------------------------------------- Program...

BPM Studio Pro 4.2 HTTPD Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4198/info BPM Studio Pro is a shareware MP3 mixer and player. It runs on Microsoft Windows operating systems. BPM Studio Pro includes a HTTP server for managing the player via a web interface. The BPM Studio Pro HTTPD doe...

WordPress <= 2.3.3 - 'cat' Parameter Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28845/info WordPress is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting the issue may allow an attacker to access sensitive information that coul...

Simple PHP Blog <= 0.4.7.1 - Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; print Simple PHP Blog = 0.4.7.1 cmmnds xctn exploit\r\n; print through arbitrary local inclusion\r\n; print rgod [email protected]\r\n; print - this works with magicquotesgpc = Off\r\n\r\n; short explaination: we have this code in...

Interspire Knowledge Manager 5 'callback.snipshot.php' Arbitrary File Creation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38186/info Interspire Knowledge Manager is prone to a vulnerability that allows attackers to create arbitrary files on a vulnerable computer. An attacker may exploit this issue to create arbitrary files, which may then be...

JomSocial 1.8.8 Shell Upload Vulnerability

No description provided by source. There is a file upload vulnerability in version 1.8.8 and earlier of JomSocial, the popular community extension for Joomla!. Successful exploitation of this exploit requires the site to be configured to allow users to upload video files directly, which is disabl...

CMS Ignition SQL Injection Exploit

No description provided by source. |------------------------------------------------| | neavorc@gmaildotcom | ================================================== + SQL Injection Vulnerability + Dorks: allinurl:shop.htm?shopMGID= + Bug in shop.htm?shopMGID + Exploit:...

MyWebServer 1.0.2 Search Request Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5469/info MyWebServer is an application and web server for Microsoft Windows operating systems. MyWebServer includes a number of web based functions, including a search engine. MyWebServer suffers from a remote buffer...

Portrait Software Portrait Campaign Manager 4.6.1.22 Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38252/info Portrait Campaign Manager is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary scrip...

DaLogin Multiple Vulnerabilities

No description provided by source. dalogin 2.2 multiple vulnerabilites app desc: Configurable WebSite. PHP + Mysql: news zone with rss feed, private zone, languages, themes, administration panel app source: http://dalogin.sourceforge.net/ author: hc0 1 config file disclosure you can access...

VariCAD 2010-2.05 EN Local buffer overflow

No description provided by source. / Exploit Title: VariCAD 2010-2.05 EN Local buffer overflow : Date: 15 March 2010 Author: n00b Realname: carl cope Software Link: http://www.varicad.com/en/home/ Version: All versions are affected. Tested on: Windows xp sp3,Vista sp2,Linux unbuntu CVE : if exist...

Snort unified 1 IDS Logging Alert Evasion, Logfile Corruption/Alert Falsify

No description provided by source. Advisory: ========= Snort unified 1 IDS Logging Alert Evasion, Logfile Corruption/Alert Falsify Log: ==== 30/06/2009 Bug detected. 20/07/2009 First mail with snort team. 20/07/2009 Snort team answer they will fix it in the next release 2.8.5. 16/09/2009 Snort...

PHP121 Instant Messenger <= 1.4 - Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo PHP121 Instant Messenger = 1.4 $SESSIONsessusername remote cmmnds xctn \r\n; echo by rgod [email protected]\r\n; echo site: http://retrogod.altervista.org\r\n\r\n; echo - works with magicquotesgpc = Off\r\n\r\n; echo a...

Supernews <= 2.6.1 - SQL Injection Exploit

No description provided by source. ?php Exploit Title: Supernews = 2.6.1 SQL Injection Exploit Google Dork: intext:2003 - 2004 : SuperNews : Todos os direitos reservados Date: 2012/ Author: WhiteCollarGroup Software Link: http://phpbrasil.com/script/vT0FaOCySSH/supernews Version: 2.6.1 Tested on:...