Spybot Search & Destroy 1.6.2 Security Center Service Privilege Escalation

Summary Spybot – Search & Destroy S&D is a spyware and adware removal computer program compatible with Microsoft Windows 95 and later. It scans the computer hard disk and/or RAM for malicious software. Description The application suffers from an unquoted search path issue impacting the service...

Huawei Technologies du Mobile Broadband 16.0 Local Privilege Escalation

Summary du Mobile Broadband is a shareware application for du EITC UAE users to support mobile broadband 3G activation for du service provider with systems containing one of the supported devices. It lets you access du wireless internet wherever you are and whenever you need it, all powered throu...

Practico 13.9 Multiple Vulnerabilities

Summary Practico is a free CMS software project released under license GNU GPL v2.0 for creating web applications in a completely visual and fast fashion. Without programming knowledge. Description Practico suffers from multiple vulnerabilities including Cross-Site Scripting XSS, SQL Injection SQ...

ImpressPages CMS v3.6 Multiple XSS/SQLi Vulnerabilities

Summary ImpressPages CMS is an open source web content management system with revolutionary drag & drop interface. Description Input passed via several parameters is not properly sanitized before being returned to the user or used in SQL queries. This can be exploited to manipulate SQL queries by...

Wordpress Newsletter Plugin 3.2.6 (alert) Reflected XSS Vulnerability

Summary Newsletter is the perfect WordPress plugin for creating real newsletters and mail marketing system on your WordPress blog. Description The plugin suffers from a XSS issue due to a failure to properly sanitize user-supplied input to the 'alert' GET parameter in the 'page.php' script...

CMSLogik 1.2.1 (user param) User Enumeration Weakness

Summary CMSLogik is built on a solid & lightweight framework called CodeIgniter, and design powered by Bootstrap. This combination allows for greater security, extensive flexibility, and ease of use. You can use CMSLogik for almost any niche that your project might fall into. Description The...

Joomla Incapsula Component <= 1.4.6_b Reflected Cross-Site Scripting Vulnerability

Summary Once installing the Incapsula for Joomla component, simply make the provided DNS changes and within minutes your website traffic will be seamlessly routed through Incapsula’s globally distributed network of POPs. Description The Joomla Incapsula component suffers from a XSS issue due to a...

web@all CMS 2.0 Multiple Remote XSS Vulnerabilities

Summary web@all is a PHP content management system CMS. If you know about it,you nearly can use it to do anything. Description web@all CMS suffers from multiple stored and reflected cross-site scripting vulnerabilities. The issues are triggered when input passed via several parameters to several...

BGS CMS v2.2.1 Multiple Stored Cross-Site Scripting Vulnerabilities

Summary BGS CMS is powerful Content Management System used to easily publish, manage and organize wide variety of content on the website. Description BGS CMS suffers from multiple stored and reflected XSS vulnerabilities when parsing user input to several parameters via GET and POST method...

Infoproject Biznis Heroj (XSS/SQLi) Multiple Remote Vulnerabilities

Summary Biznis Heroj or Business Hero is the first software on the Macedonian market that will help you manage your business processes in your company, such as accounting, production, acquisition, archiving, inventory, and the Cloud. Using the Cloud technology, Biznis Heroj allows you to access t...

Soda PDF Professional 1.2.155 PDF/WWF File Handling Restriction of Service (RoS)

Summary Increase your efficiency with Soda PDF Professional, the smart & simple tool for opening, creating, editing, converting, and securing PDF files in a collaborative environment. Save time by using powerful automated features like batch PDF creation, professional templates & document...

ESTsoft ALPlayer 2.0 ASX Playlist File Handling Buffer Overflow Vulnerability

Summary ALPlayer former ALShow is an easy-to-use media player that comes equipped with plenty of codecs, and it's prepared to download more if needed. Description The vulnerability is caused due to a boundary error in the processing of a playlist file , which can be exploited to cause a stack-bas...

Team Johnlong RaidenTunes 2.1.1 Remote Cross-Site Scripting Vulnerability

Summary RaidenTunes is a Web server based + application software that allows You to setup an online music server quickly. It can scan the music folders in Your PC and organize them into a database, allowing users to connect to this server and browser/search and listen to the music easily...

Mp3 Tag Assistant Pro 2.92 (tag metadata) Remote Stack Overflow PoC

Summary MP3 Tag Assistant Professional 2.92 is a professional-level audio tag editor with UNICODE support. Description MP3 Tag Assistant Professional 2.92 is vulnerable to a stack buffer overflow attack when loading a malicious mp3 file or file that supports tags filled with overly long A's in it...

JobScript Open Redirection And Arbitrary Code Execution Vulnerability

Summary JobScript is inbuilt structured website was developed in PHP and MySQL database. It's a complete job script for those who wants to start a professional job portal website like naukri.com, monster.com, clickjobs.com or any such major job portals. Jobscript was designed and developed with t...

qEngine CMS 6.0.0 (task.php) Local File Inclusion Vulnerability

Summary qEngine qE is a lightweight, fast, yet feature packed CMS script to help you building your site quickly. Using template engine to separate the php codes from the design, you don't need to touch the codes to design your web site. qE is also expandable by using modules. Description qEngine...

Kemana Directory 1.5.6 (qvc_init()) Cookie Poisoning CAPTCHA Bypass Exploit

Summary Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's features including: CMS engine based on our qEngine, multiple directories support, user friendly administration control panel, easy to use custom fields,...

Qool CMS v2.0 RC2 Multiple HTML And JavaScript Injection Vulnerabilities

Summary Qool CMS is a content management system that helps web masters be more productive. Qool has been built with both worlds web master, web developer in mind. It is easy to create addons extensions for the system but you can really do without them too. Description Qool CMS suffers from multip...

phlyLabs phlyMail Lite 4.03.04 Path Disclosure and Stored XSS Vulnerabilities

Summary phlyMail offers you an interface in the browser to have access to your emails, contacts, appointments, tasks, files and bookmakrs from anyhwere, where you have internet access. This can be your home, workplace, train station, abroad, offroad, in the woods or your own backyard. Description...

NASA Tri-Agency Climate Education (TrACE) v1.0 SQL Injection Vulnerability

Summary The Tri-Agency Climate Education TrACE Catalog provides search and browse access to a catalog of educational products and resources. TrACE focuses on climate education resources that have been developed by initiatives funded through NASA, NOAA, and NSF, comprising a tri-agency collaborati...

SiNG cms 2.9.0 (email) Remote XSS POST Injection Vulnerability

Summary SiNG cms is a free modular Content Management System open source, based on a bunch of PHP / MySQL and intended use of the web server Apache. Description The application is prone to a reflected cross-site scripting vulnerability due to a failure to properly sanitize user-supplied input to...

Oreans WinLicense v2.1.8.0 XML File Handling Unspecified Memory Corruption

Summary WinLicense combines the same protection-level as Themida with the power of advanced license control, offering the most powerful and flexible technology that allows developers to securely distribute trial and registered versions of their applications. Description WinLicense is prone to an...

Tracker Software pdfSaver ActiveX 3.60 (pdfxctrl.dll) Stack Buffer Overflow (SEH)

Summary PDF-Saver Technology is a unique new feature of PDF-XChange software which allows printing jobs to be combined prior to the final PDF file being generated - e.g. to join 3 pages of Excel spreadsheet, 5 slides of PowerPoint presentation and 10 pages of Word document into one PDF document...

vtiger CRM 5.2.1 Multiple Remote Cross-Site Scripting Vulnerabilities

Summary vtiger CRM is a free, full-featured, 100% Open Source CRM software ideal for small and medium businesses, with low-cost product support available to production users that need reliable support. Description vtiger CRM suffers from a XSS vulnerability when parsing user input to the...

iBrowser Plugin v1.4.1 (lang) Local File Inclusion Vulnerability

Summary iBrowser is an image browser plugin for WYSIWYG editors like tinyMCE, SPAW, htmlAREA, Xinha and FCKeditor developed by net4visions. It allows image browsing, resizing on upload, directory management and more with the integration of the phpThumb image library. Description iBrowser suffers...

Gesytec ElonFmt ActiveX 1.1.14 (ElonFmt.ocx) pid Item Buffer Overflow (SEH)

Summary Connects LonWorks networks to process control, visualization, SCADA and office software. Description The ElonFmt ActiveX Control Module suffers from a buffer overflow vulnerability. When a large buffer is sent to the pid item of the GetItem1 function in elonfmt.ocx module, we get a few...

Microsoft Visio 2010 v14.0.4514.1004 (dwmapi.dll) DLL Hijacking Exploit

Summary Microsoft Visio is a diagramming program for Microsoft Windows that uses vector graphics to create diagrams. Description MS Visio 2010 suffers from a dll hijacking vulnerability that enables the attacker to execute arbitrary code on a local level. The vulnerable extension is .vss thru...

up.time 7.5.0 Arbitrary File Disclose And Delete Exploit

Summary The next-generation of IT monitoring software. Description Input passed to the 'filename' parameter in 'get2post.php' script is not properly sanitised before being used to get the contents of a resource and delete files. This can be exploited to read and delete arbitrary data from local...

u5CMS 3.9.3 (thumb.php) Local File Inclusion Vulnerability

Summary u5CMS is a little, handy Content Management System for medium-sized websites, conference / congress / submission administration, review processes, personalized serial mails, PayPal payments and online surveys based on PHP and MySQL and Apache. Description u5CMS suffers from an authenticat...

Telefonica O2 Connection Manager 8.7 Service Trusted Path Privilege Escalation

Summary O2 Connection Manager will help you to manage your internet connections by getting you connected to the fastest available network. Automatically connect you to the fastest available network including your home broadband if you have a wireless router. Description The O2 Connection Manager'...

ImpressPages CMS v3.6 Remote Arbitrary File Deletion Vulnerability

Summary ImpressPages CMS is an open source web content management system with revolutionary drag & drop interface. Description Input passed to the 'files0file' parameter in '/ipcms/modules/administrator/repository/controller.php' is not properly sanitised before being used to delete files. This c...

Cannonbolt Portfolio Manager v1.0 Stored XSS and SQL Injection Vulnerabilities

Summary Cannonbolt Portfolio Manager is a sleek and AJAX based PHP script to manage projects and showcase. Description The application suffers from a stored cross-site scripting and a SQL Injection vulnerability when input is passed to the 'cname' POST parameter in 'add-category.php' and 'cdel' G...

Zenario CMS 7.0.2d Reflected XSS and Open Redirect Vulnerabilities

Summary Zenario is a web-based content management system for sites with one or many languages. It is simple to use, and can grow with your requirements. Description Input passed via the 'location' GET parameter in 'index.php' script is not properly verified before being used to redirect users. Th...

Kemana Directory 1.5.6 kemana_admin_passwd Cookie User Password Hash Disclosure

Summary Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's features including: CMS engine based on our qEngine, multiple directories support, user friendly administration control panel, easy to use custom fields,...

NVIDIA Install Application 2.1002.85.551 (NVI2.dll) Unicode Buffer Overflow PoC

Summary NVIDIA install core application for Windows. Description The vulnerability is caused due to a boundary error in NVI2.DLL when handling the value assigned to the 'pDirectory' string variable in the 'AddPackages' function and can be exploited to cause a unicode buffer overflow by inserting ...

Baby Gekko CMS v1.1.5c Multiple Stored Cross-Site Scripting Vulnerabilities

Summary BabyGekko strives to deliver high quality websites and other web content fast and easy for all end users. It is a lightweight, extensible content management system platform for publishing websites, intranets, or blogs. Description Baby Gekko CMS suffers from multiple stored post-auth XSS...

Manx cms.xml 1.0.1 (simplexml_load_file()) Directory Traversal Vulnerability

Summary Manx is a Content Management System that uses xml text files to store the page contents, instead of a mysql database. Description Input passed via the 'fileName' parameter thru the simplexmlloadfile function is not properly verified in '/admin/adminblocks.php' and '/admin/adminpages.php'...

SetSeed CMS 5.8.20 (loggedInUser) Remote SQL Injection Vulnerability

Summary SetSeed is a self-hosted CMS which lets you rapidly build and deploy complete websites and online stores for your clients. Description SetSeed CMS is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the vulnerable script using the cookie input...

ATutor 2.0.2 (lang) HTTP Response Splitting Vulnerability

Summary ATutor is an Open Source Web-based Learning Content Management System LCMS designed with accessibility and adaptability in mind. Educators can quickly assemble, package, and redistribute Web-based instructional content, easily retrieve and import prepackaged content, and conduct their...

eXPert PDF Reader 4.0 NULL Pointer Dereference and Heap Corruption Denial Of Service

Summary eXPert PDF Reader is a free pdf viewer software that lets you view and print pdf documents on windows operating systems. Description The vulnerability is caused due to a NULL pointer dereference when processing malicious Printer Job .pj files and can be exploited to crash the application...

Corel PHOTO-PAINT X3 v13.0.0.576 (crlrib.dll) DLL Hijacking Exploit

Summary Graphic design software for striking visual communication. Description Corel PHOTO-PAINT X3 suffers from a dll hijacking vulnerability that enables the attacker to execute arbitrary code on a local level. The vulnerable extension is .cpt thru crlrib.dll library. / Corel PHOTO-PAINT X3...

Nero Burning ROM 9 (iso compilation) Local Buffer Invasion Proof Of Concept

Summary Nero Burning ROM is the professional solution for burning your audio, data, and video discs, backing up entire discs, and much more. Features many advanced settings and options and supports a wide range of formats. Description Nero Burning ROM suffers from a buffer overflow vulnerability...

NUUO CSRF Add Admin Exploit

Summary NUUO NVRmini 2 is the lightweight, portable NVR solution with NAS functionality. Setup is simple and easy, with automatic port forwarding settings built in. NVRmini 2 supports POS integration, making this the perfect solution for small retail chain stores. NVRmini 2 also comes full equipp...

Kemana Directory 1.5.6 Database Backup Disclosure Exploit

Summary Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's features including: CMS engine based on our qEngine, multiple directories support, user friendly administration control panel, easy to use custom fields,...

Gnew v2013.1 Multiple XSS And SQL Injection Vulnerabilities

Summary Gnew is a simple Content Management System written with PHP language and using a database server MySQL, PostgreSQL or SQLite for storage. Description Input passed via several parameters is not properly sanitised before being returned to the user or used in SQL queries. This can be exploit...

Qool CMS v2.0 RC2 XSRF Add Root Exploit

Summary Qool CMS is a content management system that helps web masters be more productive. Qool has been built with both worlds web master, web developer in mind. It is easy to create addons extensions for the system but you can really do without them too. Description Qool CMS allows users to...

MTP Guestbook 1.0 Multiple Remote Script Insertion Vulnerabilities

Summary MTP Guestbook allows you to put a guestbook on your website. Your visitors can sign it and leave a message. The entries can be edited and deleted in the admin area. Description MTP Guestbook script suffers from multiple stored cross-site scripting vulnerabilities. The issues are triggered...

MTP Image Gallery 1.0 (title) Remote Script Insertion Vulnerability

Summary MTP Image Gallery offers more control, better uploading and enhanced performance. With MTP Image Gallery you can easily create and maintain albums of photos via an intuitive, web interface. Description MTP Image Gallery suffers from a stored XSS vulnerability when parsing user input to th...

Oracle Identity Management 10g (username) XSS POST Injection Vulnerability

Summary Oracle Identity Management enables organizations to effectively manage the end-to-end lifecycle of user identities across all enterprise resources, both within and beyond the firewall and into the cloud. The Oracle Identity Management platform delivers scalable solutions for identity...

Fork CMS 3.2.7 Multiple HTML Code Injection Vulnerabilities

Summary Fork is an open source cms that will rock your world. Description Fork CMS suffers from multiple XSS vulnerabilities when parsing user input to several parameters in different scripts, via POST and GET methods. Attackers can exploit these weaknesses to execute arbitrary HTML and script co...