BLOG:CMS versions 4.2.1e and below suffer from cross site request forgery and cross site scripting vulnerabilities.
ddc26b3fa1bcdf7e1487319c93eac4eb1e64a80447f44813930a4ae823627b75DorsaCMS suffers from a remote SQL injection vulnerability.
5f470d63c307ec009fbc2e0017592777c57a7eb044452c526018dc51a76bfcaeA vulnerability exists in the Pointter PHP Content Management System version 1.0 authentication system which allows for administrative privileges by crafting two specific cookies with arbitrary values.
383447dee593575552b4ff1eaf381e999b313af64904e3e28897fc874dcfacd7A vulnerability exists in the Pointter PHP Micro-Blogging Social Network version 1.8 authentication system which allows for administrative privileges by crafting two specific cookies with arbitrary values.
5ed06a82856703845c31dcfc2e60d5e2c275c982d313bdc9e171cebe44ca0cc1Easy DVD Creator local crash proof of concept exploit.
3c7a275d3effdb21eefadb086122bb81b6c00d7edee39d6e2a578ebe14296530Digital Audio Editor version 7.6.0.237 local crash proof of concept exploit.
820e081085fd1ca4bcfd6c2a2807c9a1dfc73c0f4ac9523a262e5382d1c95d93slickMsg version 0.7-alpha suffers from a BBCode CSS cross site scripting vulnerability.
9c4afcd68a7d3392a71f0c50f9628856f356b810d66910a21a8546f1d0fe0a75This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution. It seems like Microsoft code inadvertently increments a vtable pointer to point to an unaligned address within the vtable's function pointers. This leads to the program counter being set to the address determined by the address "[vtable+0x30+1]". The particular address depends on the exact version of the mshtml library in use. Since the address depends on the version of mshtml, some versions may not be exploitable. Specifically, those ending up with a program counter value within another module, in kernel space, or just not able to be reached with various memory spraying techniques. Also, since the address is not controllable, it is unlikely to be possible to use ROP to bypass non-executable memory protections.
c5af90428a60eae212629d6165cc2ab369c2d3111464b63c3d7505ceda36a191BlogCFC suffers from multiple cross site scripting vulnerabilities.
4a5f358eaed72d5ca282ae8e50804475f5e28c6ce5892b58a294a6f1fbd50ecaGoogle Urchin version 5.7.03 suffers from a local file inclusion vulnerability.
5e4cb1f96abd4d0dba19822c6f4cb88dbe18e99c1e9e68021ef02e64759e4502slickMsg version 0.7-alpha suffers from a cross site scripting vulnerability.
c47f15d291a098777d8049b7c442a0f27bae35a13d72423b9d87eaea12757872FontForge version 0.0.20100501-2 is vulnerable to a .bdf file font file stack-based buffer overflow vulnerability.
89e18269a2ce0ac9a0deb84e3e64b9bcd74d7342f689b5a63d8c76e42afc7f22Mura CMS version 5.2.2085 suffers from multiple cross site scripting vulnerabilities.
9d4bb82fb22f559637164afc13054f172d012612b19b9a0b1fbc6c059f0d39aaPmWiki suffers from a cross site scripting vulnerability.
fd530d072de60d1dc61f0016345caa92e6bea5cf292c3253c19715c220fb7c7dCrystal Reports Viewer version 12.0.0.549 Active-X exploit that leverages PrintControl.dll.
edfb2794dd9dc50c64d7695bd3ed012142a7294f0256ed3b4f7e0ce7bd780306It appears that the HP MSA2000 G3 may have a hardcoded admin account backdoor.
5693ad888ffbeb2a3080f85bf7cbfdabba3178387f4a6f8d1f51b2f6cd45aa25PHP Top Sites suffers from cross site scripting and remote SQL injection vulnerabilities.
c8192bcf03e28e2a7361ecccc26e001882bc9dc6962685702841213293c057d1MyBB suffers from a cross site scripting vulnerability in tags.php.
1c6e41739e839a6a02b401181bf3082349b3d0c71d058cd8d2ee3be9b322bcaeCetera eCommerce versions 14.0 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
1d1ff6a0a3c08e87af39210f69111097127477626d24a7391577ac45704127e4slickMsg version 0.7-alpha suffers from a cross site scripting vulnerability.
d49ba5a63777654e5e71d5273dc76eba90400c207eac1e240f3dc099826a0275FreeAmp version 2.0.7 buffer overflow exploit that creates a malicious .m3u file.
4ca55d2f913072949c21c06bae327598a2c6fa9f441d8ca79b80bd9c1de1073cSnackAmp version 3.1.3 suffers from a malicious SMP buffer overflow vulnerability.
1e7b97a8e0b60ec21c3dd744fc4813734ac1a7dee05b6c87cd45a4aa8dc56586Godaddy's Workspace versions 5.3 and below suffers from a cross site scripting vulnerability.
ef9935ed4bcaf70501af3f24ea41d2050e62b8f73f4f677fda64607046750b4ePowerShell XP version 3.0.1 buffer overflow exploit.
446a585e1ae00a3128deb6fbcfbf923285a37b0964c09c0fb89942ac45f96c79Exim version 4.63 remote root exploit that uses a connect-back shell. Works on RedHat, Centos and Debian.
af8e1e361c82fc87041373b6e4044b0f7d87c3a5ff26e31b243a3efd06e7c7ca
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed