what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 73 RSS Feed

Files Date: 2006-05-06

Gentoo Linux Security Advisory 200605-6
Posted May 6, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200605-06 - Martijn Wargers and Nick Mott discovered a vulnerability when rendering malformed JavaScript content. The Mozilla Firefox 1.0 line is not affected. Versions less than 1.5.0.3 are affected.

tags | advisory, javascript
systems | linux, gentoo
SHA-256 | ab71bb8673063363d71c9ff4835af73d7cb1adaaf9bf8575fc6edc628f8170eb
SinFP-1.01-3.tar.gz
Posted May 6, 2006
Authored by GomoR | Site gomor.org

SinFP is a new approach to OS fingerprinting, which bypasses limitations that nmap has. It only requires one open TCP port, sends only fully standard TCP packets, and limits the number of tests to 2 or 3.

tags | tool, scanner, tcp
systems | unix
SHA-256 | 0429d5c91cb785153e730ce42c50bb240fffc5888c0171585875414932b9a543
x7chat202.txt
Posted May 6, 2006
Authored by Nomenumbra

X7Chat versions 2.0.2 and below suffer from cross site scripting flaws.

tags | advisory, xss
SHA-256 | a27552747b99f74782585acc56116be0de958712e09a10cf260cb6414a449813
websitebaker.txt
Posted May 6, 2006
Authored by Nomenumbra

WebsiteBaker CMS allows for injection of HTML and javascript.

tags | advisory, javascript
SHA-256 | 16c209df6f3f3b2082a5395d9ff1cf10146b9f3cdaddc85387fcdb2953e9554d
visionsource.txt
Posted May 6, 2006
Authored by Nomenumbra

VisionSource CMS versions 0.6 and below suffer from cross site scripting flaws.

tags | advisory, xss
SHA-256 | c059b2ab89d1d3daccd442ad939d4364b05dec802fd247b03dbde2ba925072f7
passmasterflex.txt
Posted May 6, 2006
Authored by Nomenumbra

PassMasterFlex suffers from cross site scripting flaws.

tags | advisory, xss
SHA-256 | e6eccd95311e6e7c124d1aea8916c940bb438076e1e17d1d58e39768d90e0109
mybloggie213.txt
Posted May 6, 2006
Authored by Nomenumbra

myBloggie versions 2.1.3 and below suffer from cross site scripting flaws.

tags | advisory, xss
SHA-256 | 250ee007879282d10c62b89ebb52948f314f5586726780295ec33a3769ce53ca
flexcustomer.txt
Posted May 6, 2006
Authored by Nomenumbra

FlexCustomer versions 0.0.4 and below suffer from SQL injection flaws.

tags | advisory, sql injection
SHA-256 | 9844b12ce1c067e9cded58c227aea07123fb501bf77349e0822443e20efd3dd1
chipmunkBoard.txt
Posted May 6, 2006
Authored by Nomenumbra

ChipmunkBoard suffers from SQL injection flaws.

tags | advisory, sql injection
SHA-256 | 8e48025ab789e02d66182537ffeacdf36f3fb1d66d3f0e518740d807b296e26b
chipmunkBlogger.txt
Posted May 6, 2006
Authored by Nomenumbra

ChipmunkBlogger suffers from a lack of input sanitizing.

tags | advisory
SHA-256 | d4d3e44bb90e99c4147fcc4fd2c26662900e5f481f9768d293ad592060052ece
bl4ck_awstats_migrate_cmd_inj.py.txt
Posted May 6, 2006
Authored by redsand

Remote shell command injection exploit for AWStats versions 6.5 and below.

tags | exploit, remote, shell
SHA-256 | 941a06c7ed697547b47adcb24b4547271d29c41781f9d2f838ff3524b533683c
jetboxCMS.txt
Posted May 6, 2006
Authored by beford

JetBox CMS remote file inclusion exploit that allows for command execution.

tags | exploit, remote, file inclusion
SHA-256 | 6bb97b240608bb11c9ab173820e3e278793a4e618c1ac8e49d99bfbee4906bdd
Gentoo Linux Security Advisory 200605-5
Posted May 6, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200605-05 - An integer overflow was found in the receive_xattr function from the extended attributes patch (xattr.c) for rsync. The vulnerable function is only present when the acl USE flag is set. Versions less than 2.6.8 are affected.

tags | advisory, overflow
systems | linux, gentoo
SHA-256 | d592560260da6f55837c376016e7035d8854f7bf46ab02109375c0661c2bd33f
openfaq040XSS.txt
Posted May 6, 2006
Authored by Kamil Sienicki

OpenFAQ version 0.4.0 is susceptible to cross site scripting attacks.

tags | exploit, xss
SHA-256 | 2ffeb55172208c07701cb7f398eb58ed12de453d7b6602d91a40d8bfb09a887e
vpasp600.txt
Posted May 6, 2006
Authored by tracewar

VP-ASP version 6.00 is susceptible to SQL injection attacks. Exploitation details provided.

tags | exploit, sql injection, asp
SHA-256 | 88610c2c58aeabbf0a85467404b623b0dd9f1bf34a86fdf0a43adf16f0eafb0b
phpbb2020.txt
Posted May 6, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

phpBB version 2.0.20 suffers from full path disclosure and SQL errors.

tags | advisory
advisories | CVE-2006-2219, CVE-2006-2220
SHA-256 | f038ea39ebfcb19fdba73fba1e5223155e5b79addf97f621d56e5d29f6268420
cirt-43-advisory.pdf
Posted May 6, 2006
Authored by Dennis Rand | Site cirt.dk

A vulnerability has been found in an ActiveX object distributed as part of TDC' Microsoft CSP suite. The vulnerability allows code execution on any client machine that has the component installed if the user navigates to an attacker-created website.

tags | advisory, code execution, activex
advisories | CVE-2006-1172
SHA-256 | 847b6f1785975209852c8dfc4b78281784289bedcbf591c04c106ea438f64495
CA Security Advisory 34013
Posted May 6, 2006
Authored by Ken Williams, Computer Associates | Site ca.com

CAID 34013 - A potential vulnerability issue exists in our CAIRIM LMP solution for z/OS. CAIRIM is delivered as part of CA's z/OS Common Services, and the LMP component provides licensing services to many of CA's z/OS solutions. IBM Global Services discovered an integrity problem, which could be exploited by an expert user of a z/OS system that utilizes CA's CAIRIM LMP component. We worked with IBM Global Services to understand the nature of the problem and to make certain that the remedy we have now provided addresses the problem completely.

tags | advisory
SHA-256 | 25441e6a3e621cc379e0b1ebc1b28c21793d35d4bbe5423529a5dd2ede625cb1
invisionCBSQL.txt
Posted May 6, 2006
Authored by D3vil-0x1

Invision Community Blog is susceptible to SQL injection attacks.

tags | exploit, sql injection
SHA-256 | 102a07be00537fa9c1954db2ee583851e70eeb7275bac19e920a87ea837abd12
neo-Advisory-20.txt
Posted May 6, 2006
Authored by K4P0 | Site NeoSecurityTeam.net

CuteNews version 1.4.1 suffers from cross site scripting and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 2d3284ee43c5c18d1076a379f080ef8ec6f19ddd8dca6c281a69e3e7a8165290
modulesSQL2.txt
Posted May 6, 2006
Authored by Mr-X

modules name(Downloads) remote SQL injection exploitation details.

tags | exploit, remote, sql injection
SHA-256 | 13a0bba06b582746104b8ec1f9ceb014983dcc824cb0cf47bb6986e2efbd7e46
modulesSQL.txt
Posted May 6, 2006
Authored by Mr-X

modules name(Sections) remote SQL injection exploitation details.

tags | exploit, remote, sql injection
SHA-256 | c7dbb111fc6c70f5c5a9975281935e0246d081080dc9d982ec9c9ed1671699c7
nfsclient-0.9.tar.gz
Posted May 6, 2006
Authored by Jon DeVree

NFS client utility that runs completely in userspace.

tags | tool
systems | unix
SHA-256 | f797fdb6c547a9b8de2b5dacd6b96e5c2dba907584de82dbcaebb4e73287e4d7
webcalEnumerate.txt
Posted May 6, 2006
Authored by David Maciejak

WebCalendar is susceptible to user enumeration flaws.

tags | advisory
SHA-256 | 935103eb1980f6dfbf36877ebf7bdf6873490fa42f6e438f5f00cb6731e32120
SaPHPLession30.txt
Posted May 6, 2006
Authored by D3vil-0x1

SaPHPLesson version 3.0 is susceptible to arbitrary input and SQL injection flaws.

tags | exploit, arbitrary, sql injection
SHA-256 | e144d79e0133c5bf2f15a75932738453c41e8cd66291c9016c3171bf4a1e0b69
Page 1 of 3
Back123Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close