exploit the possibilities
Showing 1 - 25 of 30 RSS Feed

Files Date: 2010-04-09

Viennabux Beta Forum SQL Injection
Posted Apr 9, 2010
Authored by Easy Laster

The Viennabux Beta Forum suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a617fcd8893a21d8df8fd6f935ec24fb
Zero Day Initiative Advisory 10-068
Posted Apr 9, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-068 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required in that a target must open a malicious media file or visit a malicious page. The specific flaw exists within the parsing of H.263 media files. The code within QuickTime trusts various values from MDAT structures and uses them during operations on heap memory. By crafting specific values the corruption can be leveraged to execute remote code under the context of the user running the application.

tags | advisory, remote, arbitrary
systems | apple
advisories | CVE-2010-0062
MD5 | da0d14a38e5682af8fd20070c61434d9
Joomla PCChess Local File Inclusion
Posted Apr 9, 2010
Authored by TEAMELITE

The Joomla PCChess component versions prior to 0.9 suffer from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | c00df22eaa269b28f7abe4a2a08690cd
GNU SIP Witch Telephony Server 0.8.0
Posted Apr 9, 2010
Authored by David Sugar | Site gnutelephony.org

GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP rver, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate.

Changes: Introduction of a libnotify plugin and support for the ucommon 2.1 ABI.
tags | telephony
MD5 | fe044035450abe4b5717f98faf3a3156
JAVA Web Start Arbitrary Command-Line Injection
Posted Apr 9, 2010
Authored by Ruben Santamarta | Site reversemode.com

JAVA Web Start suffers from an arbitrary command-line injection vulnerability.

tags | exploit, java, web, arbitrary
MD5 | 45abd8f02c35aa152d8e879ad2a15203
Joomla PowerMail Pro 1.5.3 Local File Inclusion
Posted Apr 9, 2010
Authored by AntiSecurity

The Joomla PowerMail Pro component version 1.5.3 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 6433e170d0349e0f05f6ac7db3216946
Pulse CMS Cross-Site Request Forgery
Posted Apr 9, 2010
Site secunia.com

Secunia Research has discovered a vulnerability in Pulse CMS, which can be exploited by malicious people to conduct cross-site scripting attacks. The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to e.g. upload or delete image files and create blocks if a logged-in user visits a malicious web site. Pulse CMS basic versions 1.2.2 and 1.2.3 are affected.

tags | advisory, web, xss, csrf
advisories | CVE-2010-0992
MD5 | 0358c7a23df0c4e04e94771cd81b7cc8
Pulse CMS Arbitrary File Upload
Posted Apr 9, 2010
Site secunia.com

Secunia Research has discovered a vulnerability in Pulse CMS, which can be exploited by malicious users to compromise a vulnerable system. An error in the validation of uploaded image files can be exploited to upload files with an arbitrary extension to a folder within the web root. This can be exploited to upload and execute arbitrary PHP code. Successful exploitation requires authentication. Pulse CMS basic versions 1.2.2 and 1.2.3 are affected.

tags | advisory, web, arbitrary, root, php
advisories | CVE-2010-0993
MD5 | ffae58df4cfdea31c67e9fa56010a619
jEdit Local File Inclusion
Posted Apr 9, 2010
Authored by eidelweiss

jEdit suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | ae436ac288a28e65f6452197ee3cd1a3
Ubuntu Security Notice 624-2
Posted Apr 9, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 624-2 - USN-624-1 fixed a vulnerability in PCRE. This update provides the corresponding update for Erlang. Original advisory details: Tavis Ormandy discovered that the PCRE library did not correctly handle certain in-pattern options. An attacker could cause applications linked against pcre3 to crash, leading to a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2008-2371
MD5 | 240a99dd7fea3d1af0d4a1dd323b0b72
Secunia Security Advisory 39287
Posted Apr 9, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in TYPO3, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | e54f4f9ff1ccac231f9254cb5772d402
Secunia Security Advisory 39046
Posted Apr 9, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Secunia Research has discovered some vulnerabilities in Pulse CMS, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site request forgery attacks.

tags | advisory, vulnerability, csrf
MD5 | f856ebe5064f6e108d70b1995bab7753
Joomla Articles SQL Injection
Posted Apr 9, 2010
Authored by Pratul Agrawal

The Joomla Articles component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e589d93b544750bcfdee79ab3bacde25
Ubuntu Security Notice 926-1
Posted Apr 9, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 926-1 - It was discovered that ClamAV did not properly verify its input when processing CAB files. A remote attacker could send a specially crafted CAB file to evade malware detection and also cause a denial of service via application crash.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2010-0098
MD5 | e373b87283c397356b7a83fcd6a29ed3
Joomla Foobla Suggestions Local File Inclusion
Posted Apr 9, 2010
Authored by Chip D3 Bi0s

The Joomla Foobla Suggestions component version 1.5.1.2 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | a48d489def350e404e0ec0b2a0e60466
Joomla JA Voice Local File Inclusion
Posted Apr 9, 2010
Authored by kaMtiEz | Site indonesiancoder.com

The Joomla JA Voice component suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | bac76681b01ae8880c40e260b07ef863
Writing Custom Generic Encoders With No NULL Bytes
Posted Apr 9, 2010
Authored by Jiten Pathy

Whitepaper called Writing Custom Generic Encoders With No NULL Bytes.

tags | paper
MD5 | bec46f972b3969bac13679660f00499d
Miniature Java Web Sever 1.71 Path Traversal / Open Redirect
Posted Apr 9, 2010
Authored by cp77fk4r

Miniature Java Web Server versions 1.71 and below suffer from path traversal and open redirect vulnerabilities.

tags | exploit, java, web, vulnerability, file inclusion
MD5 | 7f5383e4ba0b2f96efd9a507dcf84c2c
MKPortal Recommend Cross Site Scripting
Posted Apr 9, 2010
Authored by Inj3ct0r

The MKPortal Recommend module suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e956fa79d6368fb8ef6e94e9a2e685c4
Kubeit CMS Remote SQL Injection
Posted Apr 9, 2010
Authored by Phenom

Kubeit CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a36cdb6e025090bf7a046e5c352f5c47
CompleteFTP 3.3.0 Memory Consumption Denial Of Service
Posted Apr 9, 2010
Authored by Jonathan Salwan

CompleteFTP version 3.3.0 remote memory consumption denial of service exploit.

tags | exploit, remote, denial of service
MD5 | 2b5050c9c5446a83513e6581353e2ad3
Man-In-The-Middle Proxy 0.2
Posted Apr 9, 2010
Site corte.si

MITMProxy is an interactive, SSL-aware HTTP proxy that allows viewing, modification and replaying of requests.

tags | web
MD5 | 14e856ae95434947be1bd7e51cd0c9b1
Ubuntu Security Notice 925-1
Posted Apr 9, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 925-1 - It was discovered that MoinMoin did not properly sanitize its input when processing Despam actions, resulting in cross-site scripting (XSS) vulnerabilities. If a privileged wiki user were tricked into performing the Despam action on a page with a crafted title, a remote attacker could exploit this to execute JavaScript code. It was discovered that the TextCha protection in MoinMoin could be bypassed by submitting a crafted form request. This issue only affected Ubuntu 8.10.

tags | advisory, remote, javascript, vulnerability, xss
systems | linux, ubuntu
advisories | CVE-2010-0828, CVE-2010-1238
MD5 | 5ab9bebecbaa8407945a60d971442a44
CMS SiteLogic SQL Injection
Posted Apr 9, 2010
Authored by MustLive

CMS SiteLogic suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection, file inclusion
MD5 | bc47a674c19e2802d31321bb856ec158
Joomla Webee 2.0 Local File Inclusion
Posted Apr 9, 2010
Authored by AntiSecurity

The Joomla Webee component version 2.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | c946087800a87e3e968847d527544b69
Page 1 of 2
Back12Next

File Archive:

August 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    10 Files
  • 2
    Aug 2nd
    8 Files
  • 3
    Aug 3rd
    2 Files
  • 4
    Aug 4th
    1 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    79 Files
  • 7
    Aug 7th
    16 Files
  • 8
    Aug 8th
    11 Files
  • 9
    Aug 9th
    10 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    6 Files
  • 12
    Aug 12th
    26 Files
  • 13
    Aug 13th
    15 Files
  • 14
    Aug 14th
    19 Files
  • 15
    Aug 15th
    52 Files
  • 16
    Aug 16th
    11 Files
  • 17
    Aug 17th
    1 Files
  • 18
    Aug 18th
    2 Files
  • 19
    Aug 19th
    18 Files
  • 20
    Aug 20th
    19 Files
  • 21
    Aug 21st
    17 Files
  • 22
    Aug 22nd
    9 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close