Showing 1 - 11 of 11

Files Date: 2011-08-21 to 2011-08-22

Debian Security Advisory 2297-1: Posted Aug 21, 2011; Authored by Debian | Site debian.org; Debian Linux Security Advisory 2297-1 - Several vulnerabilities have been discovered in Icedove, an unbranded version of the Thunderbird mail/news client.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2011-0084, CVE-2011-2378, CVE-2011-2981, CVE-2011-2982, CVE-2011-2983, CVE-2011-2984; SHA-256 | bf80bb2acbfee25ec2d61f3cea47b4dcc44dfe0a8b8e4b570d6578844a6e66ee; Download | Favorite | View

OneFileCMS 1.1.1 Code Execution: Posted Aug 21, 2011; Authored by mr.pr0n; OneFileCMS version 1.1.1 suffers from a remote code execution vulnerability.; tags | exploit, remote, code execution; SHA-256 | 568916ae1bfa0785b4f38ed90417d0bd60f364698078a6fb9c0a9e5a505ebbcd; Download | Favorite | View

WordPress UnGallery 1.5.8 File Disclosure: Posted Aug 21, 2011; Authored by Miroslav Stampar; WordPress UnGallery plugin versions 1.5.8 and below suffer from a local file disclosure vulnerability.; tags | exploit, local, info disclosure; SHA-256 | 1cdf69a881bccc8eeaa8b5bbb348a5650b9476b63df300c2e403582932f9dbca; Download | Favorite | View

WordPress Block-Spam-By-Math-Reloaded Plugin Bypass: Posted Aug 21, 2011; Authored by Tiago Ferreira, Heyder Andrade | Site metasploit.com; WordPress authentication brute force and user enumeration utility for Metasploit.; tags | exploit; advisories | CVE-2009-2335, OSVDB-55713; SHA-256 | 53dfbc1d57cd5b6f8db8a14f4805dbb9ee5be66043bb48948f6bbf77a879d57d; Download | Favorite | View

HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Remote Code Execution: Posted Aug 21, 2011; Authored by Andrea Micalizzi, juan vazquez | Site metasploit.com; This Metasploit module allows remote attackers to place arbitrary files on a users file system by abusing via Directory Traversal attack the "saveXML" method from the "XMLSimpleAccessor" class in the HP Easy Printer HPTicketMgr.dll ActiveX Control (HPTicketMgr.dll 2.7.2.0). Code execution can be achieved by first uploading the payload to the remote machine embedding a vbs file, and then upload another mof file, which enables Windows Management Instrumentation service to execute the vbs. Please note that this module currently only works for Windows before Vista.; tags | exploit, remote, arbitrary, code execution, activex; systems | windows; advisories | CVE-2011-2404, OSVDB-74510; SHA-256 | 84e0285d988e56bb5f1d65fe424e699563286b8c897e9124e79191ab37a3ba2d; Download | Favorite | View

Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability: Posted Aug 21, 2011; Authored by MC | Site metasploit.com; This Metasploit module exploits an authentication bypass vulnerability in login.php. In conjunction with the authentication bypass issue, the 'jlist' parameter in property_box.php can be used to execute arbitrary system commands. This Metasploit module was tested against Oracle Secure Backup version 10.3.0.1.0; tags | exploit, arbitrary, php, bypass; advisories | CVE-2010-0904; SHA-256 | a6b9f81b959d5734b4b0566c794ef98effe3e6416939923022fc0bcd168099f4; Download | Favorite | View

Symantec System Center Alert Management System (xfr.exe) Arbitrary Command Execution: Posted Aug 21, 2011; Authored by MC | Site metasploit.com; Symantec System Center Alert Management System is prone to a remote command-injection vulnerability because the application fails to properly sanitize user-supplied input.; tags | exploit, remote; advisories | CVE-2009-1429, OSVDB-54157; SHA-256 | 95f14312377294847b6443cafaea422eaf213f3a09cd52c6d7c601bcebfb6aee; Download | Favorite | View

Symantec System Center Alert Management System (hndlrsvc.exe) Arbitrary Command Execution: Posted Aug 21, 2011; Authored by MC | Site metasploit.com; Symantec System Center Alert Management System is prone to a remote command-injection vulnerability because the application fails to properly sanitize user-supplied input.; tags | exploit, remote; advisories | OSVDB-66807; SHA-256 | 232e78f8e6e5a5694a725d2f5a4b7ce93a4095155e0009240604e9174b7559f1; Download | Favorite | View

OneFileCMS 1.1.1 Cross Site Request Forgery / Cross Site Scripting: Posted Aug 21, 2011; Authored by mr.pr0n; OneFileCMS version 1.1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; SHA-256 | a1620e9581fa597f9b0bb5213157d28b206572797c7ad1b7886b07efbef3c4d1; Download | Favorite | View

MediaFire Cross Site Scripting: Posted Aug 21, 2011; Authored by Codeine; MediaFire suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | e5720e6683905d5be3a308204c542c1d01288ceb234af11b1949135a8f567d85; Download | Favorite | View

Dasar-Dasar Keamanan Di WordPress: Posted Aug 21, 2011; Authored by tempe_mendoan | Site devilzc0de.org; This is a basic tutorial on web security with WordPress. Written in Indonesian.; tags | paper, web; SHA-256 | ded0305c58bc063ac61f33521b9077d2d905297a32388dbe1b8c6632649417ee; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days