libresolv's DNS packet handler suffered from heap out-of-bounds write to infinite-loop denial of service vulnerabilities. This is a proof of concept exploit from Google.
6505c0cb893baf4196eb16135d2af856db40e233dd1d7965e3bc7bd9551a1998PHP-Revista suffers from remote file inclusion, cross site scripting, credential bypass, and SQL injection vulnerabilities. Better put, it probably is not a healthy idea to use this software.
04a46e714d4bf1b3d4d79a0cb23f76acfb7c314e24ed1eff6e0dbe45a858eed1SMF version 1.1.7 suffers from a persistent cross site scripting vulnerability.
666c612a481b44ac32b5e98ab8d0d8335cd5d675b6e8ea695820051cfe3c2db5The Oracle Containers For Java (OC4J) in the Oracle Application Server 10g suffers from a directory traversal vulnerability.
d382fb99ab02805477ef1961d910f2d0495189ba45d6a79eff38e57289168967CSSH is a proof of concept CSS based history crawler.
c5fdc0c0ba7fc19c5b0e54a27dd3b63cddeb2a408d065320055d5198d0defaf4Whitepaper discussing privilege escalation vulnerability in the Symantec Altiris Deployment Solution.
2fc81172db8cad360b6b8a9a6ecafd03ebc2aeeecdb3406f9337639913e4d644Symantec Altiris Client Service versions 6.5.248, 6.5.299, and 6.8.378 local privilege escalation exploit. Based on the vulnerability noted in MS04-019.
f1cad553cb21404e91c8a9c6e6ccb9b9a40445cde887bdb7e08dc593a46a8c79Authentificator version 2.01 suffers from a SQL injection vulnerability.
e526ad4c8b11fe1cd5653bd4cb1f5f07138a84fd0a6d2efdddb07fe2eef1a25cssLinks version 1.22 suffers from multiple SQL injection vulnerabilities.
8909dc2fbdfd44acbaf0460c5370a69c24f21608ddc921752dcd01d293fbdf4fRevista version 1.1.2 suffers from remote file inclusion, SQL injection, administrative bypass, and cross site scripting flaws.
9e65a953957bef6efa3fcaa4ad816983f1a070563239302100796a1c8dbc8768X-Statics version 1.20 suffers from a SQL injection vulnerability.
5d6ec55ec926cebe86037a5ac5f9b2975c1a49ba11c9f7ba24256990057acfb8X-Protection version 1.10 suffers from a SQL injection vulnerability.
a2de4b513be1113137fbdd39f0e383ae7ae13ad16f41cc1cc341b155b4c300d2X-Poll version 1.10 suffers from a SQL injection vulnerability.
83019e3c2aa32e402f6e76a402dca0b5fab8033aa9bac7fe2b8e0c41ca689cdaTinyPHPForum suffers from cross site scripting, directory traversal, and direct administrator creation flaws. Exploit included.
883c87849f8ef65d5b053261e4d55b36caf63da073fbfb5291076622703045fcSQLiteWebAdmin suffers from SQL injection, remote file inclusion, and header spoofing vulnerabilities.
751b14a9e8e604a48ea7d67a65b163cf9f4b63c256af080264bfba1489d24f6bBanex version 2.21 suffers from SQL injection and remote file inclusion vulnerabilities.
ef776d1029079aacdf20da977f2961a037603a0ff1aa5388c5e4e72c5b48cd59Ajax Chat suffers from directory traversal and cross site scripting vulnerabilities.
7e45a8a66aba3b10533ceb8add1e2bcfc0642f01b3d8514b808ab6b1b8713e0aIt appears that a slew of various programs written in PHP suffer from full path disclosure issues.
57ab05eb50aeb458e9fab1a25a559ad1ce839d9d3d6bec5ae4da8a5dc1d3dfd2
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed