The Ignition 1.3 version is vulnerable to remote code execution. Attackers can overwrite the settings.php file by sending a specially crafted POST request and injecting malicious code into one of the variables. This allows attackers to execute arbitrary commands on the target server.
The Joomla Component My Car has multiple vulnerabilities including XSS, Information Disclosure, and Possible SQL Injection. The XSS vulnerability can be exploited by manipulating the 'modveh' parameter in the 'index.php?option=com_mycar&task=1&pagina=0&ordine=preveh&modveh=[XSS]' URI. The Information Disclosure vulnerability can be exploited by manipulating the parameters and URLs, which reveal SQL errors and website path information. The Possible SQL Injection vulnerability can be triggered by using the 'index.php?option=com_mycar&task=1&pagina=-1' URI.
This is a local buffer overflow exploit for PhotoFiltre Studio X .tif files. It allows an attacker to overwrite the seh handler with a pop pop ret instruction and overwrite the next seh with a jmp ebp instruction. The exploit then finds the exact location ebp points to and writes a jmp 0x40 bytes instruction. This exploit does not have space for shellcode, so a jmp ebp option is chosen instead of an egghunter. The exploit is designed for MS Windows xp pro sp3.
The Openurgence vaccin 1.03 software is vulnerable to multiple file inclusion vulnerabilities, which can be exploited by remote or local attackers to include arbitrary files. This can lead to remote code execution, information disclosure, or denial of service attacks.
The Joomla Magic Updater component (com_joomlaupdater) is vulnerable to a Local File Inclusion (LFI) vulnerability. This vulnerability can be exploited by an attacker to read arbitrary files on the server.
The Direct News 4.10.2 script is vulnerable to multiple remote file inclusion vulnerabilities. The affected files include 'menu.php', 'update_content.php', 'class.backup.php', and 'lib.menu.php'. These vulnerabilities allow an attacker to include arbitrary remote files by manipulating the 'rootpath' or 'adminroot' parameters. This can lead to remote code execution and compromise the security of the application.
The ItSecTeam has discovered a blind SQL injection vulnerability in PHP Classifieds version 7.5. The vulnerability allows an attacker to inject SQL code through the 'bid' parameter in the 'ad_click.php' file. The vulnerable code fails to properly sanitize user input, allowing the attacker to execute arbitrary SQL queries on the database.
This vulnerability is a DoS vulnerability that can be exploited by an attacker to cause an access violation exception in the target system. The vulnerability is caused by a flaw in the target object's ShowDlg function, which can be triggered by passing a specially crafted argument. This results in a memory read attempt at the address 0x00000020, leading to an access violation exception (0xC0000005).
This vulnerability allows an attacker to execute arbitrary SQL queries in the Joomla component com_doqment by injecting malicious code in the cid parameter. By exploiting this vulnerability, an attacker can access sensitive information from the Joomla database.
The Half-Life Client is prone to a remotely exploitable buffer overflow vulnerability. The issue occurs in the client connection routine, used by the client to negotiate a connection to the Half-Life game server. Due to a lack of sufficient bounds checking, a malicious server may execute arbitrary code on an affected client.
Services By CQR