A directory traversal vulnerability was found in Mongoose version 2.11. This vulnerability allows an attacker to access files outside of the intended directory.
This exploit allows an attacker to traverse directories and access files outside of the intended directory structure. The exploit is performed using the DotDotPwn tool with specific parameters.
The vulnerability allows an unprivileged attacker to read files and delete files & folders whom he has no permissions to.
The vulnerability allows an unprivileged attacker to read files and delete files & folders whom he has no permissions to.
This is a SQL injection exploit for the mygamingladder MGL Combo System version 7.5 game.php script. It allows an attacker to inject SQL commands and potentially gain unauthorized access to the database.
The Home FTP Server software allows for directory traversal, which can be exploited by an attacker to access files outside of the intended directory structure.
This exploit takes advantage of a SEH overwrite vulnerability in the RealWin SCADA system. By sending a specially crafted request to the target system, an attacker can overwrite the Structured Exception Handler (SEH) and gain control of program execution.
The AlstraSoft E-Friends 4.96 software is vulnerable to arbitrary file upload, multiple local file inclusion, and multiple SQL injection attacks. The software does not properly sanitize input parameters before using them in SQL queries and PHP's upload functions. An attacker can exploit these vulnerabilities to upload and execute arbitrary PHP code, include arbitrary files from local resources, and perform SQL injection attacks.
The vulnerability exists due to failure in the "/index.php" script to properly sanitize user-supplied input in nova_lang variable from cookie.
The phpLiterAdmin application is affected by an authentication bypass vulnerability. The issue occurs due to improper sanitization of user-supplied input during authentication. Exploiting this vulnerability allows unauthorized access to any known account by setting specially crafted cookies.
Services By CQR