RaksoCT Web Design is vulnerable to multiple SQL Injection attacks. The vulnerable parameters are 'gallery_details.asp?a_id', 'news.asp?intSeq' and 'news.asp?id'. Blind SQL injection can be performed by appending ' and '1'='1' for true and ' and '0'='1' for false to the vulnerable parameters.
A directory traversal vulnerability was discovered in iPhone PDF Reader Pro 2.3. This vulnerability allows an attacker to access files and folders outside of the application's root directory. The vulnerability was tested on an iPhone 4 running IOS 4.0.1 and was found to be of high risk.
This exploit allows an attacker to traverse the directory structure of the iPhone Guitar software. The exploit is written in Python and uses the urllib2 library to access the vulnerable files. The exploit can be used to access the Phone Book, Safari Fav, Users Email Info, Network Informations, and Passwd File.
A directory traversal vulnerability exists in iPhone ishred 1.93. This vulnerability allows an attacker to access sensitive files on the system. The vulnerability is due to insufficient input validation when handling requests. An attacker can exploit this vulnerability by sending a specially crafted request containing directory traversal sequences. This will allow the attacker to access sensitive files on the system.
The program suffers from a buffer overflow (SEH) vulnerability when opening playlist file (.m3u), as a result of adding extra bytes.
The vulnerability exists due to failure in the "/wp-content/plugins/iwant-one-ihave-one/updateAJAX.php" script to properly sanitize user-supplied input in "post_id" variable. Attacker can alter queries to the application SQL database, execute arbitrary queries to the database, compromise the application, access or modify sensitive data, or exploit various vulnerabilities in the underlying SQL database. User can execute arbitrary JavaScript code within the vulnerable application. Successful exploitation of this vulnerability could result in a compromise of the application, theft of cookie-based authentication credentials, disclosure or modification of sensitive data.
The vulnerability exists due to failure in the 'index.php' script to properly sanitize user-supplied input in 'search_max' variable. Attacker can alter queries to the application SQL database, execute arbitrary queries to the database, compromise the application, access or modify sensitive data, or exploit various vulnerabilities in the underlying SQL database.
This exploit is a remote buffer overflow vulnerability in the NetWare NFS Mount Daemon. It allows an attacker to send a specially crafted packet to the target port, which can be used to execute arbitrary code on the target system. The vulnerability was discovered by Protek Research Lab in 2011 and affects versions of NetWare prior to 6.5 SP8.
A stored XSS vulnerability exists due to 'search Query' variable is displayed & logged unsanitized in the 'User Searches' section in the admin Dashboard, allowing an attacker to inject malicious HTML code.
The user must have 'contributer' priv atleast or whatever role the admin decides would be suitable for event submission, failure to sanitize the 'Notes' field in the 'Add A Show' section under 'GigPress' Dashboard allows an attacker to inject malicious HTML code, attacking any user viewing the page where the malicious show is posted.
Services By CQR