The device should be authorised on an access point. For attack realisation is necessary to send DeAuth a package on the attacked device (to throw out it from an access point), then to continue to send packages on the device. The Device is crashed off right after repeated authorisation on an access point. Vulnerability is fast shown at activity on WLAN. I specify a harmful code: ./aireplay-ng -x 1024 -0 230 -a $ap -c $target $iface. Added: the vulnerable device: Nokia N82.
A vulnerability exists in the way Personal FTP Server handles multiple RETR commands with overly long filenames. When confronted with such consecutive requests the server will crash.
Free PHP VX Guestbook version 1.06 is vulnerable to an insecure cookie handling vulnerability. This vulnerability allows an attacker to gain administrative access to the guestbook. An attacker can exploit this vulnerability by setting the admin_name and admin_pass cookies to 1.
An attacker can download the database of the vulnerable application by accessing the backupdb.php page. This page is accessible without authentication and allows an attacker to download the database of the vulnerable application.
A remote SQL injection vulnerability was discovered in Linkarity (link.php). An attacker can exploit this vulnerability by sending a crafted HTTP request containing a malicious SQL query to the vulnerable application. This can allow the attacker to gain access to sensitive information stored in the database.
An attacker can exploit a SQL injection vulnerability in FoT Video scripti V1.1 Beta to read the username and password (in MD5 hash) from the database.
fphpSmartCom v. 0.2 is vulnerable to Local File Inclusion and SQL Injection. An attacker can exploit this vulnerability by sending a crafted HTTP request containing malicious code to the vulnerable application. This can allow the attacker to gain access to sensitive information or execute arbitrary code on the server.
Talkback 2.3.6 is vulnerable to Local File Inclusion and PHPInfo Disclosure. An attacker can exploit this vulnerability to include local files and disclose sensitive information such as the PHP configuration.
Sports Clubs Web Panel 0.0.1 is vulnerable to a remote game delete exploit. The vulnerability exists due to insufficient sanitization of user-supplied input in the 'id' parameter of the 'draw-delete.php' script. An attacker can exploit this vulnerability to delete games from the database.
pLink 2.07 is vulnerable to Blind SQL Injection. This exploit allows an attacker to extract the username and password of the admin panel. The vulnerability is due to the lack of proper input validation in the application. An attacker can exploit this vulnerability by sending malicious SQL queries to the application. This can be done by appending the malicious SQL query to the URL of the application.
Services By CQR