header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

Security Vulnerabilities in WP-Cumulus for WordPress

The Full Path Disclosure vulnerability allows an attacker to view the full path of the server, while the Cross-Site Scripting vulnerability allows an attacker to inject malicious code into the website. The code will execute after a user clicks on it, and it is a strictly social XSS.

Joomla com_mygallery 0 SQL-injection Vulnerability

The 'com_mygallery' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. Attackers can use a browser to exploit this issue.

Serenity Audio Player Playlist (.m3u) BOF

Serenity Audio Player is a playlist based audio player for Windows. It features a clean and simple interface with minimal overhead. A buffer overflow vulnerability exists in the application which can be exploited to execute arbitrary code on the target system. An attacker can send a specially crafted .m3u file to the victim which when opened in Serenity Audio Player, can lead to arbitrary code execution.

CSRF Vulnerability in Quick.Cart and Quick.CMS

There is a CSRF vulnerability in the delete functions of Quick.Cart and Quick.CMS. Deleting products, pages and orders is done through an HTTP GET function which although checked using javascript can be bypassed. An attacker creates an html page which calls a delete function using an img or iframe: <img src="http://server/Quick.Cart/admin.php?p=orders-delete&iOrder=2"; /> <iframe src="http://server/Quick.CMS/admin.php?p=p-delete&iPage=1";></iframe> The administrator of the vulnerable site then needs to visit this html page whilst logged into his/her site.

Denial of Service vulnerability in TYPSoft FTP Server

Denial of Service vulnerability exists in TYPSoft FTP Server when 'APPE' and 'DELE' commands are used in the same socket connection. If a user could log on the server successfully, taking the following steps will crash the ftp server which would lead to Denial of Service attack: 1.sock.connect((hostname, 21)) 2.sock.send('user %s' %username) 3.sock.send('pass %s' %passwd) 4.sock.send('PORT 127,0,0,1,122,107') 5.sock.send('APPE '+ test_string +'') 6.sock.send('DELE '+ test_string +'') 7.sock.close()

XM Easy Personal FTP Server 5.8.0 Denial of Service Vulnerability

XM Easy Personal FTP Server failed to handle more than 2000 files or folders in the root directory. If an attacker could log on the server, they could upload 2000 files or folders, close the current connection, and then use a FTP client to reconnect the server. This would cause the server to crash, leading to a Denial of Service.

PointComma <= 3.8b2 Remote File Include Vulnerability

PointComma version 3.8b2 is vulnerable to a Remote File Include vulnerability. The vulnerability exists in the 'includes/classes/pctemplate.php' file, where the 'pcConfig[smartyPath]' parameter is not properly sanitized before being used in a 'require' function. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing an arbitrary file from a remote server, which will be included and executed by the vulnerable script.

phptraverse <= 0.8.0 Remote File Include Vulnerability

A vulnerability exists in phptraverse version 0.8.0 and earlier, which allows a remote attacker to include a file from a remote location. The vulnerability is due to the assets/plugins/mp3_id/mp3_id.php script not properly sanitizing user-supplied input to the GLOBALS[BASE] parameter. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing an arbitrary file from a remote location.

OPT (Outreach Project Tool) <= 1.2.6 [CRM_path] Remote File Include Vulnerability

A vulnerability exists in OPT (Outreach Project Tool) version 1.2.6 and earlier, which allows a remote attacker to include a file from a remote location via the CRM_path parameter in the index.php file. An attacker can exploit this vulnerability to execute arbitrary code on the vulnerable system.

Recent Exploits: