Auto Dealership & Vehicle Showroom WebSys 1.0 suffers from multiple vulnerabilities. POC 1 demonstrates persistent cross-site scripting by injecting a payload into the profile update feature. POC 2 shows how an attacker can perform CSRF attacks to change user authentication and modify admin page settings. POC 3 showcases an authentication bypass vulnerability in the admin panel.
The ActiveKB NX 2.? software, powered by ActiveKB Knowledgebase Software, is vulnerable to SQL Injection attacks. This allows an attacker to execute arbitrary SQL commands through the 'catId' parameter in the 'index.php' file. By exploiting this vulnerability, an attacker can bypass authentication, access sensitive information, modify the database, or perform other malicious activities.
A vulnerability in MikroTik Version 6.41.4 could allow an unauthenticated remote attacker to exhaust all available CPU and all available RAM by sending crafted FTP requests on port 21 that begins with many '�' characters, preventing the affected router from accepting new FTP connections. The router will reboot after 10 minutes, logging a "router was rebooted without proper shutdown" message.
The Neuron News 1.0 portal is vulnerable to local file inclusion. An attacker can exploit this vulnerability by supplying a malicious file path in the 'q' parameter of the index.php page. This can lead to the inclusion of arbitrary files from the target system, potentially allowing the attacker to read sensitive information or execute malicious code.
By default, LabF nfsAxe 3.7 installs to "C:UsersPublicProgram FilesLabF.comnfsAxe" and installs a service called "XwpXSetSrvnfsAxe service". By default in Windows with Public Folder sharing enabled, the permissions on any file/folder under "C:UsersPublic" is Full Control for Everyone. This means unprivileged users have the ability to add
This exploit allows an attacker to download an arbitrary file on the user's pc using the 'GetFile()' method in the CYFT Object (ft60.dll) in Yahoo! Messenger 8.1.0.421. Remote execution depends on Internet Explorer settings, while local execution works very well.
The web interface of the Parallels Remote Application Server is vulnerable to Path Traversal. The vulnerability exists due to improper validation of the file path when requesting a resource under the 'RASHTML5Gateway' directory. A remote, unauthenticated attacker could exploit this weakness to read arbitrary files from the vulnerable system using path traversal sequences ('..\').
The SimpCMS website is vulnerable to remote SQL injection. By manipulating the 'keyword' parameter in the search area, an attacker can inject malicious SQL code and retrieve sensitive information from the database. The vulnerability allows union-based SQL injection, enabling the attacker to extract data from different database tables. Examples of queries that can be executed are provided in the exploit section.
It’s possible to create NPFS symlinks as a low IL or normal user and the implementation doesn’t behave in a similar manner to other types of Windows symlinks leading to dangerous behavior or EoP.
The vulnerability allows remote attackers to include arbitrary files via a crafted PHPFFL_FILE_ROOT parameter in the livedraft.php and admin.php scripts.
Services By CQR