VUPlayer <=2.49 is vulnerable to a buffer overflow vulnerability when a specially crafted .M3u file is opened. This can be exploited to execute arbitrary code by overwriting the EIP register with a pointer to a JMP ESP instruction in BASSWMA.dll. The exploit code contains a payload from Metasploit which executes calc.exe.
An attacker can download the database of the vulnerable application by accessing the admin_backup.php page.
This exploit allows an attacker to bypass authentication and gain access to the configuration of the modem, and get PPPOE user & password. The attacker can access the modem by going to http://192.168.1.1/vpivci.cgi.
A vulnerability in the bestdatingscript allows an attacker to upload a malicious shell to the server. The attacker can register an account, log in, and then navigate to the upload.php page. The attacker can then upload a malicious shell, such as Evil.php, to the photos directory. This shell can then be used to execute arbitrary code on the server.
An SQL injection vulnerability exists in CBAuthority - ClickBank Affiliate Management. An attacker can send a specially crafted HTTP request containing malicious SQL statements to the vulnerable application. This can allow the attacker to gain access to the application's database and potentially compromise the application and its data.
A remote SQL injection vulnerability exists in the PHP Email Manager script. An attacker can exploit this vulnerability to gain access to the application and execute arbitrary SQL commands on the underlying database. The vulnerability is due to insufficient sanitization of user-supplied input to the 'ID' parameter in the 'remove.php' script. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL statements to the vulnerable script. Successful exploitation of this vulnerability can result in unauthorized access to the application and compromise of the underlying database.
A user can register in the site and then go to the Add New Events page. From there, they can upload a shell.php file.
ProSysInfo TFTP Server TFTPDWIN 0.4.2 is vulnerable to a buffer overflow vulnerability. An attacker can exploit this vulnerability by sending a specially crafted packet to the vulnerable server. This will cause a stack-based buffer overflow, allowing the attacker to execute arbitrary code on the vulnerable system.
KOL Player 1.0 is vulnerable to a local buffer overflow vulnerability when a specially crafted .mp3 file is opened. The vulnerability is caused due to a boundary error when handling the HTTP header of the .mp3 file. This can be exploited to cause a stack-based buffer overflow by sending a specially crafted .mp3 file with an overly long HTTP header.
phpfreeBB 1.0 is vulnerable to a Blind SQL Injection vulnerability. This vulnerability is due to the application failing to properly sanitize user-supplied input to the 'id' and 'year/archive' parameters of the 'permalink.php' and 'index.php' scripts. An attacker can exploit this vulnerability to manipulate SQL queries by injecting arbitrary SQL code. This may allow the attacker to access or modify sensitive data in the back-end database.
Services By CQR