An attacker can exploit these vulnerabilities by sending a specially crafted SQL code to the vulnerable parameter 'id' in the 'admin.php' script and by accessing the 'admin.php?action=editconfig' and 'admin.php?action=editop&id=1' scripts respectively.
A buffer overflow vulnerability exists in Free Download Manager 2.5/3.0 (Control Server) which could allow a remote attacker to execute arbitrary code on the target system. The vulnerability is due to a boundary error when handling specially crafted HTTP requests. An attacker could exploit this vulnerability by sending a specially crafted HTTP request to the vulnerable server. Successful exploitation could result in a denial of service condition or the execution of arbitrary code.
A Blind SQL Injection vulnerability has been discovered in S-CMS v2.0 Beta3. The vulnerability is located in the 'username' parameter of the 'login.php' page. Remote attackers can exploit this vulnerability to inject and execute arbitrary SQL commands in the application's database.
A vulnerability in Joomla com_media_library 1.5.3 allows remote attackers to include and execute arbitrary local files via a URL in the mosConfig_absolute_path parameter to toolbar_ext.php.
A vulnerability in the Joomla Component com_akobook allows an attacker to inject arbitrary SQL commands. This vulnerability is due to the lack of input validation in the 'gbid' parameter of the 'index.php' script when handling a 'reply' action. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL commands to the vulnerable application. Successful exploitation could result in unauthorized access to sensitive information or the execution of arbitrary SQL commands in the back-end database.
A vulnerability in Joomla com_booklibrary_1.5.2.4 allows an attacker to include a remote file via the mosConfig_absolute_path parameter in the toolbar_ext.php script.
Safari prior to version 4 may permit an evil web page to steal files from the local system. This is accomplished by mounting an XXE attack against the parsing of the XSL XML. To mount the attack, the attacker would serve a web page which has XML MIME type and requests to be styled by the evil stylesheet.
An SQL injection vulnerability exists in the Joomla Component com_portafolio (cid) which allows an attacker to execute arbitrary SQL commands via the 'cid' parameter in a 'viewcat' action to index.php. An attacker can exploit this vulnerability to gain access to the database and execute malicious code.
A vulnerability in Automated Link Exchange Portal Version 1.3 allows an attacker to bypass the login and change the profile of the admin by entering a cookie (javascript:document.cookie="userid=1;path=/";) and going to the login page (http://www.site.com/[path]/user.mainpage.php) and then changing the profile at http://www.site.com/[path]/user.edit.account.php
A vulnerability in DM FileManager 3.9.2 allows an attacker to gain administrative access by setting the USER, GROUPID, GROUP, and USERID cookies. The attacker can then access the admin.php page.
Services By CQR