The vulnerability exists due to insufficient filtration of user-supplied data passed via the 'aid' and 'submit_id' parameters to '/PHP-Fusion/files/administration/submissions.php' script and 'aid' parameter to '/PHP-Fusion/files/administration/members.php' script. A remote attacker can execute arbitrary SQL commands in application's database and gain access to sensitive data.
The parameter “keywordphrase” is susceptible to a time-based blind SQL injection when doing a search for classifieds. The exploit can be done through sqlmap by copying the post request to a text file and running the sqlmap command.
ZTE ZXDSL 831CII suffers from an insecure direct object reference vulnerability that allows for authentication bypass. The modem usually serves html files & protects them with HTTP Basic authentication. however, the cgi files, does not get this protection. so simply requesting any cgi file (without no authentication) would give a remote attacker full access to the modem and then can easily be used to root the modem and disrupt network activities.
This exploit is a Denial of Service (DoS) attack against Internet Explorer (IE) versions 8 to 11. The exploit is triggered by a specially crafted HTML page containing a large number of nested div tags. When the page is opened in IE, the browser will become unresponsive and eventually crash.
Login to system and go to 'Profile' section. Now you can upload any file or shell file from 'Profile Image' section. For Stored XSS, Login to system and go to 'Profile' section. Now you can run any XSS payloads on all profile inputs. Sample Payload for XSS: '><script>alert(document.cookie);</script>'
A vulnerability in the guest network web interface of the Belkin N750 DB Wi-Fi Dual-Band N+ Gigabit Router with firmware F9K1103_WW_1.10.16m, allows an unauthenticated remote attacker to gain root access to the operating system of the affected device. Successful exploitation of the vulnerability enables the attacker to gain full control of the affected router.
This module exploits a post-auth vulnerability found in X7 Chat versions 2.0.0 up to 2.0.5.1. The vulnerable code exists on lib/message.php, which uses preg_replace() function with the /e modifier. This allows a remote authenticated attacker to execute arbitrary PHP code in the remote machine.
A vulnerability within the vmx86 driver allows an attacker to specify a memory address within the kernel and have the memory stored at that address be returned to the attacker.
Attackers are able to perform denial-of-service attacks against the Endpoint Protection Manager which directly impacts the effectiveness of the client-side endpoint protection. Furthermore, session identifiers of users can be stolen to impersonate them and gain unauthorize access to the Endpoint Protection Manager.
This module exploits a memory corruption vulnerability on the Citrix NetScaler Appliance. The vulnerability exists in the SOAP handler, accessible through the web interface. A malicious SOAP requests can force the handler to connect to a malicious NetScaler config server. This malicious config server can send a specially crafted response in order to trigger a memory corruption and overwrite data in the stack, to finally execute arbitrary code with the privileges of the web server running the SOAP handler. This module has been tested successfully on the NetScaler Virtual Appliance 450010.
Services By CQR