PHP-charts v1.0 suffers from a code execution vulnerability in the index.php page. An attacker can exploit this vulnerability by sending a crafted HTTP request containing a malicious payload to the vulnerable server. If successful, the web service context will be displayed, usually SYSTEM.
By posting the following vector into a comment or a content post, a hidden iframe executes unrestricted javascript when viewed in edit mode (document.cookie is accessible). The attack vector is concealed when viewing the post normally and can be exploited by persuading the admin to edit a user's post or by them following a direct link, e.g.: http://website/node/4/edit.
This is the serva 32 Proof Of Concept exploit discovered and written by Sapling. At this time the exploit is only a denial of service but evidence show it may be controllable. The difficulty with controlling it at this point was the failure to overwrite the SEH chains or bypass them. The crash occurs when sending a message longer than 509 bytes long
userns_root_sploit.c is a proof-of-concept exploit for a privilege escalation vulnerability in the Linux kernel. The exploit uses the unshare() system call to create a new user namespace, and then uses the setresuid() system call to set the user ID to 0 (root). The exploit then executes a command with root privileges.
The application allows authorized administrator to perform certain sensitive actions via HTTP requests without making proper validity checks to verify the source of these HTTP requests. This can be exploited to perform any actions with administrator privileges, such as adding new administrator to the system. A remote attacker can create a specially crafted webpage, trick a logged-in administrator to open it and create new user with administrative privileges.
The RunRunLevel Web Security Research Team discovered several vulnerabilities in the OSSIM web interface. All web vulnerabilities are caused by lack/unproper input validation. The Web Security Reseach Team also found that OSSIM MySQL database was running with root privileges, allowing to a full system compromise of the OSSIM platform.
This module abuses the SAP NetWeaver SXPG_COMMAND_EXECUTE function, on the SAP SOAP RFC Service, to execute remote commands. This module needs SAP credentials with privileges to use the /sap/bc/soap/rfc in order to work. The module has been tested successfully on Windows 2008 64 bits and Linux 64 bits platforms.
This module abuses the SAP NetWeaver SXPG_CALL_SYSTEM function, on the SAP SOAP RFC Service, to execute remote commands. This module needs SAP credentials with privileges to use the /sap/bc/soap/rfc in order to work. The module has been tested successfully on Windows 2008 64 bits and Linux 64 bits platforms.
This exploit is for Linux 2.6.37-3.x.x x86_64 systems. It is a 100 line exploit which uses a combination of syscalls and memory manipulation to gain root privileges. It is based on a vulnerability in the perf subsystem of the Linux kernel. The exploit was first released in 2010 by sd@fucksheep.org and was updated in 2013. It is related to CVE-2013-2094.
After creating a txt file, open the created file and copy the AAA... string to clipboard and then paste it in the Search section. For better results, bring the program in Full Mode and in the Edit menu choose Match Path and then paste the string.
Services By CQR