ClipShare 4.1.1 is vulnerable to multiple SQL Injection vulnerabilities. The vulnerabilities exist in the gvideos.php, channel_detail.php, uprofile.php and ufavour.php files, where the gid, chid, UID parameters are not properly sanitized before being used in an SQL query. An attacker can exploit these vulnerabilities by sending malicious SQL queries to the vulnerable parameters. To exploit this vulnerability, the MAGIC_QUOTES_GPC directive must be turned off on the server side (php.ini).
A blind SQL injection vulnerability exists in PsychoStats 3.2.2b. An attacker can send a maliciously crafted HTTP request to the awards.php page with an injected SQL query in the d parameter. This can be exploited to extract information from the database or execute arbitrary SQL commands.
This module exploits a code execution flaw in HP Intelligent Management Center. The vulnerability exists in the mibFileUpload which is accepting unauthenticated file uploads and handling zip contents in a insecure way. Combining both weaknesses a remote attacker can accomplish arbitrary file upload. This module has been tested successfully on HP Intelligent Management Center 5.1 E0202 over Windows 2003 SP2.
There is no CSRF protection on the mathjax option page. This allows an attacker to specify arbitrary javascript that will be loaded with each post and also loaded onto the homepage of the wordpress blog.
This module exploits an authenticated command injection vulnerability in the Mutiny appliance. Versions prior to 4.5-1.12 are vulnerable. In order to exploit the vulnerability the mutiny user must have access to the admin interface. The injected commands are executed with root privileges.
This exploit allows an attacker to create an executable file on the victim's system by using the ActiveX object 'E68E401C-7DB0-4F3A-88E1-159882468A79' and the 'OpenFile' and 'AppendString' methods. The exploit code creates a file called 'the_doctor_is_in.hta' in the 'Startup' folder of the 'All Users' profile, and then appends a malicious script to it. The malicious script will execute 'CALC.EXE' on the victim's system.
This exploit allows an attacker to create an executable file on the target system using the LiquidXML Studio 2012 ActiveX control. The exploit uses the OpenFile and AppendString methods of the ActiveX control to create a malicious HTA file in the startup folder of the target system. The malicious HTA file contains a script that executes the calculator application on the target system.
This module allows remote command execution on the PHP IRC bot Ra1NX by using the public call feature in private message to covertly bypass the authentication system.
ClipShare 4.1.1 is vulnerable to Blind SQL Injection in the gmembers.php script. This vulnerability is exploitable if the MAGIC_QUOTES_GPC directive is turned off on the server side. An attacker can inject malicious SQL code into the 'gid' parameter of the gmembers.php script, which can be used to extract data from the database.
IconCool MP3 WAV Converter is vulnerable to a stack buffer overflow vulnerability. An attacker can exploit this vulnerability by creating a malicious MP3 file with a large amount of data and sending it to the victim. When the victim opens the file, the stack buffer is overflowed and the attacker can execute arbitrary code on the victim's system.
Services By CQR