The Oracle Application Framework supports a diagnostic and developer mode feature that are intended to be enabled from developer or administrative interfaces. However, any user can manually enable the modes by setting the 'OADiagnostic' or 'OADeveloperMode' cookies to '1'.
Cydia Repo Manager is vulnerable to Cross-Site Request Forgery (CSRF) attacks. An attacker can craft a malicious HTML form and submit it to the vulnerable application. This form can be used to perform administrative actions such as creating a new user, changing the password of an existing user, or uploading a malicious file. The malicious form can be hosted on any website and can be used to target users of the vulnerable application. The malicious form can also be sent via email or instant messaging.
A SQL injection vulnerability exists in CMS snews, which allows an attacker to execute arbitrary SQL commands via the 'id' parameter in the 'snews.php' script. An attacker can exploit this vulnerability to gain access to sensitive information such as usernames and passwords stored in the database.
This module exploits a vulnerability found in FreeSSHd <= 1.2.6 to bypass authentication. You just need the username (which defaults to root). The exploit has been tested with both password and public key authentication.
Malformed GET Request causes the crash
Malformed QueryName causes the crash
SQLi p0c: http://localhost/phpshop 2.0/?page=admin/function_list&module_id=11' union select 1,database(),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 -- http://localhost/phpshop 2.0/?page=shop/flypage&product_id=1087'/**/union/**/select/**/1,1,1,1,1,password,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,username/**/from/**/auth_user_md5--
Input passed via the 'go' parameter in 'derefer.php' script is not properly verified before being used to redirect users. This can be exploited to redirect a user to an arbitrary website e.g. when a user clicks a specially crafted link to the affected script hosted on a trusted domain.
An Attacker can create a sqlite Database with a php extension and insert PHP Code as text fields. When done the Attacker can execute it simply by access the database file with the Webbrowser.
Colloquy is a Mac OS X Internet Chat client. It is vulnerable to a denial of service attack. The attack is triggered when the client receives a specially crafted packet. The packet contains a payload that causes the client to freeze.
Services By CQR