A remote SQL Injection vulnerability is detected on LandShops Web Application v0.9.2. The vulnerability allows an attacker (remote) or local low privileged user account to inject/execute own sql commands on the affected application dbms. Successful exploitation of the vulnerability results in dbms & application compromise. A remote Cross Site Scripting vulnerability is detected on LandShops Web Application v0.9.2. The vulnerability allows an attacker (remote) or local low privileged user account to inject own malicious script codes on the application side (persistent). Successful exploitation of the vulnerability results in session hijacking, client-side phishing attacks, malicious source code manipulation and application-side denial of service attacks.
SyndeoCMS 3.0.01 (and lower) is prone to a persistent XSS vulnerability due to an improper input sanitization of 'email' parameter, passed to server side logic (path: 'starnet/index.php') via http POST method. Exploiting this vulnerability an authenticated user - which is able to change his profile settings - could insert arbitrary code in 'Site email' field that will be executed when another admin or user clicks on that user'profile.
This vulnerability allows a malicious hacker to add a user, delete a user and change password of a user.
A local buffer overflow vulnerability has been discovered in Bitsmith Software Personal Knowbase v3.2.3. The vulnerability is located in the main executeable knowbase.exe. An oversized string on the registry value Knowbase Data within the Key [HKEY_CURRENT_USER/Software/Bitsmith Software/Personal Knowbase/Directories] results in a local buffer overflow. The value gets read within the FileOpen dialogue. An attacker needs to manipulate the registry value and has to trick the victim to ope the FileOpen dialogue.
This module exploits a vulnerability due to the fact that AtomicReferenceArray uses the Unsafe class to store a reference in an array directly, which may violate type safety if not used properly. This allows a way to escape the JRE sandbox, and load additional classes in order to perform malicious operations.
A CSRF vulnerability exists in boastMachine v3.1 which allows an attacker to add an admin user to the application. An attacker can craft a malicious HTML page containing a form with hidden fields that when visited by an authenticated user, will submit the form and add an admin user to the application.
This PoC-Exploit is for KnFTPd 1.0.0, which is vulnerable to a Denial of Service (DoS) attack. The exploit sends a payload of a minimum length of 94 characters to the FTP server, which causes the server to crash.
PicoPublisher is a product from Pico Software which makes it easy to manage websites. It is vulnerable to a Remote SQL injection attack which can be exploited by sending malicious SQL queries to the vulnerable parameters 'page.php?id=SQLi' and 'single.php?id=SQLi'. This can allow an attacker to gain access to the database and view sensitive information such as customer details, invoices, orders, etc.
This 0day exploit is related to the vBulletin mod, vBShout. It allows an attacker to inject malicious JavaScript code into the 'message to user' field when gifting an item to another user. The malicious code will be executed when the user visits the profile of the user who gifted the item. The same attack can be done when buying the 'username color change' or 'username glow change' item, by setting the malicious code in the field.
Family CMS 2.9 and earlier is vulnerable to CSRF and XSS. For CSRF, the POCs are provided in the text. For XSS, the POC is provided in the text.
Services By CQR