A denial of service vulnerability exists in ZipExplorer 7.0 when a specially crafted .zar file is opened. An attacker can exploit this vulnerability by sending a malicious .zar file to the target user and convincing them to open it. This will cause the application to crash, denying service to legitimate users.
Appending a '.' or '%20' to a URL will result in a source code disclosure of whichever file is requested. This did not work for files in /cgi-bin/ directory when tested, but seems to work for other files/directories. This technique only works on Windows systems, as Windows ignores periods and spaces after files.
The vulnerability exists in the Joomla component com_g2bridge, which allows an attacker to include arbitrary files from the local system. By sending a specially crafted HTTP request, an attacker can include arbitrary files from the local system.
The vulnerability exists in the WsCMS web application. An attacker can exploit the vulnerability by sending malicious SQL queries to the vulnerable parameters in the URL. An attacker can also exploit the XSS/HTML Injection vulnerability by sending malicious HTML code to the vulnerable parameter in the URL.
A SQL injection vulnerability exists in Joomla com_quran component. An attacker can send a specially crafted HTTP request to the vulnerable application in order to execute arbitrary SQL commands in the back-end database. This can be exploited to manipulate the data in the database, disclose sensitive information, or even gain access to the underlying file system and operating system.
A vulnerability exists in Oscommerce Online Merchant v2.2 which allows an attacker to upload malicious files to the server. The vulnerable file is /admin/file_manager.php. An attacker can exploit this vulnerability by sending a malicious file to the server using a specially crafted HTML form.
A Local File Inclusion (LFI) vulnerability exists in Symphony CMS version 2.0.7. An attacker can exploit this vulnerability to include arbitrary files from the local system, which may lead to the disclosure of sensitive information. The vulnerability is due to insufficient sanitization of user-supplied input to the 'mode' parameter in the 'index.php' script. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable script. The PoC provided sends a request to the vulnerable script to include the '/etc/passwd' file.
The vulnerability exists in the 'view=help' parameter of the 'index.php' file. An attacker can inject malicious code into the 'ref' parameter, which can be used to execute arbitrary commands or inject malicious scripts into the vulnerable website.
A SQL injection vulnerability was discovered in the Creato Script software. An attacker can exploit this vulnerability by sending a malicious SQL query to the vulnerable parameter 'id' in the 'mainpage.php' file. This can allow the attacker to gain access to the admin username and password.
CMScout is vulnerable to XSS/HTML Injection and SQL Injection. For XSS/HTML Injection, the exploit is http://[target]/[path]/index.php?page=[XSS/HTML]. For SQL Injection, the exploit is http://[target]/[path]/index.php?page=[SQL].
Services By CQR