A vulnerability exists in Multi-Mirror which allows an attacker to upload a malicious file to the server. The attacker can access the uploaded file in the temp_files directory.
An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable application. The malicious request contains an SQL query that is appended to the vulnerable parameter. This allows the attacker to gain access to the database and execute arbitrary SQL commands.
Bild Flirt <= version 1.0 is vulnerable to a SQL injection vulnerability. An attacker can exploit this vulnerability by sending a malicious SQL query to the vulnerable parameter 'id' in the URL. The malicious query will return the username and password of the user with the user_id of 1.
An attacker can exploit this vulnerability by injecting malicious SQL queries into the vulnerable parameter of the application. This can be done by appending a malicious SQL query to the vulnerable parameter of the application. For example, an attacker can append a malicious SQL query to the vulnerable parameter of the application by using the following URL: index.php?a=pages&id=3' and 1=0 UnIon aLL Select 1,2,concat(username,0x3a,password),4,5,6,7 from almnzm_customers--%20
The vulnerability exists due to insufficient sanitization of user-supplied input in the 'determined_format[include]' parameter of the 'getid3.php' and 'module.archive.gzip.php' scripts. This can be exploited to include arbitrary remote files by using directory traversal sequences and a null byte to terminate the include statement.
In smdb.mdb you find all info about login or about any thing about school.
mp110013.sys handles DeviceIoControl request which tells driver PspCreateProcessNotifyRoutine/PspCreateProcessNotifyRoutineCount offset, Attacker can use this interface write kernel memory. Exploit code is written in C language which uses ZwQuerySystemInformation to get the kernel base address and then write shellcode to kernel memory.
Opentel Openmairie tel 1.02 is vulnerable to local file include. A remote attacker can include arbitrary local files on the server, which can lead to remote code execution.
This exploit is related to Magneto Software Net Resource ActiveX Control. It is a SEH overwrite vulnerability which can be exploited by passing a long string of 12334 'A' characters as an argument to the NetConnectionEnum function. This can lead to arbitrary code execution.
This exploit is related to the Magneto Software Net Resource ActiveX control. It is possible to overwrite the Structured Exception Handler (SEH) by passing a long string of 1044 'A' characters as the first argument to the NetShareEnum function. This can lead to arbitrary code execution.
Services By CQR