Kolang is a PHP Safe mode bypass exploit which can be used directly in file inclusion RFI&LFI vulnerabilities (no upload required) and can execute arbitrary shellcode. It affects php versions 4.3.10 - 5.3.0.
ONECMS v2.5 is vulnerable to SQL injection. An attacker can exploit this vulnerability to gain access to the admin panel of the application. The exploit requires the Magic_quotes to be set to Off. The exploit code is written in Perl and it takes the host and path as arguments. It then sends a malicious request to the application which results in the disclosure of the admin credentials.
This exploit allows an attacker to bypass authentication on Sagem routers F@ST (1200/1240/1400/1400W/1500/1500-WG/2404) by sending a GET request to the router's IP address. This exploit can be used to reset or reboot the router.
This exploit allows an attacker to bypass authentication on Sagem routers F@ST (1200/1240/1400/1400W/1500/1500-WG/2404) and reset the router.
When Orb is first installed it registers several Direct Show filters with the system. When registered these filters are then called whenever a file which has a dependency on such a required filter is accessed. By specially crafting specific headers embedded into an mp3 file, a direct code path to code which is vulnerable to a integer division by zero can be triggered remotely by embedding the crafted mp3 file into HTML. It is also not dependent on a certain media player.
A SQL injection vulnerability exists in the user.php file of the PhP-Nuke web application. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL statements to the vulnerable application. This can allow the attacker to gain access to sensitive information stored in the database.
WinSmMuPl 1.2.5 is vulnerable to a buffer overflow vulnerability when a specially crafted .mp3 file is opened. When the file is opened, the application crashes due to the overflow of the buffer. This vulnerability can be exploited by an attacker to execute arbitrary code on the vulnerable system.
AKoff MIDI Player 1.00 is vulnerable to a buffer overflow vulnerability when processing specially crafted MIDI files. This vulnerability can be exploited by an attacker to execute arbitrary code on the vulnerable system.
An SQL injection vulnerability exists in PHPNUKE CMS Survey&poll module. An attacker can send a specially crafted HTTP request containing malicious SQL statements to the vulnerable module. This can allow the attacker to gain access to sensitive information from the database, modify data, execute administration operations on the database, etc.
A Local File Inclusion (LFI) vulnerability exists in the Joomla Component com_blog, which allows an attacker to include a file from the local file system of the web server. This can be exploited to gain access to sensitive information, such as the /etc/passwd file, by sending a specially crafted HTTP request to the vulnerable application.
Services By CQR