When a file containing 30k of A's with .mpga extension is loaded and played from Switch Sound File converter, it causes a buffer overflow and crashes the application.
Mini-NUKE v2.3 Freehost is vulnerable to multiple exploits. These include an exploit that allows an attacker to access the database file mn7O4Z6J7L5W.mdb, as well as an exploit that allows an attacker to access the setup.asp file. These vulnerabilities can be exploited to gain unauthorized access to the system.
A heap overflow vulnerability exists in Nero Express7 Ver.7.9.6.4, which could allow an attacker to execute arbitrary code on the target system. The vulnerability is caused due to a boundary error when handling a specially crafted .nri file. This can be exploited to cause a stack-based buffer overflow by tricking a user into opening a specially crafted .nri file.
An attacker can bypass authentication by providing a username of 'admin_name' and a password of 'x' or '1=1--' to gain access to the DZOIC Handshakes software.
XlentCMS V1.0.4 is vulnerable to a SQL injection vulnerability in the downloads.php?cat parameter. An attacker can exploit this vulnerability to gain access to the database and extract sensitive information such as usernames and passwords.
The CMS named WD-CMS developed by Web Diamond LTD has multiple vulnerabilities. Vulnerabilities include XSS and remote file access. XSS Proof of Concept: http://www.site.com/index.php?l=eng&mode=%3Cscript%3Ealert%28%22XSS%20by%20Sora%22%29%3C/script%3E Remote File Access Proof of Concept: http://www.site.com/index.php?l=eng&mode=./index (as it adds .php at the end)
UCStats version 1.1 suffers a remote SQL injection vulnerability in stats.php. Proof of Concept (PoC): http://server/stats.php?game=cstrike&q=players&page=4'&sort=online&dir=asc
DS CMS 1.0 (NewsId) is vulnerable to a remote SQL injection vulnerability. An attacker can exploit this vulnerability by sending a maliciously crafted SQL query to the vulnerable parameter ‘NewsId’ in the ‘pfNewsDetail.php’ script. This can allow an attacker to gain access to the database and potentially gain access to sensitive information.
Cype CMS suffers a remote SQL injection vulnerability in index.php.
An attacker can exploit this vulnerability by accessing the users.mdb or teadmin.mdb file located in the db directory of the application. This will allow the attacker to view the database contents and gain access to sensitive information.
Services By CQR