This exploit allows an attacker to gain admin access to a MyBulletinBoard (MyBB) version 1.1.3 or lower. The exploit uses a POST request to the member.php page with the username and password of the user. If the login is successful, the exploit then sends a GET request to the usercp.php page with the additionalgroups parameter set to 4. This will give the user admin access. Finally, the exploit sends a GET request to the index.php page to verify that the user has admin access.
Multiple buffer overflows in XM Easy Personal FTP Server 5.0.1 can be exploited remotely via port and multiple commands with A%n, leading to a denial of service.
A remote file include vulnerability exists in PhpMySms <= V2.0, due to the application including files based on user input without proper validation. An attacker can exploit this vulnerability to include arbitrary files from remote locations, which can lead to the execution of arbitrary code on the vulnerable system.
A remote denial of service vulnerability exists in BitchX (epic) version 1.1-final and earlier due to a boundary check error in the do_hook() function. An attacker can exploit this vulnerability by sending a specially crafted packet with a large value for the 'which' parameter to the server, resulting in a crash. This vulnerability can be triggered remotely.
Jaws <= 0.6.2 is vulnerable to a SQL injection vulnerability in the 'Search gadget' feature. An attacker can exploit this vulnerability to disclose the admin credentials. This works regardless of php.ini settings if 'Search gadget' is enabled.
This exploit allows an attacker to execute arbitrary code on the vulnerable server by including a file from a remote web server through a vulnerable web application. The vulnerability exists due to insufficient sanitization of user-supplied input passed to the 'inc_dir' parameter in 'forgot_password.php' script.
Multiple Remote File Include vulnerabilities have been discovered in Harpia CMS version 1.0.5. An attacker can exploit these vulnerabilities by sending a maliciously crafted HTTP request to the vulnerable application. This can allow the attacker to execute arbitrary code on the vulnerable system.
Ralf Image Gallery (RIG) is prone to multiple remote file include and directory traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary remote PHP code in the context of the webserver process, or to view sensitive files on the affected computer.
Mambo <= 4.6rc1 is vulnerable to a blind SQL injection vulnerability in the 'Weblinks' component. An attacker can exploit this vulnerability to gain admin credentials.
Vulnerability can be exploited by using a large value in a href tag to create an out-of-bounds memory access.
Services By CQR