The BrowseDialog class in ccrpbds6.dll is vulnerable to a Denial of Service attack. The vulnerability is caused by two methods in the DLL that are unable to handle long strings, leading to a stack overflow. This vulnerability can be triggered by selecting the 'IsFolderAvailable' or 'RootFolder' options in the dropdown menu and clicking the 'Click here to start the test' button.
The Acme 'thttpd' and 'mini_httpd' are prone to a command-injection vulnerability because they fail to adequately sanitize user-supplied input in logfiles. Attackers can exploit this issue to execute arbitrary commands in a terminal.
Varnish is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in logfiles. Attackers can exploit this issue to execute arbitrary commands in a terminal.
AOLServer is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in logfiles. Attackers can exploit this issue to execute arbitrary commands in a terminal. The following example is available: echo -en "GET /x1b]2;owned?x07x0ax0dx0ax0d" > payload nc www.example.com 80 < payload
This script exploits a vulnerability in Core FTP Server version 1.2, build 535, 32-bit, causing it to crash. It takes the host, port, username, and password as command line arguments. The script then attempts to connect to the remote Core FTP Server and authenticate. After sending a first buffer of bad data, it waits for 30 seconds and sends a second buffer of bad data. This causes the server to crash, resulting in a denial of service.
The 'nginx' program is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in log files. Attackers can exploit this issue to execute arbitrary commands in a terminal.
Ruby WEBrick is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in log files. Attackers can exploit this issue to execute arbitrary commands in a terminal.
Active Calendar is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
PhPepperShop is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input.An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
Jamit Job Board is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
Services By CQR