The htmltonuke.php file in htmltonuke 2.0alpha for postnuke and PHP-Nuke allows remote attackers to include and execute arbitrary files via a URL in the filnavn parameter.
This module exploits a vulnerability found in Windows Object Linking and Embedding (OLE) allowing arbitrary code execution, publicly exploited in the wild as MS14-060 patch bypass. The Microsoft update tried to fix the vulnerability publicly known as 'Sandworm'. Platforms such as Windows Vista SP2 all the way to Windows 8, Windows Server 2008 and 2012 are known to be vulnerable. However, based on our testing, the most reliable setup is on Windows platforms running Office 2013 and Office 2010 SP2. And please keep in mind that some other setups such as using Office 2010 SP1 might be less stable, and sometimes may end up with a crash due to a failure in the CPackage::CreateTempFileName function.
This module exploits a vulnerability found in Windows Object Linking and Embedding (OLE) allowing arbitrary code execution, bypassing the patch MS14-060, for the vulnerability publicly known as 'Sandworm', on systems with Python for Windows installed. Windows Vista SP2 all the way to Windows 8, Windows Server 2008 and 2012 are known to be vulnerable. However, based on our testing, the most reliable setup is on Windows platforms running Office 2013 and Office 2010 SP2. Please keep in mind that some other setups such as those using Office 2010 SP1 may be less stable, and may end up with a crash due to a failure in the CPackage::CreateTempFileName function.
This is an exploit for the vulnerability cve-2014-6332. The exploit was created by yuange in 2009 and is designed to work on systems running Windows 95 with Internet Explorer 3 through Windows 10 with Internet Explorer 11.
This script exploits a Local File Inclusion vulnerability in GeBlog version 0.1. The vulnerability is present in the code where it includes a file based on the value of the 'tplname' parameter. By manipulating this parameter, an attacker can include arbitrary files from the server.
This exploit allows remote code execution through OLE objects. It has been tested on Windows 7 with Office 2007 and 2010.
This exploit takes advantage of a vulnerability in pragmaMX Landkartenmodule 2.1, which allows an attacker to include files from the server's file system. The vulnerable code can be found in the 'require_once("modules/$module_name/inc/conf.php");' line. By manipulating the 'module_name' parameter, an attacker can specify a path to a file they want to include, potentially leading to unauthorized access or remote code execution.
This exploit allows for local elevation of privileges on Windows 2000 systems using the Utility Manager. It gives the user a shell with system privileges. The exploit works by getting the system language and setting the windows names to work on any Windows 2000 system. It supports multiple languages and can be modified to add additional languages.
Multiple XSS vulnerabilities exist in the phpSound Music Sharing Platform. The first vulnerability allows an attacker to execute arbitrary code by injecting a malicious payload in the 'Title' or 'Description' input fields of a playlist. The second vulnerability is a reflected XSS vulnerability in the 'filter' parameter of the explore page, allowing an attacker to execute arbitrary code. Sample payloads for both vulnerabilities are provided.
The XSS attack vulnerability is caused by copying the value of the id request parameter into an HTML tag attribute without proper sanitization. The SQL injection vulnerability is caused by the country/gender1/gender2 parameter being vulnerable to SQL injection attacks.
Services By CQR