Remote file inclusion vulnerabilities have been discovered in phpChess Community Edition 2.0. The vulnerabilities can be exploited by an attacker by including a malicious file through the 'Root_Path' parameter in certain PHP files.
The '/title' argument when supplied an overly long payload will overwrite NSEH & SEH exception handlers causing buffer overflow, allowing the execution of arbitrary shellcode. This vulnerability can be exploited by replacing a local .bat file with a malicious one.
The WordViewer.ocx version 3.2.0.5 is vulnerable to Denial of Service attacks through multiple methods. The affected methods include DoOleCommand, FTPDownloadFile, FTPUploadFile, HttpUploadFile, GotoPage, Save, and SaveWebFile.
The vulnerability allows an attacker to perform SQL injection by manipulating the 'id' parameter in the 'index.php?module=v4bJournal&func=journal_comment' URL. By using a specially crafted payload, an attacker can retrieve sensitive information from the 'nuke_users' table.
This module exploits a vulnerability in the Watchguard XCS 'FixCorruptMail' script called by root's crontab which can be exploited to run a command as root within 3 minutes.
Vtiger CRM's administration interface allows for the upload of a company logo. Instead of uploading an image, an attacker may choose to upload a file containing PHP code and run this code by accessing the resulting PHP file.
The YaPIG 0.95b portal is vulnerable to remote command execution. An attacker can exploit this vulnerability to execute arbitrary commands on the target server.
PHPmyGallery is prone to multiple cross-site scripting vulnerabilities and a local file-disclosure vulnerability because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, and obtain sensitive information from local files on computers running the vulnerable application. This may aid in further attacks.
The WinRar SFX OLE Command Execution vulnerability allows an attacker to execute arbitrary commands on a Windows system by creating a specially crafted SFX archive. By tricking a user into opening the archive, the attacker can run arbitrary code with the same privileges as the user.
The PowerVR SGX driver in Android is prone to an information-disclosure vulnerability. Successful exploits allows an attacker to gain access to sensitive information. Information obtained may aid in further attacks.