The script db/tiki-db.php and tiki-imexport_languages.php in TikiWiki version <= 1.9.8.1 are vulnerable to local file inclusion attacks. An attacker can exploit these vulnerabilities to include arbitrary local files and potentially execute malicious code.
This exploit script creates a file with a specific content that triggers a crash in the ADULT FILTER 1.0 software. By adding the content of the file to the 'Black Domain List' in the program's options, it causes the program to crash.
This exploit allows an attacker to remotely disclose files on a system using the Jakarta Slide WebDav implementation. The vulnerability is triggered by sending a specially crafted LOCK request to the target host. The exploit requires authentication to work.
This module exploits a stack overflow in eIQnetworks Enterprise Security Analyzer. During the processing of long arguments to the SEARCHREPORT command, a stack-based buffer overflow occurs.
This module exploits elevation of privilege vulnerability that exists in Windows 7 and 2008 R2 when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Siebel CRM application was found to be vulnerable to Excel Macro injection vulnerability, in places where user input is allowed (in text form) and the input can then be exported in CSV form. An attacker can change user information to include in his input a malicious excel function. The function will then be executed on the victim’s machine, once the victim exports the details in CSV format and opens the exported file in Microsoft Excel.
The Modbus Poll 7.2.2 software is vulnerable to a denial of service (DoS) attack. By providing a specially crafted payload, an attacker can cause the program to crash, resulting in a denial of service condition.
This exploit allows an attacker to grant DBA privileges to an unprivileged user in Oracle 10g by exploiting the CTX_DOC.MARKUP function. The exploit involves creating a function called HACKIT that executes a dynamic SQL statement to grant the DBA role to the user 'scott'. The function is then called, granting the DBA role to the user. This vulnerability was reported by David Litchfield in June 2005 and was publicly disclosed on October 17, 2007. This exploit has been tested on Oracle 10.1.0.2.0.
The PHP-SHOP master 1.0 is vulnerable to Cross-Site Request Forgery (CSRF) attack. An attacker can forge a request to the 'users.php' page and add a new admin user with arbitrary credentials.
This exploit allows an attacker to add, edit, and delete admin and all users in the Time and Expense Management System 3.0. By sending a specially crafted HTTP request to the target server, the attacker can update the admin user's information and gain administrative privileges. This vulnerability does not have a CVE assigned to it.
Services By CQR