Different D-Link Routers are vulnerable to OS command injection via the web interface. The vulnerability exists in command.php, which is accessible without authentication. This Metasploit module has been tested with the versions DIR-600 2.14b01, DIR-300 rev B 2.13. Two target are included, the first one starts a telnetd service and establish a session over it, the second one runs commands via the CMD target. There is no wget or tftp client to upload an elf backdoor easily. According to the vulnerability discoverer, more D-Link devices may affected.
8a06110527ae3c72725545cc043ee9d4ea6e4d06ff5b64679ba754e17db95b66
OpenX Ad Server version 2.8.10 was shipped with an obfuscated backdoor since at least November 2012 through August 2013. Exploitation is simple, requiring only a single request with a rot13'd and reversed payload.
e988ca61d33c8f55653084886e430badc06f1b7c8ab5e01912529cbb5ff29495
This Metasploit module exploits a remote code execution vulnerability in the YAML request processor of the Squash application.
fc00f4fbda4fdc1a32aa9bdff033447322b5fcafce8ce2e1bc082b5640a25f2d
sXid is an all-in-one suid/sgid monitoring program designed to be run from cron on a regular basis. It tracks any changes in your s[ug]id files and folders. If there are any new ones, ones that are not set any more, or they have changed bits or other modes, it reports the changes in an easy to read format via email or on the command line.
935d665dc508bc537bc4d0fca352a66610dc8e945d9aeee246b0546a86100124
Tribq CMS version 5.2.7 suffers from a cross site request forgery vulnerability.
4d44e3fea6c244f5e104df9950d911d07dfcc6234e98964332b407825d055065
WordPress HMS Testimonials plugin version 2.0.10 suffers from cross site request forgery and cross site scripting vulnerabilities.
b170cac016ca75bde2a90b9cfe397923741d38a080b18d51db3ab1b7c56cc983
This is a whitepaper called Taint analysis and pattern matching with Pin. All examples in this document are considered a proof of concept and are meant to give others ideas.
ec76a2f8def58b42c1d7b3105a4bea93f29bbf23d2776a4316a9981f1cb84489
HP Security Bulletin HPSBHF02912 - Potential security vulnerabilities have been identified with HP Networking Products including 3COM and H3C routers and switches. The vulnerabilities could be remotely exploited resulting in disclosure of information and denial of service. Revision 1 of this advisory.
d03c9b169146e0687bb59aaab2fe47550ed986257cae1e3086ec8b1ef4ab08e9
Joomla redSHOP component version 1.2 suffers from a remote SQL injection vulnerability.
c15326a129a72e3584876c4ff3df10d8d4b2691cb885ec30419442cf9ab2d643
Slackware Security Advisory - New mozilla-thunderbird packages are available for Slackware 13.37, 14.0, and -current to fix security issues.
f4f1e674b053b5d94b19ef14c2d585594e4bbb6ddcc4c7a0fb4e67afe988ebfa
Slackware Security Advisory - New seamonkey packages are available for Slackware 14.0, and -current to fix security issues.
9f2c94e67d57a39aae74593e196dbad4aaff96fa307a146a39df18ec91e28927
Slackware Security Advisory - New mozilla-firefox packages are available for Slackware 13.37, 14.0, and -current to fix security issues.
ab0e1f8e42680410b7df3e2081ad1f09161607cb4d1b61492aa92e1d58469041
Red Hat Security Advisory 2013-1147-01 - Red Hat JBoss SOA Platform is the next-generation ESB and business process automation infrastructure. Red Hat JBoss SOA Platform allows IT to leverage existing, modern, and future integration methodologies to dramatically improve business process execution speed and quality. This roll up patch serves as a cumulative upgrade for Red Hat JBoss SOA Platform 5.3.1. It includes various bug fixes. The following security issues are also fixed with this release: The Jakarta Commons HttpClient component did not verify that the server hostname matched the domain name in the subject's Common Name or subjectAltName field in X.509 certificates. This could allow a man-in-the-middle attacker to spoof an SSL server if they had a certificate that was valid for any domain name.
11be102b169787b03d6c2152f3add04d435de5e2cb57176df49df6ccdaf958a5
NetworkMiner versions 1.4.1 and below suffer from DLL hijacking and directory traversal vulnerabilities.
92e3944c0ec7f6f7571cad8827f0f0ea22455c258d2d835385eb79a442e59aef
Open Real Estate CMS version 1.5.1 suffers from cross site request forgery, path disclosure, and remote SQL injection vulnerabilities.
18a7cc01027a952a1c8ff2f3d301acd72b126bdb325df567f52c713fc167c5d4
ZZN (Web Hosting and Free email accounts) suffers from cross site scripting, remote blind SQL injection, and credential disclosure vulnerabilities.
6366cc696316ce5d9a9ad1c083d31746295d4a474bb3f4aeb475ce0ef05f30a9
Exact Audio Copy version 1.0 beta 3 ship with outdated, unsupported, and vulnerable third party components.
d7401c6892ad2df18ff9b12c1511d96fd4462a5e69d677d669cd5e0b25e1edee
PHPFox version 3.4.1 suffers from multiple cross site scripting vulnerabilities.
3531b4b75e68b1c21bed7dfd07202f1930665093ef0368fe32928a381b2b0a4d