This Metasploit module exploits a remote command execution vulnerability in HP LoadRunner before 9.50 and also HP Performance Center before 9.50. HP LoadRunner 12.53 and other versions are also most likely vulnerable if the (non-default) SSL option is turned off. By sending a specially crafted packet, an attacker can execute commands remotely. The service is […]
[webapps] PHP Melody 2.7.1 – 'playlist' SQL Injection
PHP Melody 2.7.1 – ‘playlist’ SQL Injection
[dos] D3DGear 5.00 Build 2175 – Buffer Overflow
D3DGear 5.00 Build 2175 – Buffer Overflow
PHP Web Stat 4.5.03 Database Disclosure
PHP Web Stat version 4.5.03 suffers from a database backup disclosure vulnerability.
Open Upload 0.4.2 Remote File Inclusion
Open Upload version 0.4.2 suffers from a remote file inclusion vulnerability.
Locations Multipurpose CMS Directory Theme 1.0 Cross Site Scripting
Locations Multipurpose CMS Directory Theme version 1.0 suffers from a cross site scripting vulnerability.
Open Upload 0.4.2 Cross Site Scripting
Open Upload version 0.4.2 suffers from a cross site scripting vulnerability.
PHP Web Stat 4.5.03 Backdoor Account
PHP Web Stat version 4.5.03 has a backdoor admin account with a password of admin.
PHP Web Stat 4.5.03 Cross Site Scripting
PHP Web Stat version 4.5.03 suffers from a cross site scripting vulnerability.
Open Upload 3.6.28 Cross site Scripting
Open Upload version 3.6.28 suffers from a cross site scripting vulnerability.