CVE-2010-1336
published 2010-04-09CVE-2010-1336: Multiple SQL injection vulnerabilities in INVOhost 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) newlanguage parameters…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.19%
64.0th percentile
Multiple SQL injection vulnerabilities in INVOhost 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) newlanguage parameters to site.php, (3) search parameter to manuals.php, and (4) unspecified vectors to faq.php. NOTE: some of these details are obtained from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| invohost | invohost | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Man-db 2.6.7.1 - Local Privilege Escalation
exploitdb·2015-12-02
CVE-2015-1336 Man-db 2.6.7.1 - Local Privilege Escalation
Man-db 2.6.7.1 - Local Privilege Escalation
---
/*
EDB Note:
man:man -> man:root ~ http://www.halfdog.net/Security/2015/SetgidDirectoryPrivilegeEscalation/
man:root -> root:root ~ http://www.halfdog.net/Security/2015/MandbSymlinkLocalRootPrivilegeEscalation/
CreateSetgidBinary.c ~ http://www.halfdog.net/Security/2015/SetgidDirectoryPrivilegeEscalation/CreateSetgidBinary.c
DirModifyInotify-20110530.c ~ http://www.halfdog.net/Security/2010/FilesystemRecursionAndSymlinks/DirModifyInotify-20110530.c
*/
## man:man -> man:root
Setgid Binary Creater: The program CreateSetgidBinary.c allows to create the suitable setgid binary circumventing the kernel protection. Currently creating an empty setgid executable in /var/cache/man would work but writing as user man will remove the setgid flag sil
Exploit-DB
mIRC - IRC URL Buffer Overflow (Metasploit)
exploitdb·2010-05-09
CVE-2003-1336 mIRC - IRC URL Buffer Overflow (Metasploit)
mIRC - IRC URL Buffer Overflow (Metasploit)
---
##
# $Id: mirc_irc_url.rb 9262 2010-05-09 17:45:00Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'mIRC IRC URL Buffer Overflow',
'Description' => %q{
This module exploits a stack buffer overflow in mIRC 6.1. By
submitting an overly long and specially crafted URL to
the 'irc' protocol, an attacker can overwrite the buffer
and control program execution.
},
'License' => MSF_LICENSE,
'Author' => 'MC',
'Version' => '$Revision: 9262 $',
'References' =>
[
[ 'CVE', '2003-1336'],
[ 'OSVDB', '
Exploit-DB
INVOhost - SQL Injection
exploitdb·2010-03-25
CVE-2010-1336 INVOhost - SQL Injection
INVOhost - SQL Injection
---
##########################[Andrés Gómez]##########################
# Exploit Title : INVOhost SQL Injection
# Date : 2010-04-24
# Author : Andrés Gómez
# Software Link : http://www.invohost.com/
# Contact : [email protected]
# Dork : "Powered by INVOhost"
########################################################################
# An attacker may execute arbitrary SQL statements on the vulnerable system. This may compromise the # integrity of your database and/or expose sensitive information.
########################################################################
# Example 1: http://server/site.php?id=%27
# Example 2: http://server/site.php?newlanguage=%00'
# Other files vulnerables: faq.php & manuals.php
###########################################
No writeups or analysis indexed.
http://osvdb.org/63157http://osvdb.org/63158http://secunia.com/advisories/39095http://www.exploit-db.com/exploits/11874http://www.securityfocus.com/bid/38962https://exchange.xforce.ibmcloud.com/vulnerabilities/57161https://exchange.xforce.ibmcloud.com/vulnerabilities/57162http://osvdb.org/63157http://osvdb.org/63158http://secunia.com/advisories/39095http://www.exploit-db.com/exploits/11874http://www.securityfocus.com/bid/38962https://exchange.xforce.ibmcloud.com/vulnerabilities/57161https://exchange.xforce.ibmcloud.com/vulnerabilities/57162
2010-04-09
Published