CVE-2010-4991
published 2011-11-01CVE-2010-4991: SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the…
PriorityP346high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.00%
58.6th percentile
SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a display action to index.php.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Joomla! Component NinjaMonials - Blind SQL Injection
exploitdb·2010-07-04
CVE-2010-4991 Joomla! Component NinjaMonials - Blind SQL Injection
Joomla! Component NinjaMonials - Blind SQL Injection
---
1 ########################################## 1
0 I'm Sid3^effects member from Inj3ct0r Team 1
1 ########################################## 0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
Name : Joomla com_ninjamonials BSqli Vulnerability
Date : july 4,2010
Critical Level : HIGH
vendor URL :http://ninjaforge.com/
Author : Sid3^effects aKa HaRi
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger_
greetz to :www.topsecure.net ,All ICW members and my friends :) luv y0 guyz
#######################################################################################################
Description :
NinjaMonials is designed to help you quickly and easily collect and display testi
Exploit-DB
SecureCRT 4.0 Beta 2 SSH1 - Remote Buffer Overflow (Metasploit)
exploitdb·2010-04-30
CVE-2002-1059 SecureCRT 4.0 Beta 2 SSH1 - Remote Buffer Overflow (Metasploit)
SecureCRT 4.0 Beta 2 SSH1 - Remote Buffer Overflow (Metasploit)
---
##
# $Id: securecrt_ssh1.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
class Metasploit3 'SecureCRT %q{
This module exploits a buffer overflow in SecureCRT 'MC',
'License' => MSF_LICENSE,
'Version' => '$Revision: 9179 $',
'References' =>
[
[ 'CVE', '2002-1059' ],
[ 'OSVDB', '4991' ],
[ 'BID', '5287' ],
],
'DefaultOptions' =>
{
'EXITFUNC' => 'process',
},
'Payload' =>
{
'Space' => 400,
'BadChars' => "\x00",
'MaxNops' => 0,
'StackAdjustment' => -3500,
},
'Platform' => 'win',
No writeups or analysis indexed.
2011-11-01
Published