CVE-2011-5109
published 2012-08-23CVE-2011-5109: Multiple SQL injection vulnerabilities in Freelancer calendar 1.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.04%
78.7th percentile
Multiple SQL injection vulnerabilities in Freelancer calendar 1.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the SearchField parameter in a search action to (1) category_list.php, (2) Copy_of_calendar_list.php, (3) customer_statistics_list.php, (4) customer_list.php, and (5) task_statistics_list.php in the worldcalendar directory.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| john_geo | freelancer_calendar | <= 1.01 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Freelancer Calendar 1.01 - SQL Injection
exploitdb·2011-11-19
CVE-2011-5109 Freelancer Calendar 1.01 - SQL Injection
Freelancer Calendar 1.01 - SQL Injection
---
Freelancer calendar <= 1.01 SQL Injection Vulnerability
author............: muuratsalo (Revshell.com)
contact...........: muuratsalo[at]gmail[dot]com
download..........: http://sourceforge.net/projects/freelancercal/
[0x01] Vulnerability overview:
Freelancer calendar <= 1.0.1 is affected by a SQL injection vulnerability.
Note - A registered account could be required to exploit the vulnerability.
[0x02] Disclosure timeline:
[16/11/2011] - SQL injection vulnerability discovered and reported to
the vendor.
[19/11/2011] - No response from the vendor, public disclosure.
[0x03] Proof of Concept:
http://localhost/worldcalendar/category_list.php?a=search&value=1&SearchFor=muuratsalo&SearchOption=Contains&SearchField=[SQL
injection]
http://lo
Exploit-DB
Mini-stream Ripper 3.0.1.1 - Local Buffer Overflow (Metasploit) (3)
exploitdb·2011-11-04
CVE-2009-5109 Mini-stream Ripper 3.0.1.1 - Local Buffer Overflow (Metasploit) (3)
Mini-stream Ripper 3.0.1.1 - Local Buffer Overflow (Metasploit) (3)
---
##
# $Id: mini_stream.rb 14155 2011-11-04 08:20:43Z sinn3r $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Mini-Stream 3.0.1.1 Buffer Overflow Exploit',
'Description' => %q{
This module exploits a stack buffer overflow in Mini-Stream 3.0.1.1
By creating a specially crafted pls file, an an attacker may be able
to execute arbitrary code.
},
'License' => MSF_LICENSE,
'Author' =>
[
'CORELAN Security Team ',
'Ron Henry ', # dijital1; Return address update
],
'Version' => '
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/fulldisclosure/2011-11/0305.htmlhttp://osvdb.org/77244http://osvdb.org/77245http://osvdb.org/77246http://osvdb.org/77247http://osvdb.org/77248http://secunia.com/advisories/46970http://www.exploit-db.com/exploits/18127http://www.securityfocus.com/archive/1/520573/100/0/threadedhttp://www.securityfocus.com/bid/50733https://exchange.xforce.ibmcloud.com/vulnerabilities/71403http://archives.neohapsis.com/archives/fulldisclosure/2011-11/0305.htmlhttp://osvdb.org/77244http://osvdb.org/77245http://osvdb.org/77246http://osvdb.org/77247http://osvdb.org/77248http://secunia.com/advisories/46970http://www.exploit-db.com/exploits/18127http://www.securityfocus.com/archive/1/520573/100/0/threadedhttp://www.securityfocus.com/bid/50733https://exchange.xforce.ibmcloud.com/vulnerabilities/71403
2012-08-23
Published