Categoria: exploit

WordPress WP Mobile Detector 3.5 Shell Upload
3 11
Pubblicato in Detector Nessun commento

WordPress WP Mobile Detector 3.5 Shell Upload

WP Mobile Detector Plugin for WordPress contains a flaw that allows a remote attacker to execute arbitrary PHP code. This flaw exists because the /wp-content/plugins/wp-mobile-detector/resize.php script does contains a remote file include for files not cached by the system already. By uploading a .php file, the remote system will place the file in a user-accessible […]

The post WordPress WP Mobile Detector 3.5 Shell Upload appeared first on MondoUnix.

Ladon Framework For Python 0.9.40 XXE Injection
3 11
Pubblicato in exploit Nessun commento

Ladon Framework For Python 0.9.40 XXE Injection

Attackers who can send SOAP messages to a Ladon webservice via the HTTP interface of the Ladon webservice can exploit an XML external entity expansion vulnerability and read local files, forge server side requests or overload the service with exponentially growing memory payloads. Versions 0.9.40 and below are affected. Source: Ladon Framework For Python 0.9.40 […]

The post Ladon Framework For Python 0.9.40 XXE Injection appeared first on MondoUnix.

Oracle Java SE Wv8u131 Information Disclosure
2 11
Pubblicato in Disclosure Nessun commento

Oracle Java SE Wv8u131 Information Disclosure

Oracle Java SE installs a protocol handler in the registry as “HKEY_CLASSES_ROOTjnlpShellOpenCommandDefault” ‘C:Program FilesJavajre1.8.0_131binjp2launcher.exe” -securejws “%1″‘. This can allow allow an attacker to launch remote jnlp files with little user interaction. A malicious jnlp file containing a crafted XML XXE attack can be leveraged to disclose files, cause a denial of service or trigger SSRF. […]

The post Oracle Java SE Wv8u131 Information Disclosure appeared first on MondoUnix.