Next Page >>
Control Panel
The Solaris version of CiscoWorks Common Services is not affected by
this vulnerability.
The TFTP service is enabled by default. To verify that the TFTP service
is running connect to the CiscoWorks interface and choose "Start >
Settings > Control Panel > Administrative Tools > Services" to access
the "Services" window. The name of the service is "CWCS tftp service".
Note: Administrators can also issue the "tasklist/svc" Microsoft Windows
command to list the services that are running on the system.
(Copy of the Homepage: http://itunes.apple.com/de/app/nike+-fuelband/id493325070?mt=8# )
Abstract:
=========
Vulnerability-Lab Team discovered multiple Web Vulnerabilities in the Nike+ Control Panel & fuelband mobile web application.
Report-Timeline:
================
2012-04-06: Researcher Notification & Coordination
Removing WebEx Meeting Manager
+-----------------------------
It is possible to remove the WebEx Meeting Manager component from
Microsoft Windows by using the Add or Remove Programs utility in the
Windows Control Panel:
1. In Windows, choose Start > Control Panel.
2. Double-click Add or Remove Programs.
3. Double-click WebEx.
4. In the pop-up menu, check the Meeting Manager box and click
Unsigned (sandboxed) apps will not run.
Unfortunately, the above is only a theory. In practice, it
is possible to execute an unsigned (and malicious!) Java
code without a prompt corresponding to security settings
configured in Java Control Panel.
What we found out and what is a subject of a new security
vulnerability (Issue 53) is that unsigned Java code can be
successfully executed on a target Windows system regardless
of the four Java Control Panel settings described above.
Details:
========
1.1
The vulnerability laboratory research team discovered multiple sql injection vulnerabilities in the vOlk-Botnet framework application v4.0 private edition.
The sql vulnerabilities allow remote attackers to inject/execute own sql commands/statements on the affected vOlks botnet application control panel dbms.
The vulnerabilities are located in the Messenger, Filezilla, Estadisticas files with the bound vulnerable ?pag listing parameter. The vulnerability can
be exploited by remote attackers without required user inter action. Successful exploitation of the vulnerabilities result in botnet control panel
compromise via remote sql injection attack.
Vulnerable Files(s):
1.2. Absolute News Manager XE: Absolute News Manager is a powerful web site news and article content management system.
1.3. Absolute Banner Manager XE: Absolute Banner Manager is the most complete, robust and easy to use web based banner management and ad tracking software.
1.4. Absolute Form Processor XE: The Absolute Form Processor is a powerful tool for processing your web based HTML forms. You don’t have to waste time developing server code, validation rules , form mailers or auto responders for your web forms, this application does all this for you.
1.5. Absolute Image Gallery XE: The complete and powerful media gallery software that makes creating and maintaining images and multimedia galleries a snap. The code resides on your web server and searches your web site for new images and files to add to your gallery.
1.6. Absolute Poll Manager XE: Absolute Poll Manager is a complete and easy-to-use survey software for dynamically adding polls and surveys to your site while creating interest among your site visitors and gathering valuable information about what they think.
1.7. Absolute Control Panel XE: Absolute Control Panel is a web based interfacing system specially designed to provide centralized access to your web based applications and Xigla application modules. It has been developed as a practical access point to our web based suite of solutions on your web sites.
####################
2. Vulnerabilities:
####################
==========================================================
Starsgames Control Panel <= 4.6.2 Remote XSS Vulnerability
==========================================================
AUTHOR : CWH Underground
DATE : 19 May 2008
SITE : www.citec.us
Invision Power Board (IPB) is a professional forum system that has
been built
from the ground up with speed and security in mind, taking advantage
of object
oriented code, highly-optimized SQL queries, and the fast PHP engine. A
comprehensive administration control panel is included to help you
keep your
board running smoothly. Moderators will also enjoy the full range of
options
available to them via built-in tools and moderators control panel.
Members
486
Introduction:
=============
DirectAdmin is a graphical web-based web hosting control panel designed to make administration
of websites easier. DirectAdmin is compatible with several versions of Red Hat, Fedora Core, Red
Hat Enterprise Linux, CentOS, FreeBSD, Ubuntu and Debian.DirectAdmin is often called DA for short
(Copy of the Vendor Homepage: http://en.wikipedia.org/wiki/DirectAdmin )
Vulnerable Module(s):
[+] Register Form - Input Fields & Login Username Display
[+] Contacts Us - Send Input Fields & Admin output Display
[+] Add Groups Name - Control Panel
Picture(s):
../1.png
../2.png
==========================================================================================================
1024cms Admin Control Panel v1.1.0 Beta (Master-cPanel Package) - Local File Include Vulnerability
==========================================================================================================
Software: 1024cms Admin Control Panel v1.1.0 Beta (master-cpanel package)
Vendor: http://1024cms.org/
Vuln Type: Local File Include
Remote: Yes
Local: No
Discovered by: QSecure and Demetris Papapetrou
================================================================================================================
1024cms Admin Control Panel v1.1.0 Beta (Complete-Modules Package) - Cross-Site Scripting Vulnerability
================================================================================================================
Software: 1024cms Admin Control Panel v1.1.0 Beta (complete-modules package)
Vendor: http://1024cms.org/
Vuln Type: Cross-Site Scripting
Remote: Yes
Local: No
Discovered by: QSecure and Demetris Papapetrou
A photo gallery for e107, powered by Highslide JS script. with random
gallery menu and navigation menu.
+ User interface for uploads images
+ Pre-moderation users download
+ Control Panel, can edit the name and description, delete and move
+ New comment system, it is now the most opulent gallery
+ New Front page
+ Added BBcode and a button
Vulnerability:
Vulnerable Module(s):
[+] Register Form - Input Fields & Login Username Display
[+] Contacts Us - Send Input Fields & Admin output Display
[+] Add Groups Name - Control Panel
Picture(s):
../2.png
../3.png
=============================================================================================================
1024cms Admin Control Panel v1.1.0 Beta (Complete-Modules Package) - Directory Traversal Vulnerability
=============================================================================================================
Software: 1024cms Admin Control Panel v1.1.0 Beta (complete-modules package)
Vendor: http://1024cms.org/
Vuln Type: Directory Traversal
Remote: Yes
Local: No
Discovered by: QSecure and Demetris Papapetrou
> my emails. According to other D-Link security holes and their status I
> think that they won't reply, so I decided to write about it here.
>
> [Technical details]
>
> Control panel script - tools_admin.php allows attacker to change
> administrator name, password and other variables without any
> authorization by sending specially crafted http post request such as:
>
> ---cut here---
> POST http://192.168.1.1:80/tools_admin.php HTTP/1.1
[HSC] InterWorx-CP Multiple HTMl Injection Vulnerabilities
The InterWorx Hosting Control Panel (InterWorx-CP) is a dedicated
server control panel. InterWorx suffers from multiple HTMl injection
vulnerabilities. JavaScript and Cross site scripting are just few found
vulns, more sophisticated attacks such as remote file inclusion or even
SQl injection may be possible. An attacker could exploit this vulnerability
to have arbitrary script code execute in the context of the affected site.
This may allow an attacker to steal cookie-based authentication credentials
and to launch other attacks.
-----------
Block the ActiveX plugin from "Husdawg, LLC" and don't run it.
Remove the Certificate of the Java applet from "Husdawg, LLC" from
Control Panel / Java / Security / Certificates / Trusted Certificates
and don't allow the applet to run.
Patch:
------
============================================================================================================
1024cms Admin Control Panel v1.1.0 Beta (Master-cPanel Package) - Cross-Site Scripting Vulnerability
============================================================================================================
Software: 1024cms Admin Control Panel v1.1.0 Beta (master-cpanel package)
Vendor: http://1024cms.org/
Vuln Type: Cross-Site Scripting
Remote: Yes
Local: No
Discovered by: QSecure and Demetris Papapetrou
The class name is used to retrieve the implementation from
a class file or archive.
Additionally, Java 7 Update 10 (and 11) reveal the following code
logic when it comes to the implementation of new security features
(Java Control Panel security levels).
[excerpt from sun.plugin2.applet.Plugin2Manager class]
String object_attr = getSerializedObject();
String code_attr = getCode();
Symptoms of successful attack
One or more of the following:
*Control panel lights are blinking, no response to pushing buttons
*LCD panel displays error message
*LCD panel displays a halted progress bar
*Switching power off from on/off button takes more than 10 seconds
Proof of Concept:
Driver and Firmware Update" v1.0.0.8 or later.
Note: After the BIOS is updated, additional secure boot configuration steps
are needed
Go to Control Panel
Select HP BIOS Settings
Select "Secure Boot" to enable this feature.
HISTORY
Version:1 (rev.1) - 23 April 2013 Initial release
http://www.target.com/[path]/sites/index.php?cid=-1%20union%20select%201,2,3,sesskey,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5%20from%20sessions--
Dork:
~~~~
Google : "Hivemaker" or "Hivemaker(TM) Control Panel Login"
Altavista : "Hivemaker(TM) Control Panel Login"
Solution:
~~~~~~
=============================================================================================================
1024cms Admin Control Panel v1.1.0 Beta (Complete-Modules Package) - Local File Include Vulnerability
=============================================================================================================
Software: 1024cms Admin Control Panel v1.1.0 Beta (complete-modules package)
Vendor: http://1024cms.org/
Vuln Type: Local File Include
Remote: Yes
Local: No
Discovered by: QSecure and Demetris Papapetrou
A photo gallery for e107, powered by Highslide JS script. with random
gallery menu and navigation menu.
+ User interface for uploads images
+ Pre-moderation users download
+ Control Panel, can edit the name and description, delete and move
+ New comment system, it is now the most opulent gallery
+ New Front page
+ Added BBcode and a button
Vulnerability:
JTFR: Other parts of SQL Server 2008 SP2 contain these vulnerable
DLLs too.
Step 3:
Start the "software" applet from "control panel" and try to find
the just installed (parts of) "Microsoft Visual C++ 2005 Runtime".
It's missing!
How should a user follow Microsoft's recommendation if s/he doesnt
DDMI requires the Windows SNMP service for its operation. If necessary DDMI will install and configure the Windows SNMP service using the Windows default security settings. As a result the SNMP read community string may be set to public .
To modify the default security configuration of the of the Windows SNMP service:
Open the Windows Services Control Panel applet, select Administrative Tools and then select Services.
Select the SNMP Service, right click on it and select Properties and navigate to the Security tab.
Amend the security settings as required to change the default read community string to a value other than public.
Add the updated read community string to the appropriate DDM Inventory SNMP profile.
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
| Asterisk Open | 1.4.10, available from |
| Source | http://downloads.digium.com/pub/telephony/asterisk |
|---------------+--------------------------------------------------------|
| AsteriskNOW | Beta7, available from http://www.asterisknow.org/. |
| | Beta5 and Beta6 users can update using the system |
| | update feature in the appliance control panel. |
|---------------+--------------------------------------------------------|
| Asterisk | 0.7.0, available from |
| Appliance | http://downloads.digium.com/pub/telephony/aadk |
| Developer Kit | |
|---------------+--------------------------------------------------------|
=======================================================================
Discussion
The XSS in question exists on the login page for the MCP (moderation
control panel).
The login script takes a redirect parameter that lacks sanitation, allowing a
rather easy XSS:
http://localhost/vB3/modcp/index.php?redirect={XSS}
Introduction:
=============
Free Monthly Websites 2.0 is here and you no longer have to worry about editing complicated HTML code as we have
taken care of that for you, and you no longer have to worry about anything to do with website design as we have taken
care of that for you too, adding your Google AdSense Publisher code, taken care of, ClickBank! All done for you,
here\'s how it works. Upload Your Site To Your Domain (this can be done for you). Login To Your Admin Control Panel.
Personalize Your Website (takes just 5 minutes).
(Copy of the Vendor Homepage: http://www.freemonthlywebsites2.com/ )
Next Page>>
|
