Digital Security Research Group [DSecRG]

29 exploits Active since Mar 2008
EIP-2026-104804 EXPLOITDB text WRITEUP
1024 CMS 1.4.4 - Multiple Local/Remote File Inclusions
CVE-2008-5518 EXPLOITDB text WRITEUP
Apache Geronimo Application Server <2.1.3 - Path Traversal
Multiple directory traversal vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 on Windows allow remote attackers to upload files to arbitrary directories via directory traversal sequences in the (1) group, (2) artifact, (3) version, or (4) fileType parameter to console/portal//Services/Repository (aka the Services/Repository portlet); the (5) createDB parameter to console/portal/Embedded DB/DB Manager (aka the Embedded DB/DB Manager portlet); or the (6) filename parameter to the createKeystore script in the Security/Keystores portlet.
EIP-2026-101169 EXPLOITDB text WRITEUP
AXIS 70U - Network Document Server Privilege Escalation / Cross-Site Scripting
CVE-2008-1331 EXPLOITDB text WRITEUP
OmniPCX Office OXO210 < 210/091.001 and OXO600 < 610/014.001 - Remote Command Execution via FastJSData.cgi id2 Parameter
cgi-data/FastJSData.cgi in OmniPCX Office with Internet Access services OXO210 before 210/091.001, OXO600 before 610/014.001, and other versions, allows remote attackers to execute arbitrary commands and "obtain OXO resources" via shell metacharacters in the id2 parameter.