papers

What this paper is This paper, published in 2011 by "RubberDuck," presents a small, 279-byte Windows shellcode. Its primary function is to create a new local administrator user on a target system. It achieves this by exe

What this paper is This paper, published by AutoSec Tools, details two vulnerabilities found in eGroupWare version 1.8.001.20110421. Local File Inclusion (LFI): This allows an attacker to include and execute arbitrary fi

What this paper is This paper details a SQL injection vulnerability found in ExtCalendar version 2.0b2. Specifically, the script fails to properly validate user input for the parameter. This allows an attacker to manipul

What this paper is This paper details a Local File Inclusion (LFI) vulnerability found in version 0.9.9-4 of the i-doIT web application. LFI vulnerabilities allow an attacker to include and execute files from the server'

What this paper is This paper details a critical SQL injection vulnerability found in Tickets version 2.13, a web-based ticketing system. The vulnerability allows an attacker to extract arbitrary data from the database.

What this paper is This paper details a local buffer overflow vulnerability in PHP versions 5.3.3 through 5.3.6, specifically within the function when using AF UNIX sockets. The exploit leverages this overflow to overwri