Lucene search
K

2739 matches found

Tenable Nessus
Tenable Nessus
added 2015/03/05 12:0 a.m.261 views

Fedora 20 : php-5.5.22-1.fc20 (2015-2328)

19 Feb 2015, PHP 5.5.22 Core : - Fixed bug 67068 getClosure returns somethings that's not a closure. Danack at basereality dot com - Fixed bug 68925 Mitigation for CVE-2015-0235 ' GHOST: glibc gethostbyname buffer overflow. Stas - Fixed bug 68942 Use after free vulnerability in unserialize with...

10CVSS7.7AI score0.94859EPSS
Exploits38References1
Tenable Nessus
Tenable Nessus
added 2015/01/05 12:0 a.m.30 views

Centreon 'insertLog()' Function RCE

The Centreon application hosted on the remote web server is affected by a remote code execution vulnerability due to a failure to properly sanitize user-supplied input before using it in a SQL query. The application uses the 'echo' system command with the PHP exec function which allows a remote,...

7AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2014/12/10 11:38 a.m.4 views

Low: Red Hat Bug Fix Advisory: docker bug fix and enhancement update

An updated docker package that fixes several bugs and adds various enhancements is now available for Red Hat Enterprise Linux 7 Extras. Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that will run virtually...

7.5CVSS7.1AI score0.04909EPSS
Exploits0References1
Vulnerability Lab
Vulnerability Lab
added 2014/12/05 12:0 a.m.46 views

NASA Orion - Bypass, Persistent Issue & Embed Code Exec

Document Title: =============== NASA Orion - Bypass, Persistent Issue & Embed Code Exec References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1339 VU666988 US CERT Vulnerability Magazine:...

7.1AI score
Exploits0
0day.today
0day.today
added 2014/10/09 12:0 a.m.81 views

e-Commerce Vision Design Group Code injection Vulnerability

Exploit for php platform in category web applications Exploit Title: e-Commerce Vision Design Group Code injection Date: 10/09/2014 Exploit Author: MindCracker - Team MaDLeeTs Contact : email protected | FB.Com/Pakistani1337 Greetz : KhantastiC - b0x - 1337 - H4x0rl1f3 - Shadow008 - Invectus...

7.1AI score
Exploits0
UbuntuCve
UbuntuCve
added 2014/09/29 10:55 p.m.26 views

CVE-2012-6110

bcron-exec in bcron before 0.10 does not close file descriptors associated with temporary files when running a cron job, which allows local users to modify job files and send spam messages by accessing an open file descriptor...

2.1CVSS5.8AI score0.00429EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2014/09/29 10:0 p.m.18 views

CVE-2012-6110

bcron-exec in bcron before 0.10 does not close file descriptors associated with temporary files when running a cron job, which allows local users to modify job files and send spam messages by accessing an open file descriptor...

2.1CVSS6.1AI score0.00429EPSS
Exploits1
WPVulnDB
WPVulnDB
added 2014/08/01 10:58 a.m.9 views

PHP Speedy <= 0.5.2 - (admin_container.php) Remote Code Exec Exploit

The phpspeedywp WordPress plugin was affected by a admincontainer.php Remote Code Exec Exploit security vulnerability...

2.5AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2014/07/16 12:0 a.m.22 views

Node Browserify 4.2.0 - Remote Code Execution

!/usr/bin/python """ Browserify POC exploit http://iops.io/blog/browserify-rce-vulnerability/ To run, just do: $ python poc.py exploit.js $ browserify exploit.js BITCH I TOLD YOU THIS SHIT IS FABULOUS garbage output ,,,1 00:08:32 up 12:29, 3 users, load average: 0.00, 0.02, 0.05 uid=1001foxx...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

J-Integra 2.11 - ActiveX SetIdentity() Buffer Overflow Exploit

No description provided by source. !-- Exploit Title: J-Integra v2.11 ActiveX SetIdentity Buffer Overflow Exploit Found By: DrIDE Download: http://j-integra.intrinsyc.com/ Greets: bz1p, [email protected] for finding the app. Tested on: XP SP3 IE7 CVE: 0day Notes: This is not the same control as...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

PHP Speedy <= 0.5.2 Wordpress Plugin (admin_container.php) Remote Code Exec Exploit

No description provided by source. ?php / php speedy = 0.5.2 wordpress plugin admincontainer.php Remote Code Exec Exploit vendor: http://aciddrop.com/ ------------------------------- May the stars be aligned! php.ini requirements: registerglobals=On allowurlinclude=On magicquotesgpc=Off...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

freebsd/x86-64 exec("/bin/sh") shellcode 31 bytes

No description provided by source. / | | | | | | | \ | | | | || |/ |/ | |/ / ' \ | | / | | | | | | | | | | | | | | | | || ||,|||\| || || \/||| http://www.hacknroll.com Description: FreeBSD x86-64 exec/bin/sh Shellcode - 31 bytes Authors: Maycon M. Vitali 0ut0fBound Milw0rm .:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

phpBB <= 2.0.10 Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; @@@@@@@ @@@ @@@ @@@@@@ @@@ @@@ @@! @@@ @@! @@@ !@@ @@! @@@ @!@!!@! @!@ !@! !@@!! @!@!@!@! !!: :!! !!: !!! !:! !!: !!! : : : :.:: : ::.: : : : : phpBB = 2.0.10 remote commands exec exploit based on...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

GNU Mailutils imap4d 0.6 - Remote Format String Exploit (exec-shield)

No description provided by source. / Fedora Core 6 exec-shield based GNU imap4d mailutils-0.6 search remote format string exploit by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL: http://x82.inetcop.org/h0me/papers/FCexploit/FCexploit.txt Reference:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Radasm 2.2.1.6 - (.rap) Universal Buffer Overflow Exploit

No description provided by source. !/usr/bin/python + Radasm .rap Universal buffer overflow Exploit + Original : http://www.exploit-db.com/exploits/11392 + Exploit : Dzattacker [email protected] header1= \x5b\x50\x72\x6f\x6a\x65\x63\x74\x5d\x0d\x0a\x41\x73\x73\x65\x6d\x62\x6c\x65\x72...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Slaed CMS Code Exec Vulnerability

No description provided by source. Exploit Title: Slaed CMS Code exec Google Dork: Powered by SLAED CMS Date: 03.05.2011 Author: brainpillow Software Link: http://slaed.net/ Version: OpenSlaed 1.2 free, Slaed CMS = 4. On different versions of this software next vulnerabilities are availible:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

CoolPlayer 2.19 - (Skin File) Local Buffer Overflow Exploit

No description provided by source. / CoolPlayer 2.19 Skin File Local Buffer Overflow Exploit Advisory: http://www.bmgsec.com.au/advisory/43/ Test box: WinXP Pro SP2 English Code reference is in skin.c, lines 464 - 480 Written and discovered by: r0ut3r writ3r at gmail.com / www.bmgsec.com.au /...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

Download & Exec polymorphed shellcode Engine

No description provided by source. Download & Exec polymorphed shellcode engine POC This downloading and execution code is not detectable by popular AVs. Greetz 2: DarkEagle and Unl0ck researcherz; Str0ke and milw0rm; HD Moor and metasploit project; Maxus, Fuchunic, YrSam, Garry; Offtopic and PTT...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Symantec Backup Exec System Recovery Manager 7.0 FileUpload Class Unauthorized File Upload Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27487/info Symantec Backup Exec System Recovery Manager is prone to a vulnerability that allows arbitrary unauthorized files to be uploaded to any location on the affected server. This issue resides in the Symantec...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

wu-ftpd 2.4.2/2.5 .0/2.6 .0 - Remote Format String Stack Overwrite (2)

No description provided by source. source: http://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a very serious remote attack in the...

7.1AI score
Exploits0
Rows per page
Query Builder