Lucene search
K

15 matches found

Vulnrichment
Vulnrichment
added 2023/11/07 12:0 a.m.15 views

CVE-2023-46501

An issue in BoltWire v.6.03 allows a remote attacker to obtain sensitive information via a crafted payload to the view and change admin password function...

6.8AI score0.01267EPSS
Exploits1References2
0day.today
0day.today
added 2020/05/04 12:0 a.m.49 views

BoltWire 6.03 - Local File Inclusion Vulnerability

Exploit for php platform in category web applications Exploit Title: BoltWire 6.03 - Local File Inclusion Exploit Author: Andrey Stoykov Vendor Homepage: https://www.boltwire.com/ Software Link: https://www.boltwire.com/downloads/go&v=6&r=03 Version: 6.03 Tested on: Ubuntu 20.04 LAMP LFI: Steps t...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/05/04 12:0 a.m.289 views

BoltWire 6.03 Local File Inclusion

Exploit Title: BoltWire 6.03 - Local File Inclusion Date: 2020-05-02 Exploit Author: Andrey Stoykov Vendor Homepage: https://www.boltwire.com/ Software Link: https://www.boltwire.com/downloads/go&v=6&r=03 Version: 6.03 Tested on: Ubuntu 20.04 LAMP LFI: Steps to Reproduce: 1 Using HTTP GET request...

7.4AI score
Exploits0
CVE
CVE
added 2019/05/14 8:20 p.m.49 views

CVE-2019-0280

CVE-2019-0280 affects SAP Treasury and Risk Management (EA-FINSERV 6.0, 6.03–6.06, 6.16–6.18, and 8.0; S4CORE 1.01–1.03). The issue is missing authorization checks on objects T_DEAL_DP and T_DEAL_PD, leading to escalation of privileges. The vulnerability is documented with HIGH impact per CVSSv3 ...

8.8CVSS8.9AI score0.01141EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/10/10 3:29 p.m.12 views

Design/Logic Flaw

Virtualmin 6.03 allows Frame Injection via the settings-editorread.cgi file parameter...

4.3CVSS6.6AI score0.00655EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2018/10/10 3:29 p.m.10 views

Design/Logic Flaw

Virtualmin 6.03 allows XSS via the query string, as demonstrated by the webminsearch.cgi URI...

4.3CVSS6AI score0.00655EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/10/10 3:0 p.m.19 views

CVE-2018-18207

Virtualmin 6.03 allows Frame Injection via the settings-editorread.cgi file parameter...

6.5AI score0.00655EPSS
Exploits0References1
Metasploit
Metasploit
added 2018/06/06 4:27 p.m.89 views

LibreOffice 6.03 /Apache OpenOffice 4.1.5 Malicious ODT File Generator

Generates a Malicious ODT File which can be used with auxiliary/server/capture/smb or similar to capture hashes. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'base64' require 'rex/zip' class MetasploitModul...

7.5CVSS0.78905EPSS
Exploits6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

Pentacle In-Out Board <= 6.03 (login.asp) Remote Auth Bypass

No description provided by source. html titlePentacle In-Out Board = 6.03 login.asp Authencation ByPass Vulnerability/title script language=javascript function ptxpl ifdocument.xpl.victim.value== alertPlease enter site!; return false; ifconfirmAre you sure?...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

pntresmailer 6.0 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11767/info pnTresMailer is reported susceptible to a directory traversal vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input data. This vulnerability can be exploited ...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2012/01/16 12:0 a.m.124 views

ME020567: MailEnable webmail cross-site scripting vulnerability CVE-2012-0389

ME020567: MailEnable webmail cross-site scripting vulnerability CWE-79 References: CVE-2012-0389 Discovered by: Sajjad Pourali, Narendra Shinde and Shahab NamaziKhah Vendor advisory: http://www.mailenable.com/kb/Content/Article.asp?ID=me020567 Vendor contact: 2012-01-04 09:49:36 UTC Vendor...

4.3CVSS6.2AI score0.0842EPSS
Exploits5
exploitpack
exploitpack
added 2006/07/26 12:0 a.m.13 views

OpenCMS 6.06.2 - Multiple Unauthorized Access Vulnerabilities

OpenCMS 6.06.2 - Multiple Unauthorized Access Vulnerabilities source: https://www.securityfocus.com/bid/19174/info OpenCMS is prone to multiple unauthorized-access vulnerabilities because it fails to properly authenticate users when performing administrative tasks. An attacker can exploit these...

0.9AI score
Exploits0
0day.today
0day.today
added 2006/02/25 12:0 a.m.119 views

Pentacle In-Out Board <= 6.03 (login.asp) Remote Auth Bypass

Exploit for unknown platform in category web applications ============================================================ Pentacle In-Out Board Pentacle In-Out Board function ptxpl ifdocument.xpl.victim.value=="" alert"Please enter site!"; return false; ifconfirm"Are you sure?"...

7.1AI score
Exploits0
NVD
NVD
added 2005/01/10 5:0 a.m.9 views

CVE-2004-1205

codebrowserpntm.php in PnTresMailer 6.03 allows remote attackers to gain sensitive information via an invalid filetohighlight parameter, which reveals the full path in an error message...

5CVSS6.5AI score0.01678EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2002/08/06 12:0 a.m.24 views

Opera 6.0.x - FTP View Cross-Site Scripting

source: https://www.securityfocus.com/bid/5401/info A cross-site scripting vulnerability in Opera has been reported. When viewing the contents of an FTP site as web content, the data within tags is not sanitized. An attacker may embed javascript between open and closing tags in a FTP URL. This...

7.4AI score
Exploits0
Rows per page
Query Builder