Lucene search
K

6483 matches found

Packet Storm
Packet Storm
added 2008/12/30 12:0 a.m.30 views

MyPBS SQL Injection Exploit

!/usr/bin/perl Coded by Piker pikerdotther00tatgmaildotcom D.O.M Team piker,ka0x,an0de,xarnuz 2008 Security Researchers MyPBS Remote SQL Injection Exploit This exploit tries to read an arbitrary file. piker@domlabs:/advisories$ perl mypbs.pl http://localhost/mypbs /etc/passwd + File HEX:...

0.2AI score
Exploits0
OpenVAS
OpenVAS
added 2008/10/24 12:0 a.m.25 views

Free Articles Directory Remote File Inclusion Vulnerability

The remote web server contains a PHP application that is affected by a remote file include vulnerability. Description : The remote host is running Free Articles Directory, a CMS written in PHP. The installed version of Free Articles Directory fails to sanitize user input to the 'page' parameter i...

7.5CVSS0.4AI score0.01806EPSS
Exploits0References2
securityvulns
securityvulns
added 2008/10/23 12:0 a.m.49 views

SECOBJADV-2008-05: Symantec Veritas Storage Foundation Arbitrary File Read Vulnerability

====================================================================== = Security Objectives Advisory SECOBJADV-2008-05 = ====================================================================== Veritas Storage Foundation Arbitrary File Read Vulnerability...

4.6CVSS0.2AI score0.00325EPSS
Exploits0
seebug.org
seebug.org
added 2008/10/05 12:0 a.m.28 views

geccBBlite 2.0 (leggi.php id) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Coded by Piker pikerdotther00tatgmaildotcom D.O.M Team piker,ka0x,an0de,xarnuz 2008 Security Researchers geccBBlite Forums SQL Injection Exploit This exploit tries to read an arbitrary file. piker@domlabs:/advisories$ perl geccBB.pl...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/05 12:0 a.m.28 views

geccBBlite 2.0 - 'id' SQL Injection

!/usr/bin/perl Coded by Piker pikerdotther00tatgmaildotcom D.O.M Team piker,ka0x,an0de,xarnuz 2008 Security Researchers geccBBlite Forums SQL Injection Exploit This exploit tries to read an arbitrary file. piker@domlabs:/advisories$ perl geccBB.pl http://localhost/geccBB /etc/passwd + Prefix:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/10/05 12:0 a.m.14 views

geccBBlite 2.0 - id SQL Injection

geccBBlite 2.0 - id SQL Injection !/usr/bin/perl Coded by Piker pikerdotther00tatgmaildotcom D.O.M Team piker,ka0x,an0de,xarnuz 2008 Security Researchers geccBBlite Forums SQL Injection Exploit This exploit tries to read an arbitrary file. piker@domlabs:/advisories$ perl geccBB.pl...

0.2AI score
Exploits0
seebug.org
seebug.org
added 2008/09/12 12:0 a.m.26 views

Php168 读取任意文件漏洞

代码:..job.php Line:117 if eregi".php",$url die"ERR"; $fileurl=strreplace$webdbwwwurl,"",$url; ifisfilePHP168PATH."$fileurl"&&filesizePHP168PATH."$fileurl"10241024500 $filename=basename$fileurl; $filetype=substrstrrchr$filename,'.',1; $filename=pregreplace"/\d+200\d+^+.^.+/is","\3",$filename;...

7.1AI score
Exploits0
Prion
Prion
added 2008/07/02 5:14 p.m.15 views

Directory traversal

Multiple directory traversal vulnerabilities in view/index.php in CMS Mini 0.2.2 allow remote attackers to read arbitrary local files via a .. dot dot in the 1 path and 2 p parameter...

5CVSS7.2AI score0.02672EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2008/05/12 10:20 p.m.25 views

CVE-2008-2004

The driveinit function in QEMU 0.9.1 determines the format of a raw disk image based on the header, which allows local guest users to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted...

4.9CVSS5.7AI score0.00508EPSS
Exploits1References14
OSV
OSV
added 2008/04/23 4:5 p.m.6 views

CVE-2008-1924

Unspecified vulnerability in phpMyAdmin before 2.11.5.2, when running on shared hosts, allows remote authenticated users with CREATE table permissions to read arbitrary files via a crafted HTTP POST request, related to use of an undefined UploadDir variable...

5.2AI score
Exploits0References15
Cvelist
Cvelist
added 2008/04/16 7:0 p.m.16 views

CVE-2008-1857

Multiple directory traversal vulnerabilities in viewsource.php in Make our Life Easy Mole 2.1.0 allow remote attackers to read arbitrary files via directory traversal sequences in the 1 dirn and 2 fname parameters...

6.9AI score0.01915EPSS
Exploits1References5
CVE
CVE
added 2008/04/02 5:0 p.m.46 views

CVE-2008-1643

CVE-2008-1643 describes a directory traversal vulnerability in LANDesk Management Suite (LDMS)’s PXE TFTP Service (PXEMTFTP.exe). Affected versions are LDMS 8.7 SP5 and earlier and 8.8. The flaw allows remote attackers to read arbitrary files via unspecified vectors in the PXE TFTP service. The a...

5CVSS6.6AI score0.0178EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2008/03/28 6:0 p.m.52 views

CVE-2008-0926

CVE-2008-0926 affects Novell eDirectory’s eMBox SOAP interface, where client-side authentication can be bypassed via requests to /SOAP URIs. This enables either read access to files or a denial of service (daemon shutdown). Affected products include eDirectory 8.7.3.9 and earlier, and 8.8.x befor...

7.5CVSS7AI score0.58179EPSS
Exploits3References7Affected Software1
UbuntuCve
UbuntuCve
added 2008/01/24 12:0 a.m.27 views

CVE-2007-4850

curl/interface.c in the cURL library aka libcurl in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safemode and openbasedir restrictions and read arbitrary files via a file:// request containing a \x00 sequence, a different vulnerability than CVE-2006-2563...

5CVSS6AI score0.05575EPSS
Exploits2References3
NVD
NVD
added 2008/01/17 10:0 p.m.26 views

CVE-2008-0333

Directory traversal vulnerability in downloadviewattachment.aspx in AfterLogic MailBee WebMail Pro 4.1 for ASP.NET allows remote attackers to read arbitrary files via a .. dot dot in the tempfilename parameter...

5CVSS6.7AI score0.11659EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2008/01/17 12:0 a.m.6 views

PT-2008-1966 · Afterlogic +1 · Afterlogic Mailbee Webmail Pro +1

Name of the Vulnerable Software and Affected Versions: AfterLogic MailBee WebMail Pro version 4.1 for ASP.NET Description: The issue allows remote attackers to read arbitrary files due to a directory traversal vulnerability in the download view attachment.aspx file. This is achieved by using a...

5CVSS6.7AI score0.11659EPSS
Exploits1References5
CVE
CVE
added 2008/01/08 7:0 p.m.59 views

CVE-2008-0140

CVE-2008-0140 affects Uebimiau Webmail 2.7.10 and 2.7.2, where a directory traversal vulnerability in error.php allows remote authenticated users to read arbitrary files via a .. in the selected_theme parameter. This is a separate vector from CVE-2007-3172. The connected sources confirm the affec...

6.4CVSS6.1AI score0.02297EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2007/10/20 10:0 a.m.38 views

CVE-2003-1427

Affected product: Netgear FM114P (firmware 1.4) web configuration interface. Vulnerability: Directory traversal via a hex-encoded (../../ )../ in the port parameter, allowing remote attackers to read arbitrary files (e.g., netgear.cfg). Root cause: Insufficient validation of the port parameter en...

6.4CVSS7.1AI score0.02808EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2007/09/11 7:0 p.m.18 views

CVE-2007-4820

Absolute path traversal vulnerability in blanko.preview.php in Sisfo Kampus 2006 allows remote attackers to read arbitrary local files, and possibly execute local PHP scripts, via the nmf parameter...

7AI score0.02334EPSS
Exploits1References4
CVE
CVE
added 2007/06/21 7:0 p.m.48 views

CVE-2007-3332

The CVE-2007-3332 entry concerns a directory traversal in Satellite.php of Satel Lite for PhpNuke, allowing remote attackers to read arbitrary files via a .. sequence in the name parameter used by a modload action. Affected component: Satellite.php in Satel Lite for PhpNuke. Root cause: improper ...

5CVSS6.7AI score0.02744EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder