Lucene search
K

7668 matches found

Exploit DB
Exploit DB
added 2004/05/05 12:0 a.m.63 views

PHPX 3.x - '/page.php' Cross-Site Request Forgery / Arbitrary Command Execution

source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative commands. This issue could permit a remot...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/05/05 12:0 a.m.27 views

PHPX 3.x - '/forums.php' Cross-Site Request Forgery / Arbitrary Command Execution

source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative commands. This issue could permit a remot...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/04/30 12:0 a.m.218 views

Coppermine Photo Gallery 1.2.2b - theme.php Remote File Inclusion

Coppermine Photo Gallery 1.2.2b - theme.php Remote File Inclusion source: https://www.securityfocus.com/bid/10253/info Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution. These issues occur because the...

Exploits0
exploitpack
exploitpack
added 2004/04/30 12:0 a.m.10 views

Coppermine Photo Gallery 1.2.2b - menu.inc.php Cross-Site Scripting

Coppermine Photo Gallery 1.2.2b - menu.inc.php Cross-Site Scripting source: https://www.securityfocus.com/bid/10253/info Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution. These issues occur because the...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2004/04/30 12:0 a.m.47 views

Coppermine Photo Gallery 1.2.0 RC4 - init.inc.php Remote File Inclusion

Coppermine Photo Gallery 1.2.0 RC4 - init.inc.php Remote File Inclusion source: https://www.securityfocus.com/bid/10253/info Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution. These issues occur because t...

Exploits0
Exploit DB
Exploit DB
added 2004/04/30 12:0 a.m.238 views

Coppermine Photo Gallery 1.2.2b - 'theme.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/10253/info Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution. These issues occur because the application fails to properly sanitize and validate user-supplied inp...

7.4AI score
Exploits0
Debian
Debian
added 2004/04/29 10:30 a.m.44 views

[SECURITY] [DSA 496-1] New eterm packages fix indirect arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 496-1 [email protected] http://www.debian.org/security/ Martin Schulze April 29th, 2004 http://www.debian.org/security/faq -...

7.5CVSS6.2AI score0.01944EPSS
Exploits0
NVD
NVD
added 2004/04/15 4:0 a.m.18 views

CVE-2004-0151

Unknown vulnerability in xitalk 1.1.11 and earlier allows local users to execute arbitrary commands...

7.2CVSS6.8AI score0.00397EPSS
Exploits0References5
CVE
CVE
added 2004/04/06 4:0 a.m.61 views

CVE-2004-0377

CVE-2004-0377: A buffer overflow in the win32_stat wrapper used by ActivePerl (ActiveState) and Larry Wall’s Perl up to 5.8.3 allows local or remote code execution when a filename ends with a backslash. Exploitation depends on how the vulnerable Perl is used by an application; Windows environment...

10CVSS7.7AI score0.0686EPSS
Exploits0References6Affected Software2
exploitpack
exploitpack
added 2004/04/03 12:0 a.m.13 views

Aborior Encore Web Forum - Arbitrary Command Execution

Aborior Encore Web Forum - Arbitrary Command Execution source: https://www.securityfocus.com/bid/10040/info Encore Web Forum is reported prone to an issue that may allow a remote user to execute arbitrary commands on a system implementing the forum software. This issue is due to the application's...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2004/04/03 12:0 a.m.55 views

Aborior Encore Web Forum - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/10040/info Encore Web Forum is reported prone to an issue that may allow a remote user to execute arbitrary commands on a system implementing the forum software. This issue is due to the application's failure to properly validate user-supplied URI input. ...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/03/04 12:0 a.m.18 views

SpiderSales Shopping Cart SQL injection

The remote host is running the SpiderSales Shopping Cart CGI suite. There is a bug in this suite which may allow an attacker to force it to execute arbitrary SQL statements on the remote host. An attacker may use this flaw to gain the control of the remote website and possibly execute arbitrary...

10CVSS6.3AI score0.0331EPSS
Exploits1References2
securityvulns
securityvulns
added 2004/02/17 12:0 a.m.78 views

AllMyVisitors PHP Code Injection vulnerability

AllMyVisitors PHP Code Injection vulnerability Product : AllMyVisitors Vendor : www.php-resource.net Date : February 14, 2004 Problem : PHP Code Injection Vendor Contacted ? : No Source in /include/info.inc.php -------------------------------------------------------------- $AMVinfoget =...

3.1AI score
Exploits0
securityvulns
securityvulns
added 2004/02/17 12:0 a.m.321 views

AllMyLinks PHP Code Injection vulnerability

AllMyLinks PHP Code Injection vulnerability Product : AllMyLinks Vendor : www.php-resource.net Date : February 14, 2004 Problem : PHP Code Injection Vendor Contacted ? : No Source in /include/footer.inc.php -------------------------------------------------------------- $AMLfooterget =...

1.3AI score
Exploits0
exploitpack
exploitpack
added 2004/02/16 12:0 a.m.11 views

AllMyVisitors 0.x - info.inc.php Arbitrary Code Execution

AllMyVisitors 0.x - info.inc.php Arbitrary Code Execution source: https://www.securityfocus.com/bid/9664/info Reportedly the AllMyPHP applications AllMyGuests, AllMyLinks and AllMyVisitors are prone to a remote file include vulnerability. The issue is due to insufficient filtering of URI passed...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2004/02/16 12:0 a.m.60 views

AllMyGuests 0.x - 'info.inc.php' Arbitrary Code Execution

source: https://www.securityfocus.com/bid/9664/info Reportedly the AllMyPHP application AllMyGuests is prone to a remote file include vulnerability. The issue is due to insufficient filtering of URI passed variables that are used in a 'requireonce' call. This issue may allow a remote attacker to...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/02/09 12:0 a.m.23 views

Microsoft Windows XP - HCP URI Handler Arbitrary Command Execution

Microsoft Windows XP - HCP URI Handler Arbitrary Command Execution source: https://www.securityfocus.com/bid/9621/info The Microsoft Windows XP HCP URI handler has been reported prone to a vulnerability that may provide for arbitrary command execution. The issue is reported to present itself when...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2004/02/09 12:0 a.m.29 views

Microsoft Windows XP - HCP URI Handler Arbitrary Command Execution

source: https://www.securityfocus.com/bid/9621/info The Microsoft Windows XP HCP URI handler has been reported prone to a vulnerability that may provide for arbitrary command execution. The issue is reported to present itself when a specially formatted HCP URI that references a local resource is...

7.4AI score
Exploits0
OSV
OSV
added 2004/02/03 5:0 a.m.9 views

CVE-2003-0949

xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands...

6.8AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2004/02/03 12:0 a.m.21 views

Qualiteam X-Cart Multiple Script perl_binary Parameter Arbitrary Command Execution

The remote host is running Qualiteam X-Cart - a shopping cart software written in PHP. There is a bug in this software that could allow an attacker to execute arbitrary commands on the remote web server with the privileges of the web user. In addition to this, there are some flaws that could allo...

10CVSS5.6AI score0.06028EPSS
Exploits1References1
Rows per page
Query Builder