Lucene search
K

111 matches found

Packet Storm
Packet Storm
added 2009/05/03 12:0 a.m.24 views

Golabi CMS 1.0.1 Session Poisoning

-------------------------------------------------------------------------------- \ \ / \ | | / \ /\ \ \ \ /| | \ /|| / / | /| /\ / \ / / / // / /// / -------------------------------------------------------------------------------- wWw.CrazyAngel.iR - info-AT-CrazyAngel.iR...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/01/29 12:0 a.m.20 views

Profense Web Application Firewall 2.6.2 - Cross-Site Request Forgery Cross-Site Scripting

Profense Web Application Firewall 2.6.2 - Cross-Site Request Forgery Cross-Site Scripting Written By Michael Brooks Special thanks to str0ke! Affects: Profense Web Application Firewall XSRF and XSS Version: 2.6.2 download http://www.armorlogic.com/downloadsoftware.html "Defenses against all OWASP...

0.2AI score
Exploits0
Prion
Prion
added 2008/08/27 8:41 p.m.18 views

Design/Logic Flaw

The web management console in Trend Micro OfficeScan 7.0 through 8.0, Worry-Free Business Security 5.0, and Client/Server/Messaging Suite 3.5 and 3.6 creates a random session token based only on the login time, which makes it easier for remote attackers to hijack sessions via brute-force attacks...

7.5CVSS7.7AI score0.10929EPSS
Exploits1References10Affected Software3
CVE
CVE
added 2006/06/28 10:0 p.m.50 views

CVE-2006-3285

The CVE-2006-3285 entry concerns Cisco Wireless Control System (WCS) prior to version 3.2(51). The internal database uses an undocumented, hard-coded username and password, enabling remote authenticated users to read and potentially modify sensitive configuration data (CSCsd15955). Connected docu...

7.5CVSS6.4AI score0.02632EPSS
Exploits0References7Affected Software1
FreeBSD
FreeBSD
added 2005/02/21 12:0 a.m.41 views

phpmyadmin -- arbitrary file include and XSS vulnerabilities

A phpMyAdmin security announcement reports: We received two bug reports by Maksymilian Arciemowicz about those vulnerabilities and we wish to thank him for his work. The vulnerabilities apply to those points: css/phpmyadmin.css.php was vulnerable against $cfg and GLOBALS variable injections. This...

6.6AI score
Exploits0References2
Packet Storm
Packet Storm
added 2004/07/01 12:0 a.m.30 views

phpMyAdmin257.txt

Software : phpMyAdmin Version : 2.5.7 Vulnerability : php codes injection Problem-Type : remote user phpMyAdmin is web-based mysql administration written in PHP. There is a vulnerability in phpMyAdmin version 2.5.7. This vulnerability would allow remote user to inject php codes to be executed by...

Exploits0
securityvulns
securityvulns
added 2004/01/09 12:0 a.m.33 views

Cisco Security Advisory: Cisco Personal Assistant User Password Bypass Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Personal Assistant User Password Bypass Vulnerability Document ID: 47765 Revision 1.0 FINAL For Public Release 2004 January 8 17:00 UTC GMT - ----------------------------------------------------------------------- Conten...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2002/05/13 12:0 a.m.22 views

wolfmail.cgi.txt

+-..-+ WolfMail.cgi +-./.-+ by Dead Beat The Advanced Knowledge Network http://www.advknowledge.net Mailirritation possibillity fake and highfire an account Wolfmail is a script similar to formmail.cgi which allows users to send mails from the page without using their Mailclient. However I guess...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2001/05/10 12:0 a.m.51 views

Tektronix PhaserLink Multiple Admin Page Unauthenticated Configuration Manipulation

The file /nclitems.shtml or /nclsubjects.shtml exists on the remote web server. If the remote host is a Tektronix printer, then this page allows anyone to reconfigure it without any authentication means whatsoever. An attacker may use this flaw to conduct a denial of service attack against your...

6.4CVSS5.6AI score0.04931EPSS
Exploits0References2
exploitpack
exploitpack
added 2001/02/27 12:0 a.m.22 views

Cisco IOS 11.x12.0 - ILMI SNMP Community String

Cisco IOS 11.x12.0 - ILMI SNMP Community String source: https://www.securityfocus.com/bid/2427/info IOS is the operating system designed for various Cisco devices. It is maintained and distributed by Cisco systems. A problem in the versions of IOS 11.x and 12.0 could allow unauthorized access to...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2000/08/02 12:0 a.m.39 views

Advisory: mailman local compromise

Author : Stan Bubrouski Date : August 1, 2000 Package : mailman Versions affected : 2.0beta3 released: 2000-Jun-28 23:25 2.0beta4 released: 2000-Jul-06 21:27 Severity : access to group mailman binaries are installed as which usually mailman. Most directories in a mailman install are mode 2755 as...

7AI score
Exploits0
Rows per page
Query Builder