Lucene search
K

777 matches found

Exploit DB
Exploit DB
added 2013/02/05 12:0 a.m.44 views

glossword 1.8.12 - Multiple Vulnerabilities

=================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF && Shell upload. Dork: Powered by Glossword 1.8.1...

7AI score
Exploits0
myhack58
myhack58
added 2012/10/27 12:0 a.m.26 views

tipask the background to get shell-vulnerability warning-the black bar safety net

Recently seen is tipask system shows a vulnerability, it is said that only the root to get a shell, but looking at the background function is so rich, side dish, or try in addition to take the shell method, saying that although not pass to kill, but also can barely use with tipask background not...

0.2AI score
Exploits0
0day.today
0day.today
added 2012/08/13 12:0 a.m.134 views

Open Upload <== Full DataBase Buckup Vulnerability

Exploit for php platform in category web applications Exploit Title: Open Upload == Full Multiple Vulnerabilites Author: email protected Vendor or Software Link: http://openupload.sourceforge.net/ Google dork: "Open Upload - Created by Alessandro Briosi 2009" Tested on: Xp SP 2 Poc : 1 -...

7.1AI score
Exploits0
myhack58
myhack58
added 2012/08/08 12:0 a.m.17 views

ZYCHCMS enterprise website management system SQL injection vulnerability and the background to get webshell-vulnerability warning-the black bar safety net

Affected versions: ZYCHCMS enterprise website management system 4. 2 exist the following two file versions should be the General killed ①SQL injection vulnerability Vulnerability file:/admin/addjs. asp & /admin/addxmjiang. asp Vulnerability causes: not filtered Vulnerability code: Are the same, t...

7.5AI score
Exploits0
myhack58
myhack58
added 2012/06/25 12:0 a.m.17 views

Cannes the company registered the class website system cookie injection vulnerability-vulnerability warning-the black bar safety net

Cannes the company registered the class website system v9. 6 cookies injection transit http://www.xxxx.com /jmcook. asp? jmdcw=1 7+and 1=2 union select 1,2,password,4,5,password,7,8,9,1 0,1 1,1 2,1 3 from admin Background get the shell cookies name kid can upload ewe modify the style Database...

1AI score
Exploits0
myhack58
myhack58
added 2012/06/05 12:0 a.m.18 views

shopxp online shopping system v7. 4 SQL injection vulnerability-vulnerability warning-the black bar safety net

Keywords: inurl:shopxpnews. asp Injected code: TEXTBOX2. ASP? action=modify&news%69d=1 2 2%20and%2 0 1=2%20union%20select%201,2,admin%2bpassword,4,5,6,7%20from%20shopxpadmin Broke the user name and password note: username and password are connected together, after the sixth bit is the password MD...

1.2AI score
Exploits0
exploitpack
exploitpack
added 2012/05/23 12:0 a.m.11 views

phpCollab 2.5 - Database Backup Information Disclosure

phpCollab 2.5 - Database Backup Information Disclosure source: https://www.securityfocus.com/bid/53656/info phpCollab is prone to an information-disclosure vulnerability because it fails to sufficiently validate user-supplied data. An attacker can exploit this issue to download backup files that...

7.2AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/23 12:0 a.m.26 views

PHPCollab 2.5 Database Backup Disclosure

Exploit Title: phpcollab Unauthenticated Database Backup Download Date: 3/5/2012 Author: team ' and 1=1-- Software Link: http://www.phpcollab.com/ Version: 2.5 Vulnerability was found during the AthCon IT Security Conference CTF CTF organizer: echothrust During AthCon CTF the team ' and 1=1--...

7.4AI score
Exploits0
myhack58
myhack58
added 2012/05/19 12:0 a.m.18 views

Artiphp CMS 5.5.0 database backup disclosure Exploit-vulnerability warning-the black bar safety net

? php / Artiphp CMS 5.5.0 Database Backup Disclosure Exploit Author: Artiphp www.2cto.com http://www.artiphp.com Affected version: 5.5.0 Neo r422 Summary: Artiphp is a content management system CMS open and free to create and manage your website. Description: Artiphp stores database backups using...

Exploits0
Packet Storm
Packet Storm
added 2012/05/17 12:0 a.m.24 views

Artiphp CMS 5.5.0 Database Backup Disclosure

\n\n\n"; die; $godinaarray = array'2012','2011','2010'; $mesecarray = array'12','11','10','09', '08','07','06','05', '04','...

7.4AI score
Exploits0
0day.today
0day.today
added 2012/05/16 12:0 a.m.24 views

Artiphp CMS 5.5.0 Database Backup Disclosure Exploit

Exploit for php platform in category web applications ?php / Artiphp CMS 5.5.0 Database Backup Disclosure Exploit Vendor: Artiphp Product web page: http://www.artiphp.com Affected version: 5.5.0 Neo r422 Summary: Artiphp is a content management system CMS open and free to create and manage your...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2012/05/16 12:0 a.m.21 views

Artiphp CMS 5.5.0 - Database Backup Disclosure

?php / Artiphp CMS 5.5.0 Database Backup Disclosure Exploit Vendor: Artiphp Product web page: http://www.artiphp.com Affected version: 5.5.0 Neo r422 Summary: Artiphp is a content management system CMS open and free to create and manage your website. Desc: Artiphp stores database backups using...

7.4AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2012/05/16 12:0 a.m.37 views

Artiphp CMS 5.5.0 Database Backup Disclosure Exploit

Summary Artiphp is a content management system CMS open and free to create and manage your website. Description Artiphp stores database backups using backupDB utility with a predictable file name inside the web root, which can be exploited to disclose sensitive information by downloading the file...

5CVSS5.7AI score0.03112EPSS
Exploits2
securityvulns
securityvulns
added 2012/04/09 12:0 a.m.114 views

&#39;PHP Grade Book&#39; Unauthenticated SQL Database Export &#40;CVE-2012-1670&#41;

'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to export the entire application database by...

5CVSS6.7AI score0.07755EPSS
Exploits6
0day.today
0day.today
added 2012/03/22 12:0 a.m.51 views

PHP Grade Book 1.9.4 Unauthenticated SQL Database Export

Exploit for php platform in category web applications 'PHP Grade Book' Unauthenticated SQL Database Export CVE-2012-1670 Mark Stanislav - email protected I. DESCRIPTION --------------------------------------- A vulnerability exists in admin/index.php that allows for an unauthenticated user to...

7.1AI score0.07755EPSS
Exploits6
Exploit DB
Exploit DB
added 2012/03/19 12:0 a.m.40 views

ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet - Directory Traversal

ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Database Backup / auth-conf.xml Disclosure Exploit product homepage: http://www.manageengine.com/products/device-expert/ file tested: ManageEngineDeviceExpert.exe tested against:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/03/19 12:0 a.m.43 views

ManageEngine Device Expert 5.6 Directory Traversal

ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Database Backup / auth-conf.xml Disclosure Exploit product homepage: http://www.manageengine.com/products/device-expert/ file tested: ManageEngineDeviceExpert.exe tested against:...

Exploits0
0day.today
0day.today
added 2012/03/19 12:0 a.m.46 views

ManageEngine DeviceExpert 5.6 Java Server Directory Traversal

Exploit for jsp platform in category web applications ManageEngine DeviceExpert 5.6 Java Server ScheduleResultViewer servlet Unauthenticated Remote Directory Traversal Database Backup / auth-conf.xml Disclosure Exploit product homepage: http://www.manageengine.com/products/device-expert/ file...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2011/12/29 12:0 a.m.56 views

Vtiger CRM <= 5.2.1 Authentication Bypass Vulnerability - Active Check

Vtiger CRM is prone to an authentication bypass vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vtiger:vtigercrm";...

5.8AI score
Exploits0References2
Packet Storm
Packet Storm
added 2011/10/19 12:0 a.m.40 views

Free Way osCommerce Shell Upload / File Disclosure

======================================================== Free Way osCommerce Remote File Upload / File Disclosure ======================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=0 0 1 1 | | | | | | | | | | | | \ \ / / 0 0 | | | | | | / / | | | || | ...

7.4AI score
Exploits0
Rows per page
Query Builder