CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7009 matches found

0day.today•added 2008/04/09 12:0 a.m.•31 views

KnowledgeQuest 2.6 SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ================================================ KnowledgeQuest 2.6 SQL Injection Vulnerabilities ================================================ ...:::::KnowledgeQuest 2.6 SQL Injection Vulnerabilities ::::.... -------- Discoverd By...

7.1AI score

Exploits0

Exploit DB•added 2008/04/09 12:0 a.m.•30 views

KnowledgeQuest 2.6 - SQL Injection

...:::::KnowledgeQuest 2.6 SQL Injection Vulnerabilities ::::.... Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best friend in...

7AI score

Exploits0

Symantec•added 2008/04/08 12:0 a.m.•17 views

Microsoft VBScript and JScript Scripting Engines Remote Code Execution Vulnerability

Description Microsoft VBScript and JScript are prone to a remote code-execution vulnerability because they fail to adequately handle user-supplied input. Attackers can leverage this issue by enticing an unsuspecting user to view a malicious web document. Successful exploits would allow arbitrary...

0.9AI score

Exploits0Affected Software4

Packet Storm•added 2008/04/08 12:0 a.m.•5035 views

sitesift-sql.txt

powered by Site Sift scripts SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 BLOG : http://my.opera.com/SQL-Injection/blog/ MAiL : [email protected] DORK 1 : powered by Site Sift DORK 2 : allinurl: "index php go addpage" DORK 2 : allinurl: "index.php?go=deta...

7.4AI score

Exploits0

Tenable Nessus•added 2008/04/08 12:0 a.m.•56 views

MS08-025: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (941693)

The remote host contains a version of the Windows kernel that is vulnerable to a security flaw that could allow a local user to elevate his privileges or to crash it therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid31798;...

7.2CVSS5.4AI score0.06753EPSS

Exploits3References2

Exploit DB•added 2008/04/08 12:0 a.m.•37 views

phpTournois G4 - Arbitrary File Upload / Code Execution

Date: 04-06-08 - Remote Code Execution - Remote File Upload When testing if we are admin, phpTournois checks if $grade'a'=='a'. But when we are not loggued in, this var is not defined. So, using registerglobals, we can define it and let the CMS think we are authentificated. Using configuration zo...

7.4AI score

Exploits0

Circl•added 2008/04/08 12:0 a.m.•3 views

CVE-2008-6210

creationtimestamp| type| source ---|---|--- 2008-04-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5415 2009-12-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10751...

7.5CVSS5.8AI score0.00975EPSS

Exploits1References2

Circl•added 2008/04/08 12:0 a.m.•4 views

CVE-2008-4778

creationtimestamp| type| source ---|---|--- 2008-04-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5414 2008-04-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5447...

7.5CVSS5.8AI score0.01051EPSS

Exploits0References2

Circl•added 2008/04/07 12:0 a.m.•2 views

CVE-2008-1858

creationtimestamp| type| source ---|---|--- 2008-04-07 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5400 2010-05-10 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12560...

7.5CVSS5.8AI score0.00975EPSS

Exploits1References2

exploitpack•added 2008/04/06 12:0 a.m.•6171 views

Site Sift Listings - id SQL Injection

Site Sift Listings - id SQL Injection powered by Site Sift scripts SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 BLOG : http://my.opera.com/SQL-Injection/blog/ MAiL : [email protected] DORK 1 : powered by Site Sift DORK 2 : allinurl: "index php go addpage"...

Exploits0

Packet Storm•added 2008/04/04 12:0 a.m.•31 views

comdev-sql.txt

--==+================================================================================+==-- --==+ Comdev News Publisher SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz & xprog Discovered On: 4 Apri...

7.4AI score

Exploits0

Exploit DB•added 2008/04/04 12:0 a.m.•58 views

Comdev News Publisher 4.1.2 - SQL Injection

7.4AI score

Exploits0

exploitpack•added 2008/04/03 12:0 a.m.•10 views

Parallels Virtuozzo Containers 3.0.0-25.44.0.0-365.6 VZPP Interface File Manger - Cross-Site Request Forgery

Parallels Virtuozzo Containers 3.0.0-25.44.0.0-365.6 VZPP Interface File Manger - Cross-Site Request Forgery source: https://www.securityfocus.com/bid/28589/info Parallels Virtuozzo Containers is prone to a cross-site request-forgery vulnerability. Exploiting the issue will allow a remote attacke...

Exploits0

exploitpack•added 2008/04/03 12:0 a.m.•17 views

Parallels Virtuozzo Containers 3.0.0-25.4.swsoft VZPP Interface Change Pass - Cross-Site Request Forgery

Parallels Virtuozzo Containers 3.0.0-25.4.swsoft VZPP Interface Change Pass - Cross-Site Request Forgery source: https://www.securityfocus.com/bid/28593/info Parallels Virtuozzo Containers is prone to a cross-site request-forgery vulnerability. Exploiting the issue will allow a remote attacker to...

0.1AI score

Exploits0

Circl•added 2008/04/03 12:0 a.m.•2 views

CVE-2008-6211

creationtimestamp| type| source ---|---|--- 2008-04-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31598 2008-04-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31601 2008-04-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31602 2008-04-03...

4.3CVSS4.9AI score0.01478EPSS

Exploits1References7

Circl•added 2008/04/02 12:0 a.m.•3 views

CVE-2008-6196

creationtimestamp| type| source ---|---|--- 2008-04-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31587 2008-04-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31588 2008-04-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31589...

7.5CVSS4.9AI score0.02544EPSS

Exploits1References3

Circl•added 2008/04/01 12:0 a.m.•4 views

CVE-2008-1647

creationtimestamp| type| source ---|---|--- 2008-04-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5338 2008-12-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7594...

9.3CVSS5.8AI score0.07011EPSS

Exploits1References2

Exploit DB•added 2008/03/31 12:0 a.m.•24 views

Microsoft Crypto API X.509 Certificate Validation - Remote Information Disclosure

source: https://www.securityfocus.com/bid/28548/info Microsoft's Crypto API library is prone to an information-disclosure vulnerability because HTTP requests to arbitrary hosts and ports may be automatically triggered when validating X.509 certificates. Successful exploits allow attackers to...

7.4AI score

Exploits0

exploitpack•added 2008/03/31 12:0 a.m.•15 views

Microsoft Crypto API X.509 Certificate Validation - Remote Information Disclosure

Microsoft Crypto API X.509 Certificate Validation - Remote Information Disclosure source: https://www.securityfocus.com/bid/28548/info Microsoft's Crypto API library is prone to an information-disclosure vulnerability because HTTP requests to arbitrary hosts and ports may be automatically trigger...

7.3AI score

Exploits0

Circl•added 2008/03/27 12:0 a.m.•3 views

CVE-2008-1560

creationtimestamp| type| source ---|---|--- 2008-03-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31546 2008-03-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31547...

4.3CVSS5.3AI score0.01535EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by