Lucene search
K

118 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/10/22 12:0 a.m.27 views

JVN#07497935: Multiple Yokka provided products may insecurely load executable files

Multiple products provided by Yokka such as text editors, contain an issue with the file search path, which may insecurely load executables. Impact An attacker may execute arbitrary code with the privilege of running the application. Solution Update the Software Update to the latest version...

6.9CVSS7.3AI score0.00279EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/10/18 10:36 a.m.4 views

Lhasa may insecurely load executable files

Overview Lhasa may use unsafe methods for determining how to load executables .exe. Lhasa is a file extraction software that supports LZH and ZIP formats. Lhasa loads certain executables .exe when extracting files. Lhasa contains an issue with the file search path, which may insecurely load...

6.9CVSS7.5AI score0.00283EPSS
Exploits0References8
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/04/09 7:36 a.m.3 views

Accela BizSearch Access Control Bypass Vulnerability

Overview The local file seraching function in IntelligentSearch and Accela BizSearch is prone to an access control bypass vulnerability. Impact Users without permission can access restricted files on the local Windows machine via the BizSearch search results. Solution Please refer to the 'Vendor...

5CVSS6.6AI score
Exploits0References3
OpenVAS
OpenVAS
added 2010/02/26 12:0 a.m.44 views

Options for Local Security Checks

This script allows users to set some Options for Local Security Checks which are stored in the knowledge base and used by other tests. Description of the options: - Also use SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

5.8AI score
Exploits0References2
securityvulns
securityvulns
added 2009/07/03 12:0 a.m.28 views

Soulseek buffer overflow

Buffer overflow on file search functionality...

3.3AI score
Exploits0References1Affected Software1
Prion
Prion
added 2007/08/20 7:17 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in textfilesearch.asp in the Text File Search ASP Classic edition allows remote attackers to inject arbitrary web script or HTML via the query parameter...

4.3CVSS6.1AI score0.01523EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2007/08/20 7:17 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in textfilesearch.aspx in the Text File Search ASP.NET edition allows remote attackers to inject arbitrary web script or HTML via the search field...

4.3CVSS6.1AI score0.01091EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2007/08/20 7:17 p.m.13 views

CVE-2007-4433

Cross-site scripting XSS vulnerability in textfilesearch.aspx in the Text File Search ASP.NET edition allows remote attackers to inject arbitrary web script or HTML via the search field...

4.3CVSS5.7AI score0.01091EPSS
Exploits1References4
NVD
NVD
added 2007/08/20 7:17 p.m.14 views

CVE-2007-4434

Cross-site scripting XSS vulnerability in textfilesearch.asp in the Text File Search ASP Classic edition allows remote attackers to inject arbitrary web script or HTML via the query parameter...

4.3CVSS5.7AI score0.01523EPSS
Exploits1References4
Cvelist
Cvelist
added 2007/08/20 7:0 p.m.21 views

CVE-2007-4434

Cross-site scripting XSS vulnerability in textfilesearch.asp in the Text File Search ASP Classic edition allows remote attackers to inject arbitrary web script or HTML via the query parameter...

5.7AI score0.01523EPSS
Exploits1References4
Cvelist
Cvelist
added 2007/08/20 7:0 p.m.18 views

CVE-2007-4433

Cross-site scripting XSS vulnerability in textfilesearch.aspx in the Text File Search ASP.NET edition allows remote attackers to inject arbitrary web script or HTML via the search field...

5.7AI score0.01091EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2007/08/17 12:0 a.m.31 views

aspnet-xss.txt

ASP.NET version of Text File Search XSS Vulnerability Software: ASP.NET version of Text File Search download: http://www.aspindir.com/goster/5084 demo: http://aspnet.asp101.com/samples/textfilesearch.aspx Found By: GeFORC3 G3 Example & Exploit : You write xss code in ASP.NET version of Text File...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2007/08/17 12:0 a.m.27 views

tfsc-xss.txt

Text File Search Classic ASP Sample Code XSS Vulnerability Software: Text File Search Classic ASP Sample Code download: http://www.aspindir.com/goster/5087 demo: http://www.asp101.com/samples/textfilesearch.asp Found By: GeFORC3 G3 Exploit: This xss works on Text File Search Classic ASP Sample...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/11/24 12:0 a.m.13 views

Cahier de texte 2.0 - Database Backup Source Disclosure

Cahier de texte 2.0 - Database Backup Source Disclosure !/usr/bin/perl INFORMATIONS ============ Affected.scr..: Cahier de texte V2.0 Poc.ID........: 15061124 Type..........: Predictable backup filename, Source disclosure Risk.level....: High Conditions....: registerglobals = on Src.download..:...

Exploits0
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.17 views

CentOS 3 : slocate (CESA-2005:345)

An updated slocate package that fixes a denial of service and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Slocate is a security-enhanced version of locate. Like locate, slocate searches through a central database...

2.1CVSS5.3AI score0.00374EPSS
Exploits0References4
myhack58
myhack58
added 2006/03/10 12:0 a.m.21 views

With a batch of home batch write hung it to the code-vulnerability warning-the black bar safety net

Author: nerve-wracking Previously in online found a batch of home added to the hanging horse generation to horse software,you have the idea with the batch to achieve this functionality Today I learned the point of the batch,just came up with,not so perfect,or then again...later in the modified Us...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2005/08/23 12:0 a.m.22 views

slocate file search utility DoS

updatedb fails to handle long directory paths...

1AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2000/11/11 12:0 a.m.28 views

Еще одна дырка в Inexing Service из Windows 2000 (ixsso.query ActiveX)

При включенной службе Indexing Service ActiveX-компанент разрешенный для использования через Web позволяет провести поиск по локальным файлам...

2.1AI score
Exploits0References1
Rows per page
Query Builder