CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3118 matches found

Packet Storm•added 2004/12/30 12:0 a.m.•49 views

phpGroupWare.txt

GulfTech Security Research December 14th, 2004 Vendor : phpGroupWare URL : http://www.phpgroupware.org Version : phpGroupWare 0.9.16.003 Risk : Multiple Vulnerabilities Description: phpGroupWare formerly known as webdistro is a multi-user groupware suite written in PHP. It provides a Web-based...

7.4AI score

Exploits0

Tenable Nessus•added 2004/07/06 12:0 a.m.•35 views

RHEL 2.1 : kdelibs (RHSA-2003:236)

This erratum provides updated KDE packages that resolve a security issue in Konquerer. KDE is a graphical desktop environment for the X Window System. Konqueror is the file manager for the K Desktop Environment. George Staikos reported that Konqueror may inadvertently send authentication...

5CVSS5.3AI score0.01525EPSS

Exploits0References4

NVD•added 2003/12/31 5:0 a.m.•10 views

CVE-2003-1460

Worker Filemanager 1.0 through 2.7 sets the permissions on the destination directory to world-readable and executable while copying data, which could allow local users to obtain sensitive information...

3.6CVSS6.2AI score0.00048EPSS

Exploits0References2

NVD•added 2003/12/31 5:0 a.m.•10 views

CVE-2003-1539

Cross-site scripting XSS vulnerability in ONEdotOH Simple File Manager SFM before 0.21 allows remote attackers to inject arbitrary web script or HTML via 1 file names and 2 directory names...

4.3CVSS5.7AI score0.00285EPSS

Exploits1References4

Tenable Nessus•added 2003/03/12 12:0 a.m.•26 views

Simple File Manager Directory / Filename XSS

The remote Simple File Manager CGI fm.php improperly validates the names of the directories entered and created by the user. As a result, a user could generate a cross-site scripting attack on this host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

4.3CVSS5AI score0.00285EPSS

Exploits1References1

exploitpack•added 2003/02/11 12:0 a.m.•15 views

RARLAB FAR 1.651.70 - File Manager Buffer Overflow

RARLAB FAR 1.651.70 - File Manager Buffer Overflow source: https://www.securityfocus.com/bid/6822/info A buffer overflow vulnerability has been reported for FAR that may result in a denial of service condition. The vulnerability exists due to insufficient bounds checking performed by FAR when...

0.4AI score

Exploits0

securityvulns•added 2003/01/08 12:0 a.m.•32 views

Remote root vuln in HSphere WebShell

Hi all, Below is an advisory on a remote and local root vulnerability in the HSphere product by Positive Software which is used by many web-hosting providers. The vulnerability is in the WebShell component installed by default. Proof of concept exploits are provided and links to patched versions ...

8.3AI score

Exploits0

NVD•added 2002/12/31 5:0 a.m.•10 views

CVE-2002-1927

Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file...

2.1CVSS6.5AI score0.0007EPSS

Exploits0References2

NVD•added 2002/12/31 5:0 a.m.•11 views

CVE-2002-1815

Directory traversal vulnerability in source.php and source.cgi in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. dot dot in the URL...

5CVSS6.7AI score0.00446EPSS

Exploits0References3

NVD•added 2002/12/31 5:0 a.m.•15 views

CVE-2002-1926

Directory traversal vulnerability in source.php in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. dot dot in the HTTP query string...

5CVSS6.7AI score0.00492EPSS

Exploits0References3

securityvulns•added 2002/07/22 12:0 a.m.•24 views

Eraser advisory :)

Advisory by Eraser 5 / Продукт: Aquonics File Manager 1.5 advisory 5 Уязвимость: 1.Обратный путь в директориях 2.Повышение прав доступа Разработчик программы: www.aquonics.com Опасность: высокая Дата: 19.07.02 / --Описание-- Aquonics File Manager 1.5 - расширенный файл мэнеджер. Через первую...

0.9AI score

Exploits0

securityvulns•added 2002/07/22 12:0 a.m.•27 views

Directory traversal in Aquonics File Manager

No description provided...

2.8AI score

Exploits0References1Affected Software1

securityvulns•added 2002/03/15 12:0 a.m.•25 views

Command execution in phprojekt.

"PHProjekt is a modular application for the coordination of group activities and to share informations and document via intranet and internet. Components of PHProjekt: Group calendar, project management, time card system, file management, contact manager, mail client and 9 other modules ...featur...

6.8AI score

Exploits0

Cvelist•added 2001/09/12 4:0 a.m.•16 views

CVE-1999-1267

KDE file manager kfm uses a TCP server for certain file operations, which allows remote attackers to modify arbitrary files by sending a copy command to the server...

7AI score0.00429EPSS

Exploits0References2

securityvulns•added 2000/11/29 12:0 a.m.•37 views

Midnight Commander

The Midnight Commander 4.5.51 latest. $ od -t x1 mcbug 0000000 03 14 77 04 0a $ mkdir cat mcbug $ mc try to view this directory - 'w' - 0x77 command will be executed; longer commands might be used, as well Obviously, this attack requires privledged user interaction. Midnight Commander won't displ...

1.5AI score

Exploits0

NVD•added 1997/05/05 4:0 a.m.•7 views

CVE-1999-1267

KDE file manager kfm uses a TCP server for certain file operations, which allows remote attackers to modify arbitrary files by sending a copy command to the server...

5CVSS0.00429EPSS

Exploits0References2