Lucene search
K

1522 matches found

Opera Security Advisories
Opera Security Advisories
added 2010/12/14 12:0 a.m.6 views

WAP form content can be leaked to other sites – Opera Security Advisories

When accepting user input in form fields on a WAP page, WML requires that the input contents are remembered, and used to populate every further input sharing the same name. This should continue as long as the user continues to click links known as a WAP session, even populating similarly named...

5.8AI score
Exploits0References1
Exploit DB
Exploit DB
added 2010/11/10 12:0 a.m.28 views

FCKEditor Core 2.x 2.4.3 - 'FileManager upload.php' Arbitrary File Upload

Exploit Title: FCKeditor 2.0-2.4.3 arbitrary file upload Author: grabz Software Link: http://sourceforge.net/projects/fckeditor/ Version: FCKeditor 2.x = 2.4.3 Tested on: 2.0, 2.2, 2.3.2, 2.4.0, 2.4.3 for version 2.0 - 2.2: in file FCKeditor/editor/filemanager/upload/php/upload.php $sType = isset...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2010/10/13 12:0 a.m.4 views

PT-2010-2537 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 through 7 Description: The issue allows remote attackers to obtain sensitive form information via a crafted web site by simulating user interaction with the AutoComplete feature. An attacker could exploi...

2.6CVSS5.8AI score0.09705EPSS
Exploits1References6
0day.today
0day.today
added 2010/09/26 12:0 a.m.33 views

orbis-1.0.2 Remote File Upload Exploit

Exploit for php platform in category web applications ====================================== orbis-1.0.2 Remote File Upload Exploit ====================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/07/02 12:0 a.m.23 views

Wiki Web Help 0.2.7 Shell Upload

------------------------------------------------------------------------ Software................Wiki Web Help 0.2.7 Vulnerability...........Arbitrary Upload Download................http://sourceforge.net/projects/wwh/ Release Date............7/1/2010 Tested On...............Windows Vista + XAMPP...

Exploits0
0day.today
0day.today
added 2010/03/18 12:0 a.m.44 views

OSSIM (repository_attachment.php) Arbitrary File Upload Vulnerability

Exploit for unknown platform in category web applications ===================================================================== OSSIM repositoryattachment.php Arbitrary File Upload Vulnerability ===================================================================== Vulnerable: OSSIM os-sim 2.1.5...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/01/13 4:3 p.m.4 views

acroread: script injection vulnerability (APSB10-02)

The default configuration of Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, does not enable the Enhanced Security feature, which has unspecified impact and attack vectors, related to a "script injection vulnerability," as demonstrated by Acrobat Forms Data...

10CVSS5.7AI score0.07732EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2009/12/10 12:0 a.m.35 views

Mandriva Security Advisory MDVSA-2009:305 (php)

The remote host is missing an update to php announced via advisory MDVSA-2009:305. OpenVAS Vulnerability Test $Id: mdksa2009305.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:305 php Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

5CVSS0.2AI score0.12041EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/12/10 12:0 a.m.26 views

Mandriva Security Advisory MDVSA-2009:305 (php)

The remote host is missing an update to php announced via advisory MDVSA-2009:305. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...

5CVSS9.4AI score0.12041EPSS
Exploits0References1
myhack58
myhack58
added 2009/12/01 12:0 a.m.17 views

PHP 5.3.1 version before the denial of service attack vulnerability(with test code)-vulnerability warning-the black bar safety net

Code: PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan said Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print"" print "PHP MultiPart Form-Data Denial of Service proof of...

0.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/11/30 12:0 a.m.50 views

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : php5 vulnerabilities (USN-862-1)

Maksymilian Arciemowicz discovered that PHP did not properly validate arguments to the dbareplace function. If a script passed untrusted input to the dbareplace function, an attacker could truncate the database. This issue only applied to Ubuntu 6.06 LTS, 8.04 LTS, and 8.10. CVE-2008-7068 It was...

7.5CVSS5.4AI score0.12041EPSS
Exploits11References8
Ubuntu
Ubuntu
added 2009/11/26 8:4 p.m.85 views

USN-862-1: PHP vulnerabilities

Maksymilian Arciemowicz discovered that PHP did not properly validate arguments to the dbareplace function. If a script passed untrusted input to the dbareplace function, an attacker could truncate the database. This issue only applied to Ubuntu 6.06 LTS, 8.04 LTS, and 8.10. CVE-2008-7068 It was...

7.5CVSS5.3AI score0.12041EPSS
Exploits11
Debian
Debian
added 2009/11/25 9:48 p.m.44 views

[SECURITY] [DSA-1940-1] New php5 packages fix several issues

------------------------------------------------------------------------ Debian Security Advisory DSA-1940-1 [email protected] http://www.debian.org/security/ Stefan Fritsch November 25, 2009 http://www.debian.org/security/faq -...

7.5CVSS7.4AI score0.08306EPSS
Exploits6
Debian
Debian
added 2009/11/25 9:48 p.m.49 views

[SECURITY] [DSA-1940-1] New php5 packages fix several issues

------------------------------------------------------------------------ Debian Security Advisory DSA-1940-1 [email protected] http://www.debian.org/security/ Stefan Fritsch November 25, 2009 http://www.debian.org/security/faq -...

7.5CVSS0.08306EPSS
Exploits6
NVD
NVD
added 2009/11/24 12:30 a.m.21 views

CVE-2009-4017

PHP before 5.2.12 and 5.3.x before 5.3.1 does not restrict the number of temporary files created when handling a multipart/form-data POST request, which allows remote attackers to cause a denial of service resource exhaustion, and makes it easier for remote attackers to exploit local file inclusi...

5CVSS6.3AI score0.12041EPSS
Exploits0References25
Packet Storm
Packet Storm
added 2009/11/23 12:0 a.m.23 views

PHP MultiPart For-Data Denial Of Service

PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print "" print " PHP MultiPart Form-Data Denial of Service proof of concept"...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2009/11/22 12:0 a.m.14 views

PHP MultiPart Form-Data Denial of Service PoC

No description provided by source. !/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print "" print " PHP...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/11/22 12:0 a.m.29 views

PHP - MultiPart Form-Data Denial of Service (PoC)

!/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print "" print " PHP MultiPart Form-Data Denial of Service...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/11/22 12:0 a.m.16 views

PHP - MultiPart Form-Data Denial of Service (PoC)

PHP - MultiPart Form-Data Denial of Service PoC !/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print "" prin...

Exploits0
0day.today
0day.today
added 2009/11/22 12:0 a.m.17 views

PHP MultiPart Form-Data Denial of Service PoC

Exploit for unknown platform in category web applications ============================================= PHP MultiPart Form-Data Denial of Service PoC ============================================= !/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin...

7.1AI score
Exploits0
Rows per page
Query Builder