Lucene search
K

112 matches found

Exploit DB
Exploit DB
added 2012/10/03 12:0 a.m.23 views

WordPress Plugin spider Calendar - Multiple Vulnerabilities

Exploit Title: Wordpress spider calendar Plugin Multiple Vulnerabilities Dork: N/A Date: 02-10-2012 Author: Daniel Barragan "D4NB4R" Twitter: @D4NB4R Vendor: http://wordpress.org/extend/plugins/spider-calendar/ Version: 1.0.1 License: Non-Commercial Demo:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2012/09/10 12:0 a.m.29 views

VICIDIAL Call Center Suite 2.2.1-237 - Multiple Vulnerabilities

...:::::VICIDIAL call center suite Blind SQL Injection Vulnerability::::.... Sepahan TelCom IT Group septelcom ------------------------------------------------------- Date: 2012-09-07 Exploit Author: Sepahan TelCom IT Group septelcom Vendor Homepage: http://www.vicidial.org Software Link:...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2011/03/13 5:50 p.m.7 views

Blogger.com vulnerability, Gaining Administrative Privileges on any Account !

Blogger.com vulnerability, Gaining Administrative Privileges on any Account ! In the last 2 months,Nir.Goldshlager participated in Google reward program and found some High, Serious vulnerabilities. The vulnerability that Nir.Goldshlager want to share first, Is a critical vulnerability in Blogger...

6.7AI score
Exploits0
securityvulns
securityvulns
added 2010/03/18 12:0 a.m.48 views

Sun Java System Communication Express CSRF via HPP

Hello, As a continuation of my advisory about "Sun Java System Communications Express Multiple HTML Injection Vulnerabilities" that can be found here: http://www.securityfocus.com/bid/34083/info, I would like to introduce another potential security threat in the same product and based on my...

0.1AI score
Exploits0
0day.today
0day.today
added 2010/03/16 12:0 a.m.31 views

Sun Java System Communications Express Multiple HTML Injection Vuln

Exploit for unknown platform in category web applications ============================================================================== Sun Java System Communications Express Multiple HTML Injection Vulnerabilities ============================================================================== As...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/03/15 12:0 a.m.33 views

Sun Java System Communications Express XSRF

Hello, As a continuation of my advisory about "Sun Java System Communications Express Multiple HTML Injection Vulnerabilities" that can be found here: http://www.securityfocus.com/bid/34083/info, I would like to introduce another potential security threat in the same product and based on my...

0.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/11/11 12:0 a.m.43 views

CUPS < 1.4.2 kerberos Parameter XSS

According to its banner, the version of CUPS installed on the remote host is earlier than 1.4.2. The 'kerberos' parameter in such versions is not properly sanitized before being used to generate dynamic HTML content. An attacker can leverage this issue via a combination of attribute injection and...

4.3CVSS5.6AI score0.0578EPSS
Exploits5References3
NVD
NVD
added 2009/11/10 7:30 p.m.26 views

CVE-2009-2820

The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly handle 1 HTTP headers and 2 HTML templates, which allows remote attackers to conduct cross-site scripting XSS attacks and HTTP response splitting attacks via vectors related to a...

4.3CVSS6.7AI score0.0578EPSS
Exploits5References15
Prion
Prion
added 2009/11/10 7:30 p.m.21 views

Cross site scripting

The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly handle 1 HTTP headers and 2 HTML templates, which allows remote attackers to conduct cross-site scripting XSS attacks and HTTP response splitting attacks via vectors related to a...

4.3CVSS5.2AI score0.0578EPSS
Exploits5References15Affected Software2
Debian CVE
Debian CVE
added 2009/11/10 7:0 p.m.29 views

CVE-2009-2820

The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly handle 1 HTTP headers and 2 HTML templates, which allows remote attackers to conduct cross-site scripting XSS attacks and HTTP response splitting attacks via vectors related to a...

4.3CVSS6.9AI score0.0578EPSS
Exploits5
Packet Storm
Packet Storm
added 2009/06/11 12:0 a.m.39 views

ModSecurity 2.5.9 Filter Bypass

======================================================================== ModSecurity Core Rules HPP Filter Bypass Vulnerability ======================================================================== Affected Software : ModSecurity = 2.5.9 using ModSecurity Core Rules = 2.5-1.6.1 Author :...

7.4AI score
Exploits0
0day.today
0day.today
added 2009/06/11 12:0 a.m.39 views

ModSecurity <= 2.5.9 (Core Rules <= 2.5-1.6.1) Filter Bypass Vuln

Exploit for windows platform in category remote exploits ================================================================= ModSecurity = 2.5.9 Core Rules = 2.5-1.6.1 Filter Bypass Vuln ================================================================= Affected Software : ModSecurity = 2.5.9 using...

7.1AI score
Exploits0
Rows per page
Query Builder