Lucene search
+L

342 matches found

Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.12 views

FreeBSD : mnGoSearch buffer overflow in UdmDocToTextBuf() (87cc48fd-5fdd-11d8-80e3-0020ed76ef5a)

Jedi/Sector One reported the following on the full-disclosure list : Every document is stored in multiple parts according to its sections description, body, etc in databases. And when the content has to be sent to the client, UdmDocToTextBuf concatenates those parts together and skips metadata...

5.5AI score
Exploits0References2
Prion
Prion
added 2009/02/19 6:30 p.m.11 views

Directory traversal

Multiple directory traversal vulnerabilities in index.php in My PHP Indexer 1.0 allow remote attackers to read arbitrary files via a .. dot dot in the 1 d and 2 f parameters...

7.8CVSS7.5AI score0.02845EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2009/02/19 6:0 p.m.22 views

CVE-2008-6183

Multiple directory traversal vulnerabilities in index.php in My PHP Indexer 1.0 allow remote attackers to read arbitrary files via a .. dot dot in the 1 d and 2 f parameters...

7AI score0.02845EPSS
Exploits1References5
CVE
CVE
added 2009/02/19 6:0 p.m.48 views

CVE-2008-6183

CVE-2008-6183 affects My PHP Indexer 1.0. The vulnerability is in index.php where the d and f parameters can be used to perform a directory traversal using .., allowing remote attackers to read arbitrary files. The CVSSv2 base score is 7.8 (HIGH) with network access and no authentication required...

7.8CVSS7.1AI score0.02845EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2009/01/22 11:30 p.m.28 views

CVE-2009-0258

The Indexed Search Engine indexedsearch system extension in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 allows remote attackers to execute arbitrary commands via a crafted filename containing shell metacharacters, which is not properly handled by the command-line index...

10CVSS7.8AI score0.03308EPSS
Exploits0References7
Prion
Prion
added 2009/01/22 11:30 p.m.22 views

Command injection

The Indexed Search Engine indexedsearch system extension in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 allows remote attackers to execute arbitrary commands via a crafted filename containing shell metacharacters, which is not properly handled by the command-line index...

10CVSS7.9AI score0.03308EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2009/01/22 11:30 p.m.27 views

CVE-2009-0258

The Indexed Search Engine indexedsearch system extension in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 allows remote attackers to execute arbitrary commands via a crafted filename containing shell metacharacters, which is not properly handled by the command-line index...

10CVSS6.1AI score0.03308EPSS
Exploits0References1
Cvelist
Cvelist
added 2009/01/22 11:0 p.m.33 views

CVE-2009-0258

The Indexed Search Engine indexedsearch system extension in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 allows remote attackers to execute arbitrary commands via a crafted filename containing shell metacharacters, which is not properly handled by the command-line index...

7.7AI score0.03308EPSS
Exploits0References7
Packet Storm
Packet Storm
added 2008/10/13 12:0 a.m.29 views

myphpindexer-download.txt

My PHP Indexer 1.0 index.php Local File Download Vulnerability url: http://sourceforge.net/projects/myphpindexer/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Auth...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/10/13 12:0 a.m.41 views

My PHP Indexer 1.0 (index.php) Local File Download Vulnerability

No description provided by source. My PHP Indexer 1.0 index.php Local File Download Vulnerability url: http://sourceforge.net/projects/myphpindexer/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/10/12 12:0 a.m.29 views

My PHP Indexer 1.0 - index.php Local File Download

My PHP Indexer 1.0 - index.php Local File Download My PHP Indexer 1.0 index.php Local File Download Vulnerability url: http://sourceforge.net/projects/myphpindexer/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for...

0.3AI score
Exploits0
0day.today
0day.today
added 2008/10/12 12:0 a.m.29 views

My PHP Indexer 1.0 (index.php) Local File Download Vulnerability

Exploit for unknown platform in category web applications ================================================================ My PHP Indexer 1.0 index.php Local File Download Vulnerability ================================================================ My PHP Indexer 1.0 index.php Local File Downlo...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/12 12:0 a.m.51 views

My PHP Indexer 1.0 - 'index.php' Local File Download

My PHP Indexer 1.0 index.php Local File Download Vulnerability url: http://sourceforge.net/projects/myphpindexer/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Auth...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.17 views

MDKA-2006:005 : kat

A number of fixes are available with this new kat update including a fix in the support of utf8 files, a number of crash situation were corrected, a double deletion that caused a crash when kat was closed was corrected, and finally the mail indexer is disabled due to problems it caused...

7.3AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2006/12/04 11:28 a.m.3 views

CVE-2006-6246

Photo Organizer 2.32b and earlier does not properly check the ownership of certain objects, which allows remote attackers to gain unauthorized access via vectors related to 1 camera del, 2 camera edit, 3 folder/album deletion, 4 photo.move, 5 content.indexer, 6 folder.content, and possibly other...

7.5CVSS5.7AI score0.0166EPSS
Exploits0References7
NVD
NVD
added 2006/06/15 10:2 a.m.23 views

CVE-2006-3019

Multiple PHP remote file inclusion vulnerabilities in phpCMS 1.2.1pl2 allow remote attackers to execute arbitrary PHP code via a URL in the PHPCMSINCLUDEPATH parameter to files in parser/include/ including 1 class.parserphpcms.php, 2 class.sessionphpcms.php, 3 class.editphpcms.php, 4...

7.5CVSS7.7AI score0.07884EPSS
Exploits0References17
NVD
NVD
added 2006/04/01 12:4 a.m.19 views

CVE-2006-1567

Cross-site scripting XSS vulnerability in searchresults.asp in SiteSearch Indexer 3.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchField parameter...

4.3CVSS5.7AI score0.01884EPSS
Exploits1References6
CVE
CVE
added 2006/04/01 12:0 a.m.43 views

CVE-2006-1567

CVE-2006-1567 is a cross-site scripting (XSS) vulnerability affecting SiteSearch Indexer 3.5 and earlier, in searchresults.asp. The issue allows remote attackers to inject arbitrary web script or HTML via the searchField parameter. The documented impact is a partial integrity compromise with no c...

4.3CVSS5.7AI score0.01884EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2006/04/01 12:0 a.m.24 views

CVE-2006-1567

Cross-site scripting XSS vulnerability in searchresults.asp in SiteSearch Indexer 3.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchField parameter...

5.7AI score0.01884EPSS
Exploits1References6
exploitpack
exploitpack
added 2006/03/31 12:0 a.m.15 views

SiteSearch Indexer 3.5 - searchresults.asp Cross-Site Scripting

SiteSearch Indexer 3.5 - searchresults.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/17332/info SiteSearch Indexer is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

6.8AI score
Exploits0
Rows per page
Query Builder