Lucene search
K

302 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

LibLime Koha <= 4.2 - Local File Inclusion Vulnerability

No description provided by source. Exploit Title: Koha Opac Local File Inclusion Google Dork: inurl:koha/opac-main.pl Date: 17.11.2011 Author: Akin TosunlarVigasis Labs Software Link: www.koha.org Version: 4.2 Tested on: LinuxApache 2.2.14 CVE : Vigasis Pentest Team www.vigasis.com 0-Day Exploit...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2014/02/10 12:0 a.m.33 views

Koha Multiple Vulnerabilities (Feb 2014) - Active Check

Koha is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:koha:koha"; if description...

9.8CVSS8.1AI score0.03464EPSS
Exploits4References1
NVD
NVD
added 2014/01/26 1:55 a.m.13 views

CVE-2014-1626

XML External Entity XXE vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and possibly other products, allows context-dependent attackers to read arbitrary files via a crafted XML file...

5CVSS6.3AI score0.01542EPSS
Exploits0References8
Prion
Prion
added 2014/01/26 1:55 a.m.14 views

Xxe

XML External Entity XXE vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and possibly other products, allows context-dependent attackers to read arbitrary files via a crafted XML file...

5CVSS6.9AI score0.01542EPSS
Exploits0References8Affected Software1
UbuntuCve
UbuntuCve
added 2014/01/26 1:55 a.m.23 views

CVE-2014-1626

XML External Entity XXE vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and possibly other products, allows context-dependent attackers to read arbitrary files via a crafted XML file...

5CVSS6AI score0.01542EPSS
Exploits0References2
OSV
OSV
added 2014/01/26 1:55 a.m.5 views

UBUNTU-CVE-2014-1626

XML External Entity XXE vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and possibly other products, allows context-dependent attackers to read arbitrary files via a crafted XML file...

5CVSS5.9AI score0.01542EPSS
Exploits0References3
Cvelist
Cvelist
added 2014/01/26 1:0 a.m.19 views

CVE-2014-1626

XML External Entity XXE vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and possibly other products, allows context-dependent attackers to read arbitrary files via a crafted XML file...

6.3AI score0.01542EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2014/01/26 1:0 a.m.21 views

CVE-2014-1626

XML External Entity XXE vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and possibly other products, allows context-dependent attackers to read arbitrary files via a crafted XML file...

5CVSS6.3AI score0.01542EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/12/12 12:0 a.m.14 views

Koha 'help.pl' Remote File Include Vulnerability

Koha is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or execute arbitrary script code in the context of the webserver process. This may allow the...

0.4AI score
Exploits0References3
OpenVAS
OpenVAS
added 2011/12/12 12:0 a.m.14 views

Koha RFI Vulnerability (Jul 2011) - Active Check

Koha is prone to a remote file include RFI vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.3AI score
Exploits0References2
NVD
NVD
added 2011/12/08 7:55 p.m.13 views

CVE-2011-4715

Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the KohaOpacLanguage cookie to cgi-bin/opac/opac-main.pl, related to Output.pm...

5CVSS6.7AI score0.0938EPSS
Exploits1References9
Prion
Prion
added 2011/12/08 7:55 p.m.20 views

Directory traversal

Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the KohaOpacLanguage cookie to cgi-bin/opac/opac-main.pl, related to Output.pm...

5CVSS7.1AI score0.0938EPSS
Exploits1References9Affected Software2
CVE
CVE
added 2011/12/08 7:0 p.m.59 views

CVE-2011-4715

CVE-2011-4715 affects Koha and LibLime Koha prior to updates: a directory traversal/ local file inclusion flaw in cgi-bin/koha/mainpage.pl related to the KohaOpacLanguage cookie can allow reading arbitrary files via the cookie to cgi-bin/opac/opac-main.pl (Output.pm). Affected versions: Koha 3.4 ...

5CVSS6.9AI score0.0938EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2011/12/08 7:0 p.m.17 views

CVE-2011-4715

Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the KohaOpacLanguage cookie to cgi-bin/opac/opac-main.pl, related to Output.pm...

6.7AI score0.0938EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2011/11/30 12:0 a.m.16 views

Koha < 3.4.2 Multiple XSS Vulnerabilities - Active Check

Koha is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

6.7AI score
Exploits0References6
OpenVAS
OpenVAS
added 2011/11/29 12:0 a.m.31 views

Koha < 4.5 Build 4500 LFI Vulnerability - Active Check

Koha is prone to local file inclusion LFI vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:koha:koha"; ifdescriptio...

5CVSS6.5AI score0.0938EPSS
Exploits1References4
exploitpack
exploitpack
added 2011/11/24 12:0 a.m.14 views

LibLime Koha 4.2 - Local File Inclusion

LibLime Koha 4.2 - Local File Inclusion Exploit Title: Koha Opac Local File Inclusion Google Dork: inurl:koha/opac-main.pl Date: 17.11.2011 Author: Akin TosunlarVigasis Labs Software Link: www.koha.org Version: 4.2 Tested on: LinuxApache 2.2.14 CVE : Vigasis Pentest Team www.vigasis.com 0-Day...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/11/24 12:0 a.m.21 views

LibLime Koha 4.2 Local File Inclusion

Exploit Title: Koha Opac Local File Inclusion Google Dork: inurl:koha/opac-main.pl Date: 17.11.2011 Author: Akin TosunlarVigasis Labs Software Link: www.koha.org Version: 4.2 Tested on: LinuxApache 2.2.14 CVE : Vigasis Pentest Team www.vigasis.com 0-Day Exploit Akin Tosunlar Special Thanks to Ozg...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/11/24 12:0 a.m.29 views

LibLime Koha 4.2 - Local File Inclusion

Exploit Title: Koha Opac Local File Inclusion Google Dork: inurl:koha/opac-main.pl Date: 17.11.2011 Author: Akin TosunlarVigasis Labs Software Link: www.koha.org Version: 4.2 Tested on: LinuxApache 2.2.14 CVE : Vigasis Pentest Team www.vigasis.com 0-Day Exploit Akin Tosunlar Special Thanks to Ozg...

7.4AI score
Exploits0
0day.today
0day.today
added 2011/11/23 12:0 a.m.22 views

LibLime Koha <= 4.2 Local File Inclusion Vulnerability

Exploit for cgi platform in category web applications Exploit Title: Koha Opac Local File Inclusion Google Dork: inurl:koha/opac-main.pl Date: 17.11.2011 Author: Akin TosunlarVigasis Labs Software Link: www.koha.org Version: 4.2 Tested on: LinuxApache 2.2.14 CVE : Vigasis Pentest Team...

7.1AI score
Exploits0
Rows per page
Query Builder