Lucene search
K

196 matches found

0day.today
0day.today
added 2008/02/16 12:0 a.m.37 views

Wordpress Photo album Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================== Wordpress Photo album Remote SQL Injection Vulnerability ======================================================== WordPress album PHOTO SQL Injection DORK 1 : allinurl: pageid album...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/29 12:0 a.m.52 views

xGB 2.0 - 'xGB.php' Remote Security Bypass

/ xGB 2.0 xGB.php Remote Permission Bypass Vulnerability Bug discovered by DarkFuneral http://www.darkfuneral89.altervista.org/ Affected Software: xGB CMS Site: "i don't know! :P" Severity: Critical Description: An attacker can edit all message in xGB Google Dork: allinurl:"xGb.php" E-Mail:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/08/29 12:0 a.m.31 views

xGB 2.0 - xGB.php Remote Security Bypass

xGB 2.0 - xGB.php Remote Security Bypass / xGB 2.0 xGB.php Remote Permission Bypass Vulnerability Bug discovered by DarkFuneral http://www.darkfuneral89.altervista.org/ Affected Software: xGB CMS Site: "i don't know! :P" Severity: Critical Description: An attacker can edit all message in xGB Goog...

7.5AI score
Exploits0
seebug.org
seebug.org
added 2007/07/19 12:0 a.m.67 views

Mozilla Firefox 2.0.0.4多个远程安全漏洞

BUGTRAQ ID: 24946 CVECAN ID: CVE-2007-3734,CVE-2007-3735,CVE-2007-3736,CVE-2007-3737,CVE-2007-3738 Mozilla Firefox是一款流行的开源WEB浏览器。 Firefox的浏览器引擎和JavaScript引擎中存在多个内存破坏漏洞,可能允许攻击者导致浏览器崩溃。 addEventListener和setTimeout方式中的漏洞可能允许攻击者破坏浏览器的同源策略向其他站点注入脚本,访问或修改该站点的保密或敏感数据。...

9.3CVSS0.8AI score0.04618EPSS
Exploits1
exploitpack
exploitpack
added 2007/07/05 12:0 a.m.26 views

VRNews 1.1.1 - admin.php Remote Security Bypass

VRNews 1.1.1 - admin.php Remote Security Bypass VRNews v1.x = /VRNews/admin.php Permission Found by: R4M! - [email protected] Dork: intitle:"vrnews v1" Script: http://www.toocharger.com/fiches/scripts/vrnews/3632.htm Example: 1. /VRNews/admin.php?act=edit 2. /VRNews/admin.php?act=add 3...

Exploits0
seebug.org
seebug.org
added 2007/06/01 12:0 a.m.21 views

InGate Firewall及SIParator多个远程安全漏洞

Ingate Firewall和SIParator都是企业级的硬件防火墙设备。 Ingate Firewall和SIParator防火墙没有正确地限制下载支持报表,这可能允许攻击者下载某些敏感信息;此外这些防火墙的SIP认证要求中存在错误,可能允许攻击者通过maddr参数绕过认证,获得非授权访问。 Ingate Firewall 4.5.2 Ingate SIParator 4.5.2 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.ingate.com/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/11/21 12:0 a.m.16 views

Biba Selenium Web Server多个远程安全漏洞

Selenium Server允许用户方便的架设FTP或WEB服务器。 Selenium Server在处理传送给DIR、GET和PUT命令的参数时存在输入验证错误,允许攻击者通过特制的目录遍历序列列出并下载根目录外任意位置的文件。 此外,Selenium Server将用户口令以明文存储到了Servers目录下,允许攻击者轻易的检索到登录凭据。 Biba Software Selenium Web Server 1.0 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://bibasoftware.com/...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/02/20 12:0 a.m.37 views

SOCKS4 Server Recursive Connection Remote DoS

It is possible to connect to the SOCKS4 server through itself. An attacker can leverage this issue to saturate the host's CPU, memory or file descriptors. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid17155; scriptversion "1.12"; scriptnameenglish:"SOCKS4 Server...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/02/02 12:0 a.m.13 views

Ventia DeskNow Multiple Remote Vulnerabilities (deprecated)

Binary data 2586.prm...

7.5CVSS7.3AI score0.02001EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.24 views

ISC BIND < 8.2.3 Multiple Remote Vulnerabilities (deprecated)

Binary data 1004.prm...

10CVSS7.3AI score0.31624EPSS
Exploits0References4
Exploit DB
Exploit DB
added 2003/09/20 12:0 a.m.55 views

Microsoft Windows - &#039;RPC DCOM2&#039; Remote (MS03-039)

/ RPCDCOM2.c ver1.1 copy by FLASHSKY flashsky at xfocus.org 2003.9.14 / include include include include include include unsigned char bindstr= 0x05,0x00,0x0B,0x03,0x10,0x00,0x00,0x00,0x48,0x00,0x00,0x00,0x7F,0x00,0x00,0x00,...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/06/25 12:0 a.m.74 views

SMTP Generic Overflow Detection

The remote SMTP server crashes when it is sent a command with a too long argument. An attacker might use this flaw to kill this service or worse, execute arbitrary code on the server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11772; scriptversion"$Revision: 1.17...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2003/02/12 12:0 a.m.29 views

IBM AIX 4.3.3/5.1/5.2 - &#039;libIM&#039; Buffer Overflow

source: https://www.securityfocus.com/bid/6840/info A buffer overflow vulnerability has been discovered in the libIM library available for the AIX 4.3, 5.1, 5.2 operating system. As a result it may be possible to overwrite sensitive memory in programs linked to the affected library. By identifyin...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/06/25 12:0 a.m.27 views

[NEWS] Upcoming OpenSSH Vulnerability &#40;Privileges Separation&#41;

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion When was the last time you checked your server's security? How about a monthly report? http://www.AutomatedScanning.com - Know that you're...

1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2002/06/05 12:0 a.m.355 views

Microsoft IIS Potentially Compromised Host Detection

One or more files were found on this host that indicate a possible compromise. %NASLMINLEVEL 70300 This script was written by H D Moore ... and hacked by Tenable Network Security to avoid false positive. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid11003;...

5.4AI score
Exploits0
NVD
NVD
added 2001/07/02 4:0 a.m.16 views

CVE-2001-0389

IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument...

5CVSS6.5AI score0.01448EPSS
Exploits1References2
Rows per page
Query Builder