Lucene search
+L

3282 matches found

exploitpack
exploitpack
added 2000/12/13 12:0 a.m.23 views

alex heiphetz Group eZshopper 2.03.0 - Directory Traversal

alex heiphetz Group eZshopper 2.03.0 - Directory Traversal source: https://www.securityfocus.com/bid/2109/info It is possible for a remote user to gain read access to various files that reside within the EZShopper directory. By requesting a specially crafted URL utilizing loadpage.cgi' applicatio...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2000/12/06 12:0 a.m.25 views

Apache 1.3 + PHP 3 - File Disclosure

source: https://www.securityfocus.com/bid/2060/info Apache Web Server is subject to disclose files to unauthorized users when used in conjunction with the PHP3 script language. By requesting a specially crafted URL by way of php, it is possible for a remote user to gain read access to a known fil...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/12/05 12:0 a.m.17 views

Inktomi Search Software 3.0 - Source Disclosure

Inktomi Search Software 3.0 - Source Disclosure source: https://www.securityfocus.com/bid/2061/info A vulnerability exists in version 3.0 of Ultrseek server aka Inktomi Search. Due to a failure to properly validate user-supplied input, URLs submitted by a remote user of the form:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2000/12/05 12:0 a.m.32 views

Cat Soft Serv-U FTP Server 2.4/2.5 - FTP Directory Traversal

source: https://www.securityfocus.com/bid/2052/info FTP Serv-U is an internet FTP server from CatSoft. Authenticated users can gain access to the ftproot of the drive where Serv-U FTP has been installed. Users that have read, write, execute and list access in the home directory will have the same...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/10/13 12:0 a.m.17 views

anaconda Foundation 1.4 1.9 - Directory Traversal

anaconda Foundation 1.4 1.9 - Directory Traversal source: https://www.securityfocus.com/bid/2338/info A vulnerability exists in Anaconda Foundation Directory which allows a remote user to traverse the filesystem of a target computer. This may lead to the disclosure of file and directory contents...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2000/10/13 12:0 a.m.25 views

anaconda Foundation 1.4 < 1.9 - Directory Traversal

source: https://www.securityfocus.com/bid/2338/info A vulnerability exists in Anaconda Foundation Directory which allows a remote user to traverse the filesystem of a target computer. This may lead to the disclosure of file and directory contents. Arbitrary files can be accessed through the use o...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2000/10/11 12:0 a.m.36 views

SLA-16.MasterIndex.txt

Synnergy Laboratories Advisory SLA-2000-16 NAME Master Index directory traversal vulnerability AFFECTED Linux/UNIX with Master Index SYNOPSIS Synnergy Labs has found a flaw within Master Index that allows a user to successfully traverse the filesystem on a remote host, allowing arbitary...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2000/10/02 12:0 a.m.102 views

SmartWin CyberOffice Shopping Cart 2.0 - Client Information Disclosure

source: https://www.securityfocus.com/bid/1734/info Smartwin Technology CyberOffice Shopping Cart is a shopping cart application for e-commerce enabled websites running Windows NT 4.0 or 2000. It is possible for a remote user to gain read access to the private directory on a website running...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2000/09/07 12:0 a.m.33 views

nathan purciful phpphotoalbum 0.9.9 - Directory Traversal

source: https://www.securityfocus.com/bid/1650/info The explorer.php script within phpPhotoAlbum 0.9.9 and possibly previous versions are vulnerable to directory traversal. By requesting a URL composed of explorer.php and the ../ string in the value of the "folder" variable it is possible for a...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/08/29 12:0 a.m.13 views

GWScripts News Publisher 1.0 - author.file Write

GWScripts News Publisher 1.0 - author.file Write source: https://www.securityfocus.com/bid/1621/info It is possible for a remote user to add an author to the author index author.file in GWScripts News Publisher, a web news publisher. This can be done by requesting the following raw HTTP request...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2000/08/29 12:0 a.m.36 views

GWScripts News Publisher 1.0 - 'author.file' Write

source: https://www.securityfocus.com/bid/1621/info It is possible for a remote user to add an author to the author index author.file in GWScripts News Publisher, a web news publisher. This can be done by requesting the following raw HTTP request using any arbitrary username and password: POST...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/08/24 12:0 a.m.156 views

Subscribe Me Vulnerability

Product: Subscribe Me Versions: ALL version numbers LITE only OS: Unix and Winnt Vendor: Notified, http://www.cgiscriptcenter.com/ The Problem: Yet again the script allows a remote user to overwrite the Admin Passwd file with any password they see fit. Therefore giving them Admin access to the...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2000/08/24 12:0 a.m.46 views

Account Manager CGI Vulnerability

Product: Account Manager Versions: ALL including LITE and PRO haven't been able to test ENTERPRISE OS: Unix and Winnt Vendor: Notified, http://www.cgiscriptcenter.com/ The Problem: The Script allows any remote user access to the Administration Control Panel through overwriting the Admin Password...

1.1AI score
Exploits0
exploitpack
exploitpack
added 2000/08/23 12:0 a.m.26 views

CGI Script Center Subscribe Me Lite 2.0 - Administrative Password Alteration (1)

CGI Script Center Subscribe Me Lite 2.0 - Administrative Password Alteration 1 source: https://www.securityfocus.com/bid/1607/info Regardless of privilege level, any remote user can modify the administrative password for CGI Script Centers' Subscribe Me Lite. This would grant the user full...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2000/08/23 12:0 a.m.16 views

CGI Script Center Subscribe Me Lite 2.0 - Administrative Password Alteration (2)

CGI Script Center Subscribe Me Lite 2.0 - Administrative Password Alteration 2 source: https://www.securityfocus.com/bid/1607/info Regardless of privilege level, any remote user can modify the administrative password for CGI Script Centers' Subscribe Me Lite. This would grant the user full...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2000/08/23 12:0 a.m.22 views

CGI Script Center Account Manager 1.0 LITE PRO - Administrative Password Alteration (2)

CGI Script Center Account Manager 1.0 LITE PRO - Administrative Password Alteration 2 source: https://www.securityfocus.com/bid/1604/info Regardless of privilege level, any remote user can modify the administrative password for CGI Script Centers' Account Manager. In order to accomplish this, a...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2000/08/23 12:0 a.m.28 views

CGI Script Center Subscribe Me Lite 2.0 - Administrative Password Alteration (2)

source: https://www.securityfocus.com/bid/1607/info Regardless of privilege level, any remote user can modify the administrative password for CGI Script Centers' Subscribe Me Lite. This would grant the user full administrative privileges which includes addition or removal of users from mailing...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2000/08/23 12:0 a.m.34 views

CGI Script Center Account Manager 1.0 LITE / PRO - Administrative Password Alteration (2)

source: https://www.securityfocus.com/bid/1604/info Regardless of privilege level, any remote user can modify the administrative password for CGI Script Centers' Account Manager. In order to accomplish this, a user would access the following URL with a POST command:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/08/17 12:0 a.m.12 views

netwin netauth 4.2 - Directory Traversal

netwin netauth 4.2 - Directory Traversal source: https://www.securityfocus.com/bid/1587/info A remote user is capable of gaining read access to any known file residing on a host running Netwin Netauth through directory traversal. Appending a series of '../' and the desired file name to the 'page'...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2000/07/27 12:0 a.m.14 views

Conectiva 4.x5.x RedHat 6.x - pam_console Remote User

Conectiva 4.x5.x RedHat 6.x - pamconsole Remote User source: https://www.securityfocus.com/bid/1513/info There is a vulnerability in the Linux pamconsole module that could allow an attacker to remotely reboot the workstation or perform other actions limited to local users. If a workstation is...

7.5AI score
Exploits0
Rows per page
Query Builder