CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

0day.today•added 2006/04/10 12:0 a.m.•40 views

PHPList <= 2.10.2 GLOBALS[] Remote Code Execution Exploit

Exploit for unknown platform in category web applications ========================================================= PHPList this works against registerglobals=On \r\n"; echo "a dork: inurl:"lists/?p=subscribe" | inurl:"lists/index.php?p=subscribe"\r\n"; echo " -ubbi phplist\r\n\r\n"; if $argc4...

7.1AI score

Saint•added 2006/04/06 12:0 a.m.•26 views

TWiki revision control shell command injection

Added: 04/06/2006 CVE: CVE-2005-2877 BID: 14834 OSVDB: 19403 Background TWiki is a web-based collaboration platform written in PERL. Problem The revision control function in TWiki does not sufficiently check the rev parameter before using it in a shell command call. This allows remote attackers t...

7.5CVSS7.4AI score0.84001EPSS

Saint•added 2006/04/06 12:0 a.m.•31 views

TWiki Search.pm shell command injection

Added: 04/06/2006 CVE: CVE-2004-1037 BID: 11674 OSVDB: 11714 Background TWiki is a web-based collaboration platform written in PERL. Problem The Search.pm module does not sufficiently check search strings for illegal characters, allowing remote attackers to execute commands using search strings...

10CVSS6.9AI score0.85829EPSS

Saint•added 2006/04/06 12:0 a.m.•36 views

TWiki revision control shell command injection

7.5CVSS7.5AI score0.84001EPSS

Saint•added 2006/04/06 12:0 a.m.•30 views

TWiki Search.pm shell command injection

10CVSS6.9AI score0.85829EPSS

Saint•added 2006/04/06 12:0 a.m.•18 views

TWiki revision control shell command injection

7.5CVSS7.4AI score0.84001EPSS

Saint•added 2006/04/06 12:0 a.m.•19 views

TWiki revision control shell command injection

7.5CVSS7.4AI score0.84001EPSS

securityvulns•added 2006/03/31 12:0 a.m.•33 views

[SA19453] v-creator VCEngine.php Shell Command Injection Vulnerability

TITLE: v-creator VCEngine.php Shell Command Injection Vulnerability SECUNIA ADVISORY ID: SA19453 VERIFY ADVISORY: http://secunia.com/advisories/19453/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: v-creator 1.x http://secunia.com/product/9080/ DESCRIPTION: A...

0.3AI score

Debian•added 2006/03/16 10:6 p.m.•17 views

[SECURITY] [DSA 1006-1] New wzdftpd packages fix arbitrary shell command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1006-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 16th, 2005 http://www.debian.org/security/faq -...

4.6CVSS0.3AI score0.39985EPSS

Debian•added 2006/03/16 10:6 p.m.•19 views

[SECURITY] [DSA 1006-1] New wzdftpd packages fix arbitrary shell command execution

4.6CVSS6.3AI score0.39985EPSS

0day.today•added 2006/03/08 12:0 a.m.•78 views

Gallery <= 2.0.3 stepOrder[] Remote Commands Execution Exploit

Exploit for unknown platform in category web applications ============================================================== Gallery autisticiorg \r\n"; echo "site: http://retrogod.altervista.org \r\n\r\n"; echo "- works with registerglobals = On and magicquotesgpc = Off \r\n"; if $argc5 echo "Usage:...

7.1AI score

Packet Storm•added 2006/03/03 12:0 a.m.•34 views

EV0082.txt

New eVuln Advisory: Leif M. Wright's Blog Multiple Vulnerabilities http://evuln.com/vulns/82/summary.html --------------------Summary---------------- eVuln ID: EV0082 CVE: CVE-2006-0843 CVE-2006-0844 CVE-2006-0845 CVE-2006 Software: Leif M. Wright's Blog Sowtware's Web Site:...

7.5CVSS6.6AI score0.01196EPSS

securityvulns•added 2006/03/01 12:0 a.m.•27 views

[eVuln] Leif M. Wright's Blog Multiple Vulnerabilities

7.5CVSS0.7AI score0.01196EPSS

seebug.org•added 2006/02/19 12:0 a.m.•19 views

Admbook <= 1.2.2 (X-Forwarded-For) Remote Command Execution Exploit

7.1AI score

Cent OS•added 2006/02/16 1:17 a.m.•60 views

ImageMagick security update

CentOS Errata and Security Advisory CESA-2006:178-2 Updated ImageMagick packages that fix two security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ImageMagickTM is an image display and manipulation tool for the X...

7.5CVSS7.4AI score0.11889EPSS

Exploits2References7

Cent OS•added 2006/02/14 5:5 p.m.•62 views

ImageMagick security update

CentOS Errata and Security Advisory CESA-2006:0178 Updated ImageMagick packages that fix two security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ImageMagickTM is an image display and manipulation tool for the X...

7.5CVSS7.4AI score0.11889EPSS

Exploits2References9

Debian•added 2006/01/31 9:42 a.m.•26 views

[SECURITY] [DSA 957-2] New ImageMagick packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 957-2 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...

7.5CVSS0.4AI score0.11889EPSS

Exploit DB•added 2006/01/28 12:0 a.m.•32 views

SHOUTcast 1.9.4 - File Request 'Leaked' Format String

/ Shoutcast include include include include include include include include include include include define SHELLPORT 7000 define SHELLCOMMAND "unset HISTFILE; uname -a; id;" if 1 unsigned char shellcode = / bindshell 7000 Unknown /...

7.4AI score