Lucene search
K

1849 matches found

Cvelist
Cvelist
added 2005/07/19 4:0 a.m.31 views

CVE-2005-1851

A certain contributed script for ekg Gadu Gadu client 1.5 and earlier allows attackers to execute shell commands via unknown attack vectors...

6AI score0.01507EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/07/19 12:0 a.m.28 views

Debian DSA-762-1 : affix - several vulnerabilities

Kevin Finisterre discovered two problems in the Bluetooth FTP client from affix, user space utilities for the Affix Bluetooth protocol stack. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities : - CAN-2005-2250 A buffer overflow allows remote attackers to...

10CVSS6.4AI score0.12938EPSS
Exploits0References5
Cvelist
Cvelist
added 2005/07/10 4:0 a.m.20 views

CVE-2004-2183

Unknown vulnerability in WeHelpBUS 0.1 allows remote attackers to execute arbitrary shell commands via the query string...

7.6AI score0.01828EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/07/02 12:0 a.m.32 views

[Full-disclosure] Advisory 05/2005: Cacti Authentification/Addslashes Bypass Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hardened - PHP Project www.hardened-php.net -= Security Advisory =- Advisory: Cacti Authentification/Addslashes Bypass Vulnerability Release Date: 2005/07/01 Last Modified: 2005/07/01 Author: Stefan Esser [email protected] Application: Cacti =...

0.2AI score
Exploits0
0day.today
0day.today
added 2005/06/30 12:0 a.m.73 views

Wordpress <= 1.5.1.2 xmlrpc Interface SQL Injection Exploit

Exploit for unknown platform in category web applications =========================================================== Wordpress wp.pl http://pathto/wp admin 1 "id;uname -a;pwd;uptime" Trying Host http://pathto/wp ... + The XMLRPC server seems to be working + Char 1 is 2 + Char 2 is 1 + Cha...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/06/17 12:0 a.m.27 views

GLSA-200506-13 : webapp-config: Insecure temporary file handling

The remote host is affected by the vulnerability described in GLSA-200506-13 webapp-config: Insecure temporary file handling Eric Romang discovered webapp-config uses a predictable temporary filename while processing certain options, resulting in a race condition. Impact : Successful exploitation...

4.6CVSS6AI score0.00985EPSS
Exploits1References2
Gentoo Linux
Gentoo Linux
added 2005/06/17 12:0 a.m.34 views

webapp-config: Insecure temporary file handling

Background webapp-config is a Gentoo Linux utility to help manage the installation of web-based applications. Description Eric Romang discovered webapp-config uses a predictable temporary filename while processing certain options, resulting in a race condition. Impact Successful exploitation of t...

4.6CVSS6.9AI score0.00985EPSS
Exploits1
exploitpack
exploitpack
added 2005/05/24 12:0 a.m.24 views

GForge 3.x - Arbitrary Command Execution

GForge 3.x - Arbitrary Command Execution source: https://www.securityfocus.com/bid/13716/info GForge is affected by a remote command execution vulnerability. This issue arises because the application fails to sanitize user-supplied data passed through URI parameters. An attacker can supply...

1.2AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/24 12:0 a.m.27 views

GForge 3.x - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/13716/info GForge is affected by a remote command execution vulnerability. This issue arises because the application fails to sanitize user-supplied data passed through URI parameters. An attacker can supply arbitrary shell commands through the affected...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/04/23 12:0 a.m.28 views

[SA15054] WebAPP E-Cart Module Shell Command Injection Vulnerability

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: WebAPP E-Cart Module Shell Command Injection...

0.5AI score
Exploits0
NVD
NVD
added 2004/12/31 5:0 a.m.13 views

CVE-2004-2183

Unknown vulnerability in WeHelpBUS 0.1 allows remote attackers to execute arbitrary shell commands via the query string...

7.5CVSS7.6AI score0.01828EPSS
Exploits0References2
seebug.org
seebug.org
added 2004/12/22 12:0 a.m.12 views

linux/x86 Radically Self Modifying Code 70 bytes

No description provided by source. /-------------------------------------------------------/ / Radically Self Modifying Code for surviving / / toupper and tolower / / / / 70byte execve & exit code by XORt / /-------------------------------------------------------/ "\xeb\x12" / jmp $0x12 / "\x5e" ...

7.1AI score
Exploits0
0day.today
0day.today
added 2004/11/15 12:0 a.m.28 views

linux/x86 execve code 23 bytes

Exploit for linux/x86 platform in category shellcode ============================== linux/x86 execve code 23 bytes ============================== / Linux 23 byte execve code. Greetz to preedator marcetam admin at marcetam.net / char linux= "\x99" / cdq / "\x52" / push %edx / "\x68\x2f\x2f\x73\x68...

7AI score
Exploits0
securityvulns
securityvulns
added 2004/11/13 12:0 a.m.49 views

[Full-Disclosure] TWiki search function allows arbitrary shell command execution

VULNERABLE SOFTWARE VERSIONS TWiki http://twiki.org/ - TWiki 20030201 e.g. Debian Sarge - probably later versions - Subversion repository at http://ntwiki.ethermage.net:8181/svn/twiki/trunk at least until revision 3224 including ATTACK VECTORS HTTP GET requests towards the Wiki server typically...

0.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.25 views

Debian DSA-229-1 : imp - SQL injection

Jouko Pynnonen discovered a problem with IMP, a web-based IMAP mail program. Using carefully crafted URLs a remote attacker is able to inject SQL code into SQL queries without proper user authentication. Even though results of SQL queries aren't directly readable from the screen, an attacker migh...

7.5CVSS6.2AI score0.24055EPSS
Exploits0References2
0day.today
0day.today
added 2004/09/26 12:0 a.m.23 views

solaris/x86 add services and execve inetd 201 bytes

Exploit for solaris/x86 platform in category shellcode =================================================== solaris/x86 add services and execve inetd 201 bytes =================================================== / Solaris/x86 Just execve's the following: "echo "ingreslock stream tcp nowait root...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2004/09/26 12:0 a.m.29 views

os-x/PPC Add user r00t 219 bytes

os-x/PPC Add user r00t 219 bytes. Shellcode exploit for osxppc platform / PPC OS X / Darwin Shellcode by B-r00t. 2003. open; write; close; execve; exit; See ASM below. 219 Bytes! / char shellcode = "\x7c\xa5\x2a\x79\x40\x82\xff\xfd\x7d\x48\x02\xa6\x3b\xea\x01\x70"...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2004/07/19 12:0 a.m.46 views

Web_Store.cgi allows Command Execution

WebStore.cgi allows Command Execution: This application was written by Selena Sol and Gunther Birznieks. You can execute shellcommands: http://www.victim.com/cgi-bin/webstore.cgi?page=.html|cat /etc/passwd| Zero X, member of www.Lobnan.de and www.Lostkey.org...

2AI score
Exploits0
Packet Storm
Packet Storm
added 2004/07/17 12:0 a.m.22 views

webstoreExec.txt

WebStore.cgi allows Command Execution: This application was written by Selena Sol and Gunther Birznieks. You can execute shellcommands: http://www.victim.com/cgi-bin/webstore.cgi?page=.html|cat /etc/passwd| Zero X, member of www.Lobnan.de and www.Lostkey.org...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/07/09 12:0 a.m.25 views

Microsoft Internet Explorer - Remote Application.Shell

Microsoft Internet Explorer - Remote Application.Shell function InjectedDuringRedirection showModalDialog'md.htm',window,"dialogTop:-10000;dialogLeft:-10000;dialogHeight:1; dialogWidth:1;".location="vbscript:"""; setTimeout"myiframe.execScriptInjectedDuringRedirection.toString",100;...

7.5AI score
Exploits0
Rows per page
Query Builder