Lucene search
K

58 matches found

Packet Storm
Packet Storm
added 2008/04/23 12:0 a.m.23 views

webcal-sql.txt

!/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND ASCIISUBSTRINGSELECT CONCATlogin,char58,password,char...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/04/22 12:0 a.m.18 views

Web Calendar <= 4.1 Blind SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================== Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/04/22 12:0 a.m.18 views

Web Calendar 4.1 - Blind SQL Injection

Web Calendar 4.1 - Blind SQL Injection !/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND...

Exploits0
Exploit DB
Exploit DB
added 2008/04/22 12:0 a.m.30 views

Web Calendar 4.1 - Blind SQL Injection

!/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND ASCIISUBSTRINGSELECT CONCATlogin,char58,password,char...

7.4AI score
Exploits0
NVD
NVD
added 2006/06/06 8:6 p.m.10 views

CVE-2006-2856

ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which allows local users to gain privileges by creating a malicious sitecustomize.pl file in that directory. NOTE: The provenance of this information is unknown; the...

4.6CVSS6.2AI score0.00383EPSS
Exploits0References5
Prion
Prion
added 2006/06/06 8:6 p.m.17 views

Design/Logic Flaw

ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which allows local users to gain privileges by creating a malicious sitecustomize.pl file in that directory. NOTE: The provenance of this information is unknown; the...

4.6CVSS6.8AI score0.00383EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2006/06/06 8:3 p.m.16 views

CVE-2006-2856

ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which allows local users to gain privileges by creating a malicious sitecustomize.pl file in that directory. NOTE: The provenance of this information is unknown; the...

6.2AI score0.00383EPSS
Exploits0References5
CVE
CVE
added 2006/06/06 8:3 p.m.48 views

CVE-2006-2856

ActivePerl 5.8.8.817 for Windows is affected. The vulnerability arises from configuring the site/lib directory with write access to the Users group, allowing local users to create a malicious sitecustomize.pl and escalate privileges. The available sources describe the root cause and impact as loc...

4.6CVSS6.3AI score0.00383EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.32 views

ActivePerl perlIS.dll Buffer Overflow

An attacker can run arbitrary code on the remote computer. This is because the remote IIS server is running a version of ActivePerl prior to 5.6.1.630 and has the Check that file exists option disabled for the perlIS.dll. OpenVAS Vulnerability Test $Id: perlISdllbufferoverflow.nasl 8023 2017-12-0...

7.5CVSS1AI score0.14423EPSS
Exploits1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.23 views

ActivePerl perlIS.dll Buffer Overflow Vulnerability - Active Check

An attacker can run arbitrary code on the remote computer. This is because the remote IIS server is running a version of ActivePerl prior to 5.6.1.630 and has the Check that file exists option disabled for the perlIS.dll. SPDX-FileCopyrightText: 2001 HD Moore & Drew Hintz Some text descriptions...

7.5CVSS7.1AI score0.14423EPSS
Exploits1References1
CVE
CVE
added 2005/08/04 4:0 a.m.50 views

CVE-2004-2286

CVE-2004-2286 maps to an integer overflow in ActivePerl’s duplication operator, enabling remote DoS and potentially arbitrary code execution via a large multiplier. Affected: ActivePerl 5.x up to 5.8.3 and earlier. Root cause: overflow during duplication. Impact: Denial of service and possible co...

7.5CVSS8.1AI score0.07997EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2005/08/04 4:0 a.m.16 views

CVE-2004-2286

Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow...

8.1AI score0.07997EPSS
Exploits1References3
CVE
CVE
added 2005/05/10 4:0 a.m.46 views

CVE-2004-2022

ActivePerl 5.8.x and Perl 5.6.1 (Windows) are affected by CVE-2004-2022, allowing a denial of service (crash) and potentially arbitrary code execution via a long argument to the system() command, due to a stack-based buffer overflow. The root cause is unclear whether the flaw lies in Perl or the ...

2.1CVSS8.1AI score0.01673EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2005/05/10 4:0 a.m.20 views

CVE-2004-2022

ActivePerl 5.8.x and others, and Larry Wall's Perl 5.6.1 and others, when running on Windows systems, allows attackers to cause a denial of service crash and possibly execute arbitrary code via a long argument to the system command, which leads to a stack-based buffer overflow. NOTE: it is unclea...

7.8AI score0.01673EPSS
Exploits1References9
NVD
NVD
added 2004/12/31 5:0 a.m.12 views

CVE-2004-2286

Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow...

7.5CVSS8.1AI score0.07997EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2004/12/31 12:0 a.m.29 views

KLA10053 DoS vulnerability in ActivePerl

An integer overflow vulnerability was found in ActivePerl. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited at a point related to the duplication operator via a large multiplier. Original advisories...

7.5CVSS8AI score0.07997EPSS
Exploits1References3
Exploit DB
Exploit DB
added 2004/05/18 12:0 a.m.22 views

ActivePerl 5.x / Cygwin 1.5.x - System Function Call Buffer Overflow

source: https://www.securityfocus.com/bid/10375/info ActiveState Perl and Perl for cygwin are both reported to be prone to a buffer overflow vulnerability. The issue is reported to exist due to a lack of sufficient bounds checking that is performed on data that is passed to a Perl system function...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/05/18 12:0 a.m.29 views

ActivePerl 5.x / Larry Wall Perl 5.x - Duplication Operator Integer Overflow

source: https://www.securityfocus.com/bid/10380/info ActiveState Perl is reported to be prone to an integer overflow vulnerability. It is revealed through testing that other implementations are also vulnerable. The issue is reported to exist due to a lack of sufficient bounds checking that is...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/05/18 12:0 a.m.14 views

ActivePerl 5.x Cygwin 1.5.x - System Function Call Buffer Overflow

ActivePerl 5.x Cygwin 1.5.x - System Function Call Buffer Overflow source: https://www.securityfocus.com/bid/10375/info ActiveState Perl and Perl for cygwin are both reported to be prone to a buffer overflow vulnerability. The issue is reported to exist due to a lack of sufficient bounds checking...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2004/05/18 12:0 a.m.14 views

ActivePerl 5.x Larry Wall Perl 5.x - Duplication Operator Integer Overflow

ActivePerl 5.x Larry Wall Perl 5.x - Duplication Operator Integer Overflow source: https://www.securityfocus.com/bid/10380/info ActiveState Perl is reported to be prone to an integer overflow vulnerability. It is revealed through testing that other implementations are also vulnerable. The issue i...

0.1AI score
Exploits0
Rows per page
Query Builder