CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1041 matches found

seebug.org•added 2014/07/01 12:0 a.m.•27 views

Joomla Component BF Quiz SQL Injection Vulnerability

No description provided by source. Exploit Title: Joomla Component BF Quiz SQL Injection Vulnerability Date: 29th May 2010 Author: Valentin Category: webapps/0day Version: 1.3.0 Tested on: Debian, Apache2, MySQL 5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•14 views

FleaHttpd Remote Denial of Service Exploit

No description provided by source. !/usr/bin/python FleaHttpd Remote Denial Of Service Exploit by condis FleaHttpd is a http daemon written from scratch in C. When working as a static file server, data show that under certain condition, fleahttpd's speed for static file retrieving can be three...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•29 views

MTP Image Gallery 1.0 (edit_photos.php, title param) - XSS Vulnerability

No description provided by source. ?!-- MTP Image Gallery 1.0 title Remote Script Insertion Vulnerability Vendor: MTP Scripts Product web page: http://www.morephp.net Affected version: 1.0 Summary: MTP Image Gallery offers more control, better uploading and enhanced performance. With MTP Image...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•17 views

Joomla Component (com_restaurantguide) Multiple Vulnerabilities

No description provided by source. Exploit Title: Joomla Component comrestaurantguide Multiple Vulnerabilities Date: 18.09.2010 Author: Valentin Category: webapps/0day Version: 1.0.0 Tested on: Debian lenny, Apache2, MySQL 5, Joomla 1.5.x CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•24 views

Madness Pro <= 1.14 - Persistent XSS

No description provided by source. !/usr/bin/env python2 -- coding: utf-8 -- Exploit Title: Madness Pro %3C%2Fscript%3E%3C%2Fa%3E" "%3Ca%20href%3D%22%23%22%20onclick%3D%5C%22setstatus\'12345".formatpanelindexurl, beefhookurl print f.read installbeefhookbeefhook, panelurl...

7.1AI score

Exploits0

Tenable Nessus•added 2014/06/26 12:0 a.m.•28 views

openSUSE Security Update : php5 (openSUSE-SU-2014:0841-1)

php5 was updated to prevent insecure DNS TXT record parsing. This security issue was fixed : - Heap-based buffer overflow in DNS TXT record parsing CVE-2014-4049 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUS...

5.1CVSS7.3AI score0.30666EPSS

Exploits0References3

Tenable Nessus•added 2014/06/13 12:0 a.m.•42 views

openSUSE Security Update : apache2 (openSUSE-SU-2013:1337-1)

httpd-2.2.x-bnc829056-CVE-2013-1896-pr1482522-moddav.diff CVE-2013-1896: Sending a MERGE request against a URI handled by moddavsvn with the source href sent as part of the request body as XML pointing to a URI that is not configured for DAV will trigger a segfault. bnc829056 -...

5.1CVSS8AI score0.52396EPSS

Exploits4References5

Tenable Nessus•added 2014/06/13 12:0 a.m.•32 views

openSUSE Security Update : apache2 (openSUSE-SU-2011:0859-1)

This update fixes : - CVE-2011-0419 and CVE-2011-1928: unconstrained recursion when processing patterns - CVE-2010-1623: a remote DoS memory leak in APR's reqtimeoutfilter function %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

5CVSS6.3AI score0.52868EPSS

Exploits5References8

Tenable Nessus•added 2014/06/13 12:0 a.m.•23 views

openSUSE Security Update : viewvc (openSUSE-SU-2012:0831-1)

update to 1.1.15 bnc768680 : - security fix: complete authz support for remote SVN views CVE-2012-3356 - security fix: log msg leak in SVN revision view with unreadable copy source CVE-2012-3357 Additionally the following non-security issues have been addressed : - fix several instances of...

5CVSS5.5AI score0.00705EPSS

Exploits0References4

Tenable Nessus•added 2014/06/13 12:0 a.m.•32 views

openSUSE Security Update : apache2 (openSUSE-SU-2013:1340-1)

5.1CVSS8AI score0.52396EPSS

Exploits4References5

Tenable Nessus•added 2014/06/13 12:0 a.m.•42 views

openSUSE Security Update : apache2-201202 (openSUSE-SU-2012:0314-1)

This update of apache2 fixes regressions and several security problems : bnc728876, fix graceful reload bnc741243, CVE-2012-0031: Fixed a scoreboard corruption shared mem segment by child causes crash of privileged parent invalid free during shutdown. bnc743743, CVE-2012-0053: Fixed an issue in...

5CVSS6.8AI score0.81732EPSS

Exploits7References8

Tenable Nessus•added 2014/06/13 12:0 a.m.•41 views

openSUSE Security Update : apache2 (openSUSE-2012-132)

httpd-2.2.x-bnc743743-CVE-2012-0053-serverprotocolc-cookieexposure.diff addresses CVE-2012-0053: error responses can expose cookies when no custom 400 error code ErrorDocument is configured. bnc743743 - httpd-2.2.x-bnc741243-CVE-2012-0031-scoreboardhandling.diff: scoreboard corruption shared mem...

5CVSS6.8AI score0.81732EPSS

Exploits10References10

Tenable Nessus•added 2014/06/13 12:0 a.m.•33 views

openSUSE Security Update : apache2 (openSUSE-SU-2013:0245-1)

httpd-2.2.x-bnc798733-SNIignorecase.diff: ignore case when checking against SNI server names. bnc798733 - httpd-2.2.x-bnc777260-CVE-2012-2687-modnegotiationfilenamexss.diff Escape filename for the case that uploads are allowed with untrusted user's control over filenames and modnegotiation...

2.6CVSS7.7AI score0.0466EPSS

Exploits2References4

Tenable Nessus•added 2014/06/13 12:0 a.m.•52 views

openSUSE Security Update : apache2 (openSUSE-SU-2013:0629-1)

apache2 was updated to fix : - fix for cross site scripting vulnerability in modbalancer. This is CVE-2012-4558 bnc807152 - fixes for low profile cross site scripting vulnerabilities, known as CVE-2012-3499 bnc806458 - Escape filename for the case that uploads are allowed with untrusted user's...

4.3CVSS7.2AI score0.58223EPSS

Exploits4References8

Tenable Nessus•added 2014/06/13 12:0 a.m.•39 views

openSUSE Security Update : apache2 (openSUSE-SU-2011:0993-1)

This update fixes a remote denial of service bug memory exhaustion in the Apache 2 HTTP server, that could be triggered by remote attackers using multiple overlapping Request Ranges . CVE-2011-3192 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in thi...

7.8CVSS7.7AI score0.90456EPSS

Exploits17References3

Tenable Nessus•added 2014/06/13 12:0 a.m.•33 views

openSUSE Security Update : apache2 (openSUSE-2011-55)

specially crafted requests could bypass RewriteRule and ProxyPassMatch - new template file: /etc/apache2/vhosts.d/vhost-ssl.template allow TLSv1 only, browser match stuff commented out. - rc script /etc/init.d/apache2: handle reload with deleted binaries by message to stdout only, but refrain...

5.5AI score

Exploits0

Tenable Nessus•added 2014/06/13 12:0 a.m.•51 views

openSUSE Security Update : apache2 (openSUSE-SU-2013:0243-1)

ignore case when checking against SNI server names. bnc798733 httpd-2.2.x-bnc798733-SNIignorecase.diff - better cleanup of busy count after recovering from failure bnc789828 httpd-2.2.x-bnc789828-modbalancer.diff - httpd-2.2.x-bnc788121-CVE-2012-4557-modproxyajptimeout.diff: backend timeouts...

6.9CVSS7.7AI score0.77975EPSS

Exploits19References12

Tenable Nessus•added 2014/06/13 12:0 a.m.•49 views

openSUSE Security Update : apache2 (openSUSE-SU-2012:0248-1)

This update fixes several security issues in the Apache2 webserver. CVE-2011-3368, CVE-2011-4317: This update also includes several fixes for a modproxy reverse exposure via RewriteRule or ProxyPassMatch directives. CVE-2011-3607: Integer overflow in appregsub function resulting in a heap based...

5CVSS7.5AI score0.77975EPSS

Exploits17References7

Tenable Nessus•added 2014/06/13 12:0 a.m.•50 views

openSUSE Security Update : apache2 (openSUSE-SU-2012:0212-1)

5CVSS7.5AI score0.77975EPSS

Exploits17References6