Lucene search
K

5278 matches found

Tenable Nessus
Tenable Nessus
added 2001/03/25 12:0 a.m.125 views

MAILNEWS mailnews.cgi Arbitrary Command Execution

mailnews.cgi is being hosted on the remote web server. Input to the 'address' parameter is not properly sanitized. A remote attacker could exploit this to execute arbitrary commands with the privileges of the web server. Please note Nessus only checked for the presence of this CGI, and did not...

10CVSS6AI score0.03334EPSS
Exploits1References2
securityvulns
securityvulns
added 2000/10/24 12:0 a.m.63 views

New Allaire Security Zone Bulletins Posted

Dear Allaire Customer -- New security issues that may affect Allaire customers have recently come to our attention. Please visit the Security Zone at the Allaire Web site to learn about these new issues and what actions you can take to address them: http://www.allaire.com/security This week we...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2000/09/27 12:0 a.m.12 views

TalentSoft Web+ ClientMonitorserver 4.6 - Source Code Disclosure

TalentSoft Web+ ClientMonitorserver 4.6 - Source Code Disclosure source: https://www.securityfocus.com/bid/1722/info Talentsoft Web+ is a web application server that can be integrated with various web technologies. Web+ can be used to display the source code of WML files residing on an NTFS...

7.6AI score
Exploits0
securityvulns
securityvulns
added 2000/08/31 12:0 a.m.28 views

Web Application Security Survey

-Web Application Security Survey- Results show that Microsoft Hotmail, Excite, Altavista, E-Bay, Lycos Netscape WebMail, E-Trade, Infoseek/Go.com and their users are all currently vulnerable to web based attack. disclaimer The opinions, ideas and information expressed in the following text are my...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2000/08/30 12:0 a.m.33 views

webmail.txt

-Web Application Security Survey- Results show that Microsoft Hotmail, Excite, Altavista, E-Bay, Lycos Netscape WebMail, E-Trade, Infoseek/Go.com and their users are all currently vulnerable to web based attack. disclaimer The opinions, ideas and information expressed in the following text are my...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2000/07/30 12:0 a.m.33 views

FS-072800-9-BEA.txt

Foundstone, Inc. http://www.foundstone.com "Securing the Dot Com World" Security Advisory BEA's WebLogic force handlers show code vulnerability ---------------------------------------------------------------------- FS Advisory ID: FS-072800-9-BEA Release Date: July 28, 2000 Product: WebLogic...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2000/05/18 12:0 a.m.1799 views

ISS ICEcap Default Password

The ICEcap package has a default login of 'iceman' with no password. An attacker may use this fact to log into the console and/or push false alerts on port 8082. In addition to this, an attacker may inject code in ICEcap v2.0.23 and below. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Than...

5CVSS5.6AI score0.0787EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2000/05/14 12:0 a.m.35 views

allmanage.pl.txt

Allmanage.pl vulnerability 13 may 2000 Websites using 'Allmanage Website Administration Software 2.6 WITH the upload ability', and maybe earlier versions , contain a vulnerability wich gives you full add/del/change access in the user-account directories and you can change the files in the main...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2000/02/04 5:0 a.m.14 views

CVE-1999-0665

An application-critical Windows NT registry key has an inappropriate value...

6.6AI score0.01904EPSS
Exploits0References1
NVD
NVD
added 1999/01/01 5:0 a.m.7 views

CVE-1999-0665

An application-critical Windows NT registry key has an inappropriate value...

10CVSS6.6AI score0.01904EPSS
Exploits0References1
NVD
NVD
added 1999/01/01 5:0 a.m.12 views

CVE-1999-0664

An application-critical Windows NT registry key has inappropriate permissions...

10CVSS6.6AI score0.01904EPSS
Exploits0References1
Exploit DB
Exploit DB
added 1997/07/16 12:0 a.m.29 views

Sun Java Web Server 1.1 Beta - Viewable .jhtml Source

source: https://www.securityfocus.com/bid/1891/info A vulnerability exists in Sun Microsystems' JavaWebServer for Win32, version 1.1Beta. JavaWebServer is a Java-oriented web application development platform. If a URL is submitted requesting a .jhtml file an HTML document with embedded Java sourc...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 1997/05/26 12:0 a.m.42 views

AIX lquerylv - Local Buffer Overflow / Local Privilege Escalation

include include include char prog100="/usr/sbin/lquerylv"; char prog230="lquerylv"; extern int execv; char createvarchar name,char value char c; int l; l=strlenname+strlenvalue+4; if ! c=mallocl perror"error allocating";exit2;; strcpyc,name; strcatc,"="; strcatc,value; putenvc; return c; /The...

7.4AI score
Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.15 views

CVE-2022-36827

...

Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.10 views

CVE-2022-40553

...

Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.13 views

CVE-2023-39849

...

Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.12 views

CVE-2021-41857

...

Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.10 views

Bing Bar MASP 4-5

...

1.1AI score
Exploits0
Rows per page
Query Builder