Lucene search
K

67 matches found

prion
prion
added 2016/05/31 1:59 a.m.17 views

Design/Logic Flaw

Environmental Systems Corporation ESC 8832 Data Controller 3.02 and earlier allows remote attackers to bypass intended access restrictions and execute arbitrary functions via a modified parameter...

5CVSS7.8AI score0.0156EPSS
Exploits0References1Affected Software1
zdt
zdt
added 2015/04/10 12:0 a.m.41 views

WordPress Ajax Search Pro Remote Code Execution Vulnerability

This vulnerability allows any registered user to execute arbitrary functions Usage Info http://localhost/x/wordpress/wp-admin/admin-ajax.php?page=ajax-search-pro/backend/settings.php&action=wpdreams-ajaxinput post data:...

7.6AI score
Exploits0
packetstorm
packetstorm
added 2015/03/22 12:0 a.m.30 views

WordPress Ajax Search Pro Remote Code Execution

------------------------------------------------------------------------------ WordPress ajax-search-pro Plugin Remote Code Execution ------------------------------------------------------------------------------ - Plugin Link:...

0.3AI score
Exploits0
cvelist
cvelist
added 2012/09/19 10:0 a.m.25 views

CVE-2012-4402

webservice/lib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly restrict the use of web-service tokens, which allows remote authenticated users to run arbitrary external-service functions via a token intended for only one service...

6.1AI score0.00983EPSS
Exploits0References3
nvd
nvd
added 2007/06/19 9:30 p.m.23 views

CVE-2007-3280

The Database Link library dblink in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a function from any library, as demonstrated by using the system...

9CVSS6.8AI score0.2613EPSS
Exploits2References6
cve
cve
added 2006/01/09 11:0 p.m.82 views

CVE-2006-0147

The CVE-2006-0147 issue is a dynamic code evaluation vulnerability in ADOdb for PHP (tests/tmssql.php) prior to version 4.70, permitting remote attackers to execute arbitrary PHP functions via the do parameter (demonstrated with phpinfo). It affects multiple products that vendor-integrate ADOdb, ...

7.5CVSS7.3AI score0.13065EPSS
Exploits1References30Affected Software5
exploitpack
exploitpack
added 2005/08/08 12:0 a.m.15 views

SysCP 1.2.x - Multiple Script Execution Vulnerabilities

SysCP 1.2.x - Multiple Script Execution Vulnerabilities source: https://www.securityfocus.com/bid/14490/info SysCP is affected by multiple script execution vulnerabilities. The following specific vulnerabilities were identified: The application is affected by a remote file include vulnerability. ...

0.2AI score
Exploits0
Rows per page
Query Builder