Lucene search
K

208 matches found

packetstorm
packetstorm
added 2013/08/07 12:0 a.m.33 views

HP Data Protector Arbitrary Remote Command Execution

""" HP Data Protector Arbitrary Remote Command Execution This script allows to execute a command with an arbitrary number of arguments. The trick calls 'perl.exe' interpreter installed with HP Data Protector inside the directory installpath/bin/. The main goal of the script is to bypass the...

10CVSS0.8AI score0.81081EPSS
Exploits30
saint
saint
added 2013/06/09 12:0 a.m.45 views

IBM SPSS SamplePower c1sizer ActiveX Control Vulnerability

Added: 06/09/2013 CVE: CVE-2012-5946 BID: 59559 OSVDB: 92845 Background SPSS Statistical Package for the Social Sciences is a computer application that provides statistical analysis of data. It allows for in-depth data access and preparation, analytical reporting, graphics and modelling...

9.3CVSS7.3AI score0.33782EPSS
Exploits9
saint
saint
added 2013/06/09 12:0 a.m.46 views

IBM SPSS SamplePower c1sizer ActiveX Control Vulnerability

Added: 06/09/2013 CVE: CVE-2012-5946 BID: 59559 OSVDB: 92845 Background SPSS Statistical Package for the Social Sciences is a computer application that provides statistical analysis of data. It allows for in-depth data access and preparation, analytical reporting, graphics and modelling...

9.3CVSS7.3AI score0.33782EPSS
Exploits9
exploitdb
exploitdb
added 2012/06/03 12:0 a.m.32 views

Log1 CMS - 'writeInfo()' PHP Code Injection (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Log1 CMS writeInf...

7.5CVSS7AI score0.40905EPSS
Exploits7
metasploit
metasploit
added 2012/02/24 6:6 p.m.27 views

HP Data Protector 6 EXEC_CMD Remote Code Execution

This exploit abuses a vulnerability in the HP Data Protector service. This flaw allows an unauthenticated attacker to take advantage of the EXECCMD command and traverse back to /bin/sh, this allows arbitrary remote code execution under the context of root. This module requires Metasploit:...

10CVSS1.1AI score0.81081EPSS
Exploits30
zdt
zdt
added 2011/07/17 12:0 a.m.24 views

Iconics GENESIS32 Integer overflow version 9.21.201.01

Exploit for windows platform in category remote exploits $Id: iconicsgenbroker.rb 13197 2011-07-17 15:01:46Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information o...

7.1AI score
Exploits0
zdt
zdt
added 2011/04/30 12:0 a.m.36 views

CMS Made Simple <= 1.9.4.1 Arbitrary Remote File Upload

Exploit for php platform in category web applications !/usr/bin/perl sub logo print STDERR Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail : submitat1337day.com 1 0 0 1 1 0 I'm KedAns-Dz member from Inj3ct0r Team 1 1 0...

7.1AI score
Exploits0
packetstorm
packetstorm
added 2011/04/28 12:0 a.m.37 views

CMS Made Simple 1.9.4.1 Shell Upload

!/usr/bin/perl sub logo print STDERR Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail : submitat1337day.com 1 0 0 1 1 0 I'm KedAns-Dz member from Inj3ct0r Team 1 1 0...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2010/06/30 12:0 a.m.32 views

Comunidades.net SQL Injection / Shell Upload

$ Exploit Title : Comunidades.net Multi Vulnerability $ Date : 29-06-2010 $ Author : MasterGipy $ Email : mastergipy at gmail.com $ Bug : SQL Injection & Arbitrary Remote File Upload $ Site : http://comunidades.net/ $ Google Dork : n/a = Blogs - Comunidades.net = SQL Injection $ Exploit:...

0.3AI score
Exploits0
nessus
nessus
added 2009/11/04 12:0 a.m.27 views

BlackBerry Desktop Manager Intellisync ActiveX Control Arbitrary Remote Code Execution

The version of the Lotus Notes Intellisync component 'lnsresobject.dll' included with the BlackBerry Desktop Software installation on the remote host reportedly contains an unspecified error that can be exploited to execute arbitrary code. If an attacker can trick a user on the affected host into...

9.3CVSS6.3AI score0.03939EPSS
Exploits1References2
nvd
nvd
added 2009/05/01 5:30 p.m.28 views

CVE-2009-1365

Unspecified vulnerability in Adobe Flash Media Server FMS before 3.0.4 and 3.5.x before 3.5.2, as used in Flash Media Interactive Server and Flash Media Streaming Server, allows remote attackers to execute arbitrary remote procedures within an ActionScript file on the server via RPC requests...

7.5CVSS7.4AI score0.03329EPSS
Exploits1References5
nessus
nessus
added 2009/01/12 12:0 a.m.32 views

GLSA-200901-01 : NDISwrapper: Arbitrary remote code execution

The remote host is affected by the vulnerability described in GLSA-200901-01 NDISwrapper: Arbitrary remote code execution Anders Kaseorg reported multiple buffer overflows related to long ESSIDs. Impact : A physically proximate attacker could send packets over a wireless network that might lead t...

8.3CVSS6.5AI score0.02403EPSS
Exploits1References2
freebsd
freebsd
added 2009/01/08 12:0 a.m.36 views

openfire -- multiple vulnerabilities

Core Security Technologies reports: Multiple cross-site scripting vulnerabilities have been found which may lead to arbitrary remote code execution on the server running the application due to unauthorized upload of Java plugin code...

2.1AI score
Exploits0References1
seebug
seebug
added 2008/12/29 12:0 a.m.17 views

ThePortal 2.2 Arbitrary Remote File Upload Exploit

No description provided by source. web apps theportal2 v2.2 Auth bypass file upload -------------------- Author: siurek22 -------------------- You need curl to run it -------------------- Code: -------------------- upload.php ?php $file=$POST'url'; $fel=explode"\n", $file; $ile=count$fel;...

7.1AI score
Exploits0
zdt
zdt
added 2008/12/29 12:0 a.m.15 views

ThePortal 2.2 Arbitrary Remote File Upload Exploit

Exploit for unknown platform in category web applications ================================================== ThePortal 2.2 Arbitrary Remote File Upload Exploit ================================================== theportal2 v2.2 Auth bypass file upload -------------------- You need curl to run it...

7.1AI score
Exploits0
seebug
seebug
added 2008/12/17 12:0 a.m.18 views

K&amp;S Shopsysteme Arbitrary Remote File Upload Vulnerability

No description provided by source. Script Name: Shopsysteme new version oscommerce Download: http://www.shopsystem-forum.de/productinfo.php?cPath=22&productsid=43 299 euro : Author: mNt File Upload Bug Google Dork: intext:Powered by K&S Media Concept - Shopsysteme Powered by K&S Media Concept -...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/11/06 12:0 a.m.13 views

CuteNews aj-fork - path Remote File Inclusion

CuteNews aj-fork - path Remote File Inclusion source: https://www.securityfocus.com/bid/32141/info CuteNews aj-fork is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file...

Exploits0
exploitdb
exploitdb
added 2008/11/06 12:0 a.m.27 views

CuteNews aj-fork - &#039;path&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/32141/info CuteNews aj-fork is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in t...

7AI score
Exploits0
exploitpack
exploitpack
added 2008/10/27 12:0 a.m.12 views

bcoos 1.0.13 - common.php Remote File Inclusion

bcoos 1.0.13 - common.php Remote File Inclusion source: https://www.securityfocus.com/bid/31929/info The 'bcoos' program is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote fil...

0.1AI score
Exploits0
openvas
openvas
added 2008/09/24 12:0 a.m.27 views

Gentoo Security Advisory GLSA 200711-24 (mozilla-thunderbird mozilla-thunderbird-bin)

The remote host is missing updates announced in advisory GLSA 200711-24. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

4.3CVSS0.6AI score0.0343EPSS
Exploits1
Rows per page
Query Builder