Lucene search
+L

450 matches found

CVE
CVE
added 2011/05/05 1:0 a.m.114 views

CVE-2011-1207

The CVE-2011-1207 issue affects the Data Dynamics ActiveBar ActiveX control (ActBar.ocx 1.0.6.5) bundled with IBM Rational System Architect 11.4.0.2/11.4.0.1 and earlier. The SetLayoutData method is not properly restricted, enabling arbitrary code execution via a crafted Data argument. Affected p...

9.3CVSS7.4AI score0.05261EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2011/05/05 1:0 a.m.30 views

CVE-2011-1207

The ActiveBar1 ActiveX control in the Data Dynamics ActiveBar ActiveX controls, as distributed in ActBar.ocx 1.0.6.5 in IBM Rational System Architect 11.4.0.2, 11.4.0.1, and earlier, does not properly restrict the SetLayoutData method, which allows remote attackers to execute arbitrary code via a...

7.1AI score0.05261EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2011/05/05 12:0 a.m.6 views

PT-2011-2949 · Data Dynamics +1 · Data Dynamics Activebar +1

Name of the Vulnerable Software and Affected Versions: Data Dynamics ActiveBar ActiveX controls version 1.0.6.5 IBM Rational System Architect versions 11.4.0.2, 11.4.0.1, and earlier Description: The issue is related to the ActiveBar1 ActiveX control, which does not properly restrict the...

9.3CVSS7.3AI score0.05261EPSS
Exploits0References7
0day.today
0day.today
added 2010/11/02 12:0 a.m.19 views

Sybase Advantage Data Architect "*.SQL" Format Heap Oveflow

Exploit for windows platform in category dos / poc =========================================================== Sybase Advantage Data Architect ".SQL" Format Heap Oveflow =========================================================== Exploit Title: Sybase Advantage Data Architect ".SQL" Format Heap...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2010/11/02 12:0 a.m.38 views

Sybase Advantage Data Architect Heap Overflow

Exploit Title: Sybase Advantage Data Architect ".SQL" Format Heap Oveflow RCE Date: 2010-10-16 Author: d0lc3 @rmallof - http://elotrolad0.blogspot.com/ Software Link: http://www.sybase.com/products/databasemanagement/advantagedatabaseserver/data-architect-utility Version: 10.0 Tested on: Windows ...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2010/11/01 12:0 a.m.13 views

Sybase Advantage Data Architect - .SQL Format Heap Overflow

Sybase Advantage Data Architect - .SQL Format Heap Overflow Exploit Title: Sybase Advantage Data Architect ".SQL" Format Heap Oveflow RCE Date: 2010-10-16 Author: d0lc3 @rmallof - http://elotrolad0.blogspot.com/ Software Link:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2010/11/01 12:0 a.m.22 views

Sybase Advantage Data Architect - '.SQL' Format Heap Overflow

Exploit Title: Sybase Advantage Data Architect ".SQL" Format Heap Oveflow RCE Date: 2010-10-16 Author: d0lc3 @rmallof - http://elotrolad0.blogspot.com/ Software Link: http://www.sybase.com/products/databasemanagement/advantagedatabaseserver/data-architect-utility Version: 10.0 Tested on: Windows ...

7.4AI score
Exploits0
0day.today
0day.today
added 2010/09/27 12:0 a.m.26 views

windows Mobile 6.5 TR Phone Call Shellcode

Exploit for win32 platform in category shellcode ========================================== windows Mobile 6.5 TR Phone Call Shellcode ========================================== / Device: HTC Touch2 System: Windows Mobile 6.5 TR WinCE 5.0.2 Coded by Celil ‹n¸ver from SecurityArchitect Contact:...

7AI score
Exploits0
NVD
NVD
added 2009/11/23 5:30 p.m.21 views

CVE-2009-4052

Multiple cross-site scripting XSS vulnerabilities in the JSF Widget Library Runtime in IBM Rational Application Developer for WebSphere Software before 7.0.0.10 and Rational Software Architect before 7.0.0.10 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 th...

4.3CVSS5.6AI score0.01982EPSS
Exploits0References8
Prion
Prion
added 2009/11/23 5:30 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the JSF Widget Library Runtime in IBM Rational Application Developer for WebSphere Software before 7.0.0.10 and Rational Software Architect before 7.0.0.10 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 th...

4.3CVSS5.9AI score0.01982EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2009/11/23 5:0 p.m.27 views

CVE-2009-4052

Multiple cross-site scripting XSS vulnerabilities in the JSF Widget Library Runtime in IBM Rational Application Developer for WebSphere Software before 7.0.0.10 and Rational Software Architect before 7.0.0.10 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 th...

5.6AI score0.01982EPSS
Exploits0References8
CVE
CVE
added 2009/11/23 5:0 p.m.49 views

CVE-2009-4052

IBM Rational Application Developer for WebSphere Software before 7.0.0.10 and Rational Software Architect before 7.0.0.10 contain multiple XSS vulnerabilities in the JSF Widget Library Runtime. The issues allow remote attackers to inject arbitrary web script or HTML via vectors involving the JSF ...

4.3CVSS5.6AI score0.01982EPSS
Exploits0References8Affected Software2
Prion
Prion
added 2007/11/30 1:46 a.m.13 views

Directory traversal

Multiple directory traversal vulnerabilities in PHP Content Architect aka NoAh 0.9 pre 1.2 and earlier allow remote attackers to read arbitrary files via a .. dot dot in the filepath parameter to 1 cssfile.php, 2 jsfile.php, or 3 xmlfile.php in noah/modules/nosystem/templates/...

5CVSS7.5AI score0.03485EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2007/11/30 1:46 a.m.21 views

CVE-2007-6187

Multiple directory traversal vulnerabilities in PHP Content Architect aka NoAh 0.9 pre 1.2 and earlier allow remote attackers to read arbitrary files via a .. dot dot in the filepath parameter to 1 cssfile.php, 2 jsfile.php, or 3 xmlfile.php in noah/modules/nosystem/templates/...

5CVSS7AI score0.03485EPSS
Exploits0References6
Cvelist
Cvelist
added 2007/11/30 1:0 a.m.27 views

CVE-2007-6187

Multiple directory traversal vulnerabilities in PHP Content Architect aka NoAh 0.9 pre 1.2 and earlier allow remote attackers to read arbitrary files via a .. dot dot in the filepath parameter to 1 cssfile.php, 2 jsfile.php, or 3 xmlfile.php in noah/modules/nosystem/templates/...

7AI score0.03485EPSS
Exploits0References6
CVE
CVE
added 2007/11/30 1:0 a.m.46 views

CVE-2007-6187

CVE-2007-6187 describes multiple directory traversal vulnerabilities in PHP Content Architect (aka NoAh) versions 0.9 pre 1.2 and earlier. The issue allows remote attackers to read arbitrary files by inserting ".." in the filepath parameter to css_file.php, js_file.php, or xml_file.php within noa...

5CVSS7AI score0.03485EPSS
Exploits0References6Affected Software1
seebug.org
seebug.org
added 2007/05/08 12:0 a.m.16 views

NoAh <= 0.9 pre 1.2 (mfa_theme.php) Remote File Inclusion Vulnerability

No description provided by source. NoAh 0.9 The PHP Content Architect = Remote File Inclusion Vulnerability Dork:: Vuln Code ERROR:noah/modules/noevents/templates/mfatheme.php ?php include$tpls1; ? BUG: Example:http://site.com/path/noah/modules/noevents/templates/mfatheme.php?tpls1=Sh3LL Script...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2007/05/08 12:0 a.m.22 views

noah-rfi.txt

NoAh 0.9 The PHP Content Architect BUG: Example:http://site.com/path/noah/modules/noevents/templates/mfatheme.php?tpls1=Sh3LL Script Script Download http://sourceforge.net/project/showfiles.php?groupid=131995&packageid=148681&releaseid=318628 [email protected] Special Thanks: x0r0n ajan...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/05/07 12:0 a.m.16 views

PHP Content Architect 0.9 pre 1.2 - MFA_Theme.php Remote File Inclusion

PHP Content Architect 0.9 pre 1.2 - MFATheme.php Remote File Inclusion source: https://www.securityfocus.com/bid/23843/info PHP Content Architect is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attack...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2007/05/07 12:0 a.m.30 views

PHP Content Architect 0.9 pre 1.2 - 'MFA_Theme.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/23843/info PHP Content Architect is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attac...

7.4AI score
Exploits0
Rows per page
Query Builder