Lucene search
K

2056 matches found

CVE
CVE
added 2008/07/11 6:0 p.m.42 views

CVE-2008-3150

CVE-2008-3150 describes a directory traversal vulnerability in Neutrino Atomic Edition 0.8.4, where index.php can be abused to read and modify files (notably via data/sess.php with actions usb and del_pag). The underlying issue allows an attacker to access restricted files and, per the sources, c...

10CVSS7.2AI score0.06272EPSS
Exploits0References4Affected Software1
Packet Storm
Packet Storm
added 2008/07/10 12:0 a.m.28 views

neutrino-exec.txt

!/usr/bin/perl Neutrino 0.8.4 Atomic Edition Perl exploit discovered & written by Ams [email protected] DESCRIPTION: First exploit destroys "/data/sess.php" file simply strips tags, then we are able to bypass authorization and using admin privelegies our exploit uploads basic shell to...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/07 12:0 a.m.37 views

QNX Neutrino 0.8.4 Atomic Edition - Remote Code Execution

!/usr/bin/perl Neutrino 0.8.4 Atomic Edition Perl exploit discovered & written by Ams [email protected] DESCRIPTION: First exploit destroys "/data/sess.php" file simply strips tags, then we are able to bypass authorization and using admin privelegies our exploit uploads basic shell to...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2007/12/19 6:17 p.m.6 views

open(O_ATOMICLOOKUP) leaks dentry

Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux RHEL 4 and 5 allows local users to cause a denial of service memory consumption via a large number of open requests involving OATOMICLOOKUP...

4.9CVSS5.8AI score0.00391EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/11/29 2:46 p.m.8 views

open(O_ATOMICLOOKUP) leaks dentry

Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux RHEL 4 and 5 allows local users to cause a denial of service memory consumption via a large number of open requests involving OATOMICLOOKUP...

4.9CVSS5.8AI score0.00391EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2005/09/13 12:0 a.m.42 views

PHPNuke78.txt

NewAngels Advisory 7PHP Nuke sqlquery"SELECT active, view FROM ".$prefix."modules WHERE title='$name'"; The $name variable is not checked so you could inject malicious SQL Code. In an file which is included whe have the following code: $queryString = strtolower$SERVER'QUERYSTRING'; if...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/09/13 12:0 a.m.26 views

PHP Nuke <= 7.8 Multiple SQL Injections

NewAngels Advisory 7PHP Nuke = 7.8 Multiple SQL Injections ============================================================================= Software: PHP Nuke 7.8 Type: SQL Injections Risk: High Date: Sep. 10 2005 Vendor: PHP-Nuke phpnuke.org Credit: ======= Robin 'onkelfisch' Verton from...

0.2AI score
Exploits0
Cvelist
Cvelist
added 2005/08/03 4:0 a.m.16 views

CVE-2005-2413

PHP remote file inclusion vulnerability in apaphpinclude.inc.php in Atomic Photo Album APA allows remote attackers to execute arbitrary PHP code via the apamodulebasedir parameter...

7.6AI score0.01599EPSS
Exploits0References6
NVD
NVD
added 2005/08/03 4:0 a.m.11 views

CVE-2005-2413

PHP remote file inclusion vulnerability in apaphpinclude.inc.php in Atomic Photo Album APA allows remote attackers to execute arbitrary PHP code via the apamodulebasedir parameter...

5CVSS7.6AI score0.01599EPSS
Exploits0References6
CVE
CVE
added 2005/08/03 4:0 a.m.89 views

CVE-2005-2413

The CVE-2005-2413 entry maps to a concrete vulnerability in Atomic Photo Album (APA). The flaw is a PHP remote file inclusion in apa_phpinclude.inc.php triggered via the apa_module_basedir parameter, allowing an attacker to execute arbitrary PHP code and potentially view arbitrary files on the re...

5CVSS7.6AI score0.01599EPSS
Exploits0References6Affected Software1
Packet Storm
Packet Storm
added 2005/07/28 12:0 a.m.34 views

apa-include.txt

Atomic Photo Album APA apaphpinclude.inc.php remote file include : ------------------------------------------------------------ Name: Atomic Photo Album APA Version: all Homepage: http://atomicpa.sourceforge.net/ Author: pclabs / lwdz - RandomHero Date: 20 July 2005...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/07/25 12:0 a.m.47 views

Atomic Photo Album (APA) apa_phpinclude.inc.php remote file include

Atomic Photo Album APA apaphpinclude.inc.php remote file include : ------------------------------------------------------------ Name: Atomic Photo Album APA Version: all Homepage: http://atomicpa.sourceforge.net/ Author: pclabs / lwdz - RandomHero Date: 20 July 2005...

0.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/07/25 12:0 a.m.69 views

Atomic Photo Album apa_phpinclude.inc.php apa_module_basedir Parameter Remote File Inclusion

Binary data 3111.prm...

5CVSS7.3AI score0.01599EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/07/25 12:0 a.m.156 views

Atomic Photo Album apa_phpinclude.inc.php apa_module_basedir Parameter Remote File Inclusion

The remote host is running Atomic Photo Album, a free, PHP-based photo gallery. The installed version of Atomic Photo Album allows remote attackers to control the 'apamodulebasedir' variable used when including PHP code in the 'apaphpinclude.inc.php' script. By leveraging this flaw, an attacker m...

5CVSS5.9AI score0.01599EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2005/07/25 12:0 a.m.23 views

Atomic Photo Album 0.x/1.0 - 'Apa_PHPInclude.INC.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/14368/info Atomic Photo Album is susceptible to a remote PHP file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may exploit this issue to execute arbitrary PHP code on an...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2004/12/20 6:14 p.m.26 views

Low: Red Hat Security Advisory: glibc security update

Updated glibc packages that address several bugs and implement some enhancements are now available. The GNU libc packages known as glibc contain the standard C libraries used by applications. This errata fixes several bugs in the GNU C Library. Fixes include in addition to enclosed Bugzilla...

2.1CVSS5.9AI score0.00394EPSS
Exploits0References9
Rows per page
Query Builder