Lucene search
K

1682 matches found

Exploit DB
Exploit DB
โ€ขadded 2003/09/02 12:0 a.m.โ€ข25 views

FloosieTek FTGatePro 1.22 - Mail Server Cross-Site Scripting

source: https://www.securityfocus.com/bid/8528/info FloosieTek FTGatePro Mail Server is prone to a cross-site scripting vulnerability. A remote attacker could exploit this issue by enticing a legitimate user of the mail server to follow a malicious link with embedded HTML and script code. The...

7.4AI score
Exploits0
Exploit DB
Exploit DB
โ€ขadded 2003/08/11 12:0 a.m.โ€ข23 views

PHPOutsourcing Zorum 3.4 - Full Path Disclosure

source: https://www.securityfocus.com/bid/8396/info A vulnerability has been reported in Zorum message board software that allows a remote attacker to send a malformed HTTP request resulting in a disclosure of the installation path. This issue may allow an attacker to gain knowledge of the file...

7.4AI score
Exploits0
OSV
OSV
โ€ขadded 2003/07/29 12:0 a.m.โ€ข15 views

DSA-353 sup - insecure temporary file

Bulletin has no description...

4.6CVSS6.2AI score0.00321EPSS
Exploits0
Exploit DB
Exploit DB
โ€ขadded 2003/07/28 12:0 a.m.โ€ข24 views

Mini SQL 1.0/1.3 - Remote Format String

// source: https://www.securityfocus.com/bid/8295/info Mini SQL mSQL has been reported prone to a remotely exploitable format string vulnerability, when handling user-supplied data. Reportedly a remote attacker may send malicious format specifiers to trigger the issue. This vulnerability could...

7.4AI score
Exploits0
exploitpack
exploitpack
โ€ขadded 2003/07/23 12:0 a.m.โ€ข18 views

Novell Netware Enterprise Web Server 5.16.0 - CGI2Perl.NLM Buffer Overflow (PoC)

Novell Netware Enterprise Web Server 5.16.0 - CGI2Perl.NLM Buffer Overflow PoC source: https://www.securityfocus.com/bid/8251/info Novell Netware Enterprise Web Server cgi2perl.nlm has been reported prone to a buffer overflow vulnerability. The issue presents itself, likely due to insufficient...

0.7AI score
Exploits0
Exploit DB
Exploit DB
โ€ขadded 2003/07/23 12:0 a.m.โ€ข24 views

Novell Netware Enterprise Web Server 5.1/6.0 - 'CGI2Perl.NLM' Buffer Overflow (PoC)

source: https://www.securityfocus.com/bid/8251/info Novell Netware Enterprise Web Server cgi2perl.nlm has been reported prone to a buffer overflow vulnerability. The issue presents itself, likely due to insufficient bounds checking performed on user-supplied data. It has been reported that a remo...

7.4AI score
Exploits0
Exploit DB
Exploit DB
โ€ขadded 2003/07/09 12:0 a.m.โ€ข28 views

ChangshinSoft EZTrans Server - 'download.php' Directory Traversal

source: https://www.securityfocus.com/bid/8155/info It has been reported that a problem in ChangshinSoft ezTrans Server exists in the download.php script that may allow an attacker to view arbitrary files. This may result in the disclosure of potentially sensitive information...

7.4AI score
Exploits0
exploitpack
exploitpack
โ€ขadded 2003/07/07 12:0 a.m.โ€ข15 views

IPNetSentryX IPNetMonitorX - Unauthorized Network Reconnaissance

IPNetSentryX IPNetMonitorX - Unauthorized Network Reconnaissance source: https://www.securityfocus.com/bid/8365/info It has been reported that helper applications that are shipped with IPNetSentryX and IPNetMonitorX may be harnessed by a local attacker to provide for unauthorized network...

0.2AI score
Exploits0
Debian CVE
Debian CVE
โ€ขadded 2003/06/10 4:0 a.m.โ€ข32 views

CVE-2003-0386

OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address...

7.5CVSS6.4AI score0.05766EPSS
Exploits1
exploitpack
exploitpack
โ€ขadded 2003/06/02 12:0 a.m.โ€ข14 views

SPChat 0.8 Module - Remote File Inclusion

SPChat 0.8 Module - Remote File Inclusion source: https://www.securityfocus.com/bid/7780/info SPChat has been reported prone to a remote file include vulnerability. The issue presents itself due to insufficient sanitization performed on the user-supplied URI variable 'statussess' by the SPChat...

7.5AI score
Exploits0
exploitpack
exploitpack
โ€ขadded 2003/05/20 12:0 a.m.โ€ข17 views

Maelstrom Server 3.0.x - Argument Buffer Overflow (1)

Maelstrom Server 3.0.x - Argument Buffer Overflow 1 source: https://www.securityfocus.com/bid/7630/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is...

0.8AI score
Exploits0
Cvelist
Cvelist
โ€ขadded 2003/05/07 4:0 a.m.โ€ข23 views

CVE-2003-0237

The "ICQ Features on Demand" functionality for Mirabilis ICQ Pro 2003a does not properly verify the authenticity of software upgrades, which allows remote attackers to install arbitrary software via a spoofing attack...

5.6AI score0.01588EPSS
Exploits0References5
exploitpack
exploitpack
โ€ขadded 2003/05/05 12:0 a.m.โ€ข12 views

FlashFXP 1.4 - User Password Encryption

FlashFXP 1.4 - User Password Encryption // source: https://www.securityfocus.com/bid/7499/info FlashFXP uses a trivially reversible algorithm to encrypt FTP user credentials. Local attackers with access to the sites.data may exploit this weakness to gain unauthorized access to FTP user credential...

0.7AI score
Exploits0
Exploit DB
Exploit DB
โ€ขadded 2003/04/25 12:0 a.m.โ€ข33 views

Alt-N WebAdmin 2.0.x - Remote File Disclosure

source: https://www.securityfocus.com/bid/7439/info Reportedly, remote users can discover the installation directory of certain software on the underlying system by submitting an HTTP request to the WebAdmin server. This could allow an attacker to obtain sensitive information...

7.4AI score
Exploits0
securityvulns
securityvulns
โ€ขadded 2003/04/23 12:0 a.m.โ€ข23 views

XMB 1.8 Partagium SQL Injection Bug

Binary Bugs Advisory BB-2003-1 XMB SQL injection - Product: XMB 1.8 Partagium Final Vendor: http://www.xmbforum.com Versions affected: 1.8, possibly others Impact: SQL injection vulnerability Risk: Medium/High Vendor status: Notified/New version available Release date: April 22, 2003 I. Overview...

0.5AI score
Exploits0
exploitpack
exploitpack
โ€ขadded 2003/04/21 12:0 a.m.โ€ข12 views

MPCSoftWeb 1.0 - Database Disclosure

MPCSoftWeb 1.0 - Database Disclosure source: https://www.securityfocus.com/bid/7390/info MPCSoftWeb does not sufficiently secure the database file. It is possible for remote attackers to request the database file and gain access to sensitive information such as administrative credentials for the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
โ€ขadded 2003/04/11 12:0 a.m.โ€ข25 views

Ocean12 ASP Guestbook Manager 1.0 - Information Disclosure

source: https://www.securityfocus.com/bid/7328/info Ocean12 Guestbook Manager has been reported prone to sensitive information disclosure vulnerability. An attacker may make a request for and download the underlying Access database file that is used by the Guestbook Manager. Guestbook...

7.4AI score
Exploits0
Exploit DB
Exploit DB
โ€ขadded 2003/04/09 12:0 a.m.โ€ข23 views

PHPay 2.2 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/7310/info It has been reported that user-supplied input to phPay is not sufficiently sanitized. This lack of sanitization provides an opportunity for an attacker to launch cross-site scripting attacks. It is possible for a remote attacker to create a...

7.4AI score
Exploits0
Cvelist
Cvelist
โ€ขadded 2003/04/02 5:0 a.m.โ€ข25 views

CVE-2001-0724

Internet Explorer 5.5 allows remote attackers to bypass security restrictions via malformed URLs that contain dotless IP addresses, which causes Internet Explorer to process the page in the Intranet Zone, which may have fewer security restrictions, aka the "Zone Spoofing Vulnerability variant" of...

6.6AI score0.12316EPSS
Exploits0References3
exploitpack
exploitpack
โ€ขadded 2003/03/25 12:0 a.m.โ€ข12 views

PHP-Nuke 6.06.5 Forum Module - viewforum.php SQL Injection

PHP-Nuke 6.06.5 Forum Module - viewforum.php SQL Injection source: https://www.securityfocus.com/bid/7194/info It has been reported that an input validation error exists in the 'viewforum.php' script included with PHPNuke as part of the Forum module. Because of this, an attacker could send a...

0.3AI score
Exploits0
Rows per page
Query Builder