Lucene search
+L

619 matches found

Exploit DB
Exploit DB
added 2009/12/22 12:0 a.m.46 views

Aurora CMS - SQL Injection

Exploit Title: Aurora CMS Remote SQL Injection Exploit content.php Date: December 22nd, 2009 Author: Sora Software Link: http://www.auroracms.com.au/ Version: 1.0, 2.0, and 3.0 Tested on: Windows and Linux ------------------------------------------------ Aurora CMS Remote SQL Injection Exploit...

7.4AI score
Exploits0
NVD
NVD
added 2009/09/24 4:30 p.m.18 views

CVE-2009-3365

PHP remote file inclusion vulnerability in add-ons/modules/sysmanager/plugins/install.plugin.php in Aurora CMS 1.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the AURORAMODULESFOLDER parameter...

7.5CVSS7.5AI score0.02086EPSS
Exploits0References1
Prion
Prion
added 2009/09/24 4:30 p.m.13 views

Remote file inclusion

PHP remote file inclusion vulnerability in add-ons/modules/sysmanager/plugins/install.plugin.php in Aurora CMS 1.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the AURORAMODULESFOLDER parameter...

7.5CVSS8AI score0.02086EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2009/09/24 4:0 p.m.25 views

CVE-2009-3365

PHP remote file inclusion vulnerability in add-ons/modules/sysmanager/plugins/install.plugin.php in Aurora CMS 1.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the AURORAMODULESFOLDER parameter...

7.5AI score0.02086EPSS
Exploits0References1
CVE
CVE
added 2009/09/24 4:0 p.m.53 views

CVE-2009-3365

CVE-2009-3365 affects Aurora CMS 1.0.2 and is triggered through a PHP remote file inclusion in the install.plugin.php of the sysmanager addon, via the AURORA_MODULES_FOLDER parameter. The underlying issue is a vulnerable inclusion mechanism that allows an attacker to execute arbitrary PHP code by...

7.5CVSS7.6AI score0.02086EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2009/09/15 12:0 a.m.34 views

Aurora CMS 1.0.2 Remote File Inclusion

--------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/09/14 12:0 a.m.20 views

Aurora CMS 1.0.2 - install.plugin.php Remote File Inclusion

Aurora CMS 1.0.2 - install.plugin.php Remote File Inclusion --------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...

Exploits0
0day.today
0day.today
added 2009/09/14 12:0 a.m.32 views

Aurora CMS 1.0.2 (install.plugin.php) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ========================================================================= Aurora CMS 1.0.2 install.plugin.php Remote File Inclusion Vulnerability =========================================================================...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/09/14 12:0 a.m.33 views

Aurora CMS 1.0.2 (install.plugin.php) Remote File Inclusion Vulnerability

No description provided by source. --------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/09/14 12:0 a.m.47 views

Aurora CMS 1.0.2 - 'install.plugin.php' Remote File Inclusion

--------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/03/28 12:0 a.m.35 views

Aurora Nutritive Analysis Module Multiple XSS

Aurora Nutritive Analysis Module Multiple XSS - Description "Aurora's FoodPro is a total food production, planning and control system that provides start-to-finish control from raw food through production, service, and analysis. It provides historical, as well as current and projected data, in...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2009/03/27 12:0 a.m.32 views

Aurora Nutritive Analysis XSS

Aurora Nutritive Analysis Module Multiple XSS - Description "Aurora's FoodPro is a total food production, planning and control system that provides start-to-finish control from raw food through production, service, and analysis. It provides historical, as well as current and projected data, in...

0.5AI score
Exploits0
Prion
Prion
added 2007/12/13 10:46 p.m.16 views

Sql injection

SQL injection vulnerability in aurora framework before 20071208 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the value parameter to the packvar function in module/db.lib/dbmysql.lib. NOTE: some of these details are obtained from third party informati...

7.5CVSS9.1AI score0.01692EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2007/12/13 10:46 p.m.12 views

CVE-2007-6345

SQL injection vulnerability in aurora framework before 20071208 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the value parameter to the packvar function in module/db.lib/dbmysql.lib. NOTE: some of these details are obtained from third party informati...

7.5CVSS8.5AI score0.01692EPSS
Exploits0References5
Cvelist
Cvelist
added 2007/12/13 10:0 p.m.19 views

CVE-2007-6345

SQL injection vulnerability in aurora framework before 20071208 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the value parameter to the packvar function in module/db.lib/dbmysql.lib. NOTE: some of these details are obtained from third party informati...

8.5AI score0.01692EPSS
Exploits0References5
CVE
CVE
added 2007/12/13 10:0 p.m.62 views

CVE-2007-6345

CVE-2007-6345: A SQL injection vulnerability in the aurora framework (before 20071208) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, potentially through the value parameter to pack_var in module/db.lib/db_mysql.lib. The issue is rooted in improper input handli...

7.5CVSS8.5AI score0.01692EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2007/01/24 9:28 p.m.15 views

Stack overflow

Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control NCTAudioFile2.dll, as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include 1 NCTsoft NCTAudioStudio, NCTAudioEdito...

9.3CVSS8.4AI score0.35162EPSS
Exploits4References88Affected Software79
Cvelist
Cvelist
added 2007/01/24 9:0 p.m.45 views

CVE-2007-0018

Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control NCTAudioFile2.dll, as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include 1 NCTsoft NCTAudioStudio, NCTAudioEdito...

7.8AI score0.35162EPSS
Exploits4References88
CVE
CVE
added 2007/01/24 9:0 p.m.116 views

CVE-2007-0018

CVE-2007-0018 describes a stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll) that allows remote code execution via a long argument to the SetFormatLikeSample function. Affected products include numerous NCTAudioFile2-based apps (AudioStudio/Editor/Voice...

9.3CVSS7.7AI score0.35162EPSS
Exploits4References88Affected Software81
Rows per page
Query Builder