Lucene search
K

21 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.45 views

Achievo <= 1.3.4 - SQL Injection

No description provided by source. Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ SQL Injection in Achievo 1. Advisory Information Title: SQL Injection in Achievo Advisory ID: BONSAI-2009-0102 Advisory URL:...

7.5CVSS6.5AI score0.01256EPSS
Exploits7
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

Apache OFBiz - SQL Remote Execution PoC Payload

No description provided by source. / Apache OFBiz SQL Remote Execution PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var cmd = 'command'; var xmlhttp=false; try xmlhttp = new ActiveXObjectMsxml2.XMLHTTP; catch e...

4.3CVSS6.4AI score0.22941EPSS
Exploits15
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.31 views

Apache OFBiz - FULLADMIN Creator PoC Payload

No description provided by source. / Apache OFBiz FULLADMIN Creator PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var username = 'bonsaiUser'; var password = 'bonsaiPass'; var nodes =...

4.3CVSS6.4AI score0.22941EPSS
Exploits15
Packet Storm
Packet Storm
added 2010/06/30 12:0 a.m.46 views

TornadoStore 1.4.3 SQL Injection

Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ Multiple SQL Injection in TornadoStore 1.4.3 1. Advisory Information Title: Multiple SQL Injection in TornadoStore 1.4.3 Advisory ID: BONSAI-2010-0106 Advisory URL:...

7.5CVSS6.7AI score0.00961EPSS
Exploits3
exploitpack
exploitpack
added 2010/04/22 12:0 a.m.9 views

Cacti 0.8.7e - SQL Injection

Cacti 0.8.7e - SQL Injection CVSSv2 Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C A Vulnerability has been discovered in Cacti, which can be exploited by any user to conduct SQL Injection attacks. Input passed via the “exportitemid” parameter to “templatesexport.php” script is not properly sanitized before...

8.6AI score
Exploits0
Exploit DB
Exploit DB
added 2010/04/22 12:0 a.m.44 views

Cacti 0.8.7e - SQL Injection

CVSSv2 Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C A Vulnerability has been discovered in Cacti, which can be exploited by any user to conduct SQL Injection attacks. Input passed via the “exportitemid” parameter to “templatesexport.php” script is not properly sanitized before being used in a SQL query...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/04/22 12:0 a.m.40 views

Cacti 0.8.7e - OS Command Injection

CVSSv2 Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C Cacti is prone to a remote command execution vulnerability because the software fails to adequately sanitize user-suplied input. Successful attacks can compromise the affected software and possibly the operating system running Cacti. The vulnerability ca...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/04/21 12:0 a.m.49 views

Apache OFBiz - Multiple Cross-Site Scripting Vulnerabilities

Apache OFBiz - Multiple Cross-Site Scripting Vulnerabilities Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ Multiple XSS in Apache OFBiz 1. Advisory Information Title: Multiple XSS in Apache OFBiz Advisory ID: BONSAI-2010-0103 Advisory URL:...

4.3CVSS0.22941EPSS
Exploits15
Exploit DB
Exploit DB
added 2010/04/21 12:0 a.m.54 views

Apache OFBiz - Multiple Cross-Site Scripting Vulnerabilities

Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ Multiple XSS in Apache OFBiz 1. Advisory Information Title: Multiple XSS in Apache OFBiz Advisory ID: BONSAI-2010-0103 Advisory URL: http://www.bonsai-sec.com/research/vulnerabilities/apacheofbiz-multiple-xss-0103.php Date...

4.3CVSS6.4AI score0.22941EPSS
Exploits15
exploitpack
exploitpack
added 2010/04/16 12:0 a.m.79 views

Apache OFBiz - Remote Execution (via SQL Execution)

Apache OFBiz - Remote Execution via SQL Execution / Apache OFBiz SQL Remote Execution PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var cmd = 'command'; var xmlhttp=false; try xmlhttp = new...

4.3CVSS1.2AI score0.22941EPSS
Exploits15
0day.today
0day.today
added 2010/04/16 12:0 a.m.46 views

Apache OFBiz FULLADMIN Creator PoC Payload

Exploit for multiple platform in category remote exploits ========================================== Apache OFBiz FULLADMIN Creator PoC Payload ========================================== / Apache OFBiz FULLADMIN Creator PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com...

7.1AI score0.22941EPSS
Exploits15
0day.today
0day.today
added 2010/04/16 12:0 a.m.60 views

Apache OFBiz SQL Remote Execution PoC Payload

Exploit for multiple platform in category remote exploits ============================================= Apache OFBiz SQL Remote Execution PoC Payload ============================================= / Apache OFBiz SQL Remote Execution PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at-...

7.1AI score0.22941EPSS
Exploits15
Exploit DB
Exploit DB
added 2010/04/16 12:0 a.m.88 views

Apache OFBiz - Remote Execution (via SQL Execution)

/ Apache OFBiz SQL Remote Execution PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var cmd = 'command'; var xmlhttp=false; try xmlhttp = new ActiveXObject"Msxml2.XMLHTTP"; catch e try xmlhttp = new...

4.3CVSS6.4AI score0.22941EPSS
Exploits15
Exploit DB
Exploit DB
added 2010/04/16 12:0 a.m.41 views

Apache OFBiz - Admin Creator

/ Apache OFBiz FULLADMIN Creator PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var username = 'bonsaiUser'; var password = 'bonsaiPass'; var nodes = document.getElementsByClassName'fieldWidth300'; for var i=0;...

4.3CVSS6.4AI score0.22941EPSS
Exploits15
exploitpack
exploitpack
added 2010/04/16 12:0 a.m.36 views

Apache OFBiz - Admin Creator

Apache OFBiz - Admin Creator / Apache OFBiz FULLADMIN Creator PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var username = 'bonsaiUser'; var password = 'bonsaiPass'; var nodes =...

4.3CVSS0.1AI score0.22941EPSS
Exploits15
exploitpack
exploitpack
added 2009/10/14 12:0 a.m.57 views

Achievo 1.3.4 - Cross-Site Scripting

Achievo 1.3.4 - Cross-Site Scripting Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ Multiple XSS in Achievo 1. Advisory Information Title: Multiple XSS in Achievo Advisory ID: BONSAI-2009-0101 Advisory URL:...

4.3CVSS6.1AI score0.02263EPSS
Exploits7
seebug.org
seebug.org
added 2009/10/14 12:0 a.m.41 views

Achievo &lt;= 1.3.4 SQL Injection

No description provided by source. Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ SQL Injection in Achievo 1. Advisory Information Title: SQL Injection in Achievo Advisory ID: BONSAI-2009-0102 Advisory URL:...

7.5CVSS6.5AI score0.01256EPSS
Exploits7
Packet Storm
Packet Storm
added 2009/10/14 12:0 a.m.51 views

Achievo SQL Injection

Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ SQL Injection in Achievo 1. Advisory Information Title: SQL Injection in Achievo Advisory ID: BONSAI-2009-0102 Advisory URL: http://www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt Date published:...

7.5CVSS0.6AI score0.01256EPSS
Exploits7
seebug.org
seebug.org
added 2009/10/14 12:0 a.m.40 views

Achievo &lt;= 1.3.4 xss

No description provided by source. Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ Multiple XSS in Achievo 1. Advisory Information Title: Multiple XSS in Achievo Advisory ID: BONSAI-2009-0101 Advisory URL:...

4.3CVSS6.5AI score0.02263EPSS
Exploits7
Exploit DB
Exploit DB
added 2009/10/14 12:0 a.m.41 views

Achievo 1.3.4 - SQL Injection

Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ SQL Injection in Achievo 1. Advisory Information Title: SQL Injection in Achievo Advisory ID: BONSAI-2009-0102 Advisory URL: http://www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt Date published:...

7.5CVSS6.5AI score0.01256EPSS
Exploits7
Rows per page
Query Builder