Lucene search
K

103 matches found

securityvulns
securityvulns
added 2002/02/07 12:0 a.m.43 views

Очередные дырки в CGI

No description provided...

0.9AI score
Exploits0References5Affected Software2
securityvulns
securityvulns
added 2002/01/03 12:0 a.m.40 views

Очередные дырки в CGI

No description provided...

0.9AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2001/07/18 12:0 a.m.68 views

Очередные дырки в CGI

Возможность получть любой файл через обратный путь в директориях...

0.4AI score
Exploits0References3Affected Software2
Tenable Nessus
Tenable Nessus
added 2001/06/20 12:0 a.m.96 views

Tarantella Enterprise ttawebtop.cgi pg Parameter Traversal Arbitrary File Access

The 'ttawebtop.cgi' CGI is installed. The installed version is affected by multiple flaws : - It is possible to read arbitrary files from the remote system by including directory traversal strings in the request. - It may be possible for an attacker to execute arbitrary commands with the privileg...

5CVSS6.2AI score0.07938EPSS
Exploits1References1
securityvulns
securityvulns
added 2001/06/19 12:0 a.m.46 views

Очередные дырки в CGI

Обратный путь в директориях...

0.4AI score
Exploits0References2Affected Software2
securityvulns
securityvulns
added 2001/05/10 12:0 a.m.44 views

Очередные дырки в CGI

No description provided...

0.9AI score
Exploits0References4Affected Software3
securityvulns
securityvulns
added 2001/04/28 12:0 a.m.49 views

Очередные дырки в CGI

Обратный путь в директориях, открытые на чтение пароли...

0.4AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2001/04/11 12:0 a.m.57 views

Очередные дырки в CGI

Недостаточная проверка ввода пользователя при вызове внешней программы...

0.4AI score
Exploits0References1
securityvulns
securityvulns
added 2001/03/12 12:0 a.m.41 views

Дырки в CGI Iconboard

Обратный путь в директориях в сочетании с ошибкой NULL-byte позволяет получить содержимое любого файла...

0.4AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2001/01/13 12:0 a.m.23 views

Очередные дырки в CGI

Некорректные файловые разрешения...

0.4AI score
Exploits0References2Affected Software2
securityvulns
securityvulns
added 2000/12/22 12:0 a.m.23 views

Очередные дырки в CGI

No description provided...

0.9AI score
Exploits0References1
securityvulns
securityvulns
added 2000/12/13 12:0 a.m.25 views

Очередные дырки в CGI

Недостаточная проверка ввода пользователя приводит к различным неприятным последствиям...

0.4AI score
Exploits0References3
Exploit DB
Exploit DB
added 2000/11/15 12:0 a.m.144 views

Poll It CGI 2.0 - Multiple Vulnerabilities

!/usr/bin/perl Poll It CGI v2.0 exploit keelis/havoc korp 2000 shouts to modjo, p, zen, kd, ab, all the script kiddies. keelisathushmaildotcom use Socket; $host, $cgiloc = @ARGV0,1; $ip=inetaton$host; print"\n\t+--- Poll It CGI v2.0 exploit ---+"; print"\n\t+--- keelis/havoc korp 2000 ---+\n\n\n"...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2000/10/10 12:0 a.m.86 views

eXtropia Web Store web_store.cgi Traversal Arbitrary File Access

The remote web server is hosting eXtropia WebStore, a shopping cart application. The installed version allows an attacker to read arbitrary files via a .. dot dot attack on the page parameter. %NASLMINLEVEL 70300 This script was written by Thomas Reinke See the Nessus Scripts License for details...

5CVSS5.5AI score0.03667EPSS
Exploits1References2
securityvulns
securityvulns
added 2000/09/12 12:0 a.m.75 views

Unsafe passing of variables to mailform.pl in MailForm V2.0

Title: Unsafe passing of variables to mailform.pl in MailForm V2.0 For Unix or NT Advisory Author: Karl Hanmore [email protected] Script URL: http://rlaj.com/scripts/mailform Script Author: Ranson Johnson Advisory Released: 11 September 2000 Vendor notified: [email protected] 05 Sept...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 1999/11/10 12:0 a.m.134 views

F5 BIG/ip bigconf.cgi file Parameter Arbitrary File Access

The 'bigconf' CGI is installed. This CGI has a well-known security flaw that allows an attacker to execute arbitrary commands with the privileges of the web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription...

5CVSS5.9AI score0.08593EPSS
Exploits0References2
exploitpack
exploitpack
added 1999/11/03 12:0 a.m.11 views

Computer Software Manufaktur Alibaba 2.0 - Multiple CGI Vulnerabilities

Computer Software Manufaktur Alibaba 2.0 - Multiple CGI Vulnerabilities // source: https://www.securityfocus.com/bid/770/info There are several CGI programs that ship with the Alibaba webserver. Many of these do not do proper input handling, and therefore will allow requests for access to files...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 1999/11/03 12:0 a.m.43 views

Computer Software Manufaktur Alibaba 2.0 - Multiple CGI Vulnerabilities

// source: https://www.securityfocus.com/bid/770/info There are several CGI programs that ship with the Alibaba webserver. Many of these do not do proper input handling, and therefore will allow requests for access to files outside of normal or safe webserver practice. This results in various...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 1999/11/02 12:0 a.m.38 views

AN-HTTPd Multiple Test CGIs Arbitrary Command Execution

The remote web server is an AN-HTTPD server which contains default CGI scripts. At least one of these CGIs is installed on the remote server : cgi-bin/test.bat cgi-bin/input.bat cgi-bin/input2.bat ssi/envout.bat It is possible to misuse them to make the remote server execute arbitrary commands...

7.5CVSS5.6AI score0.03159EPSS
Exploits0References1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.41 views

www-cgi-vulner.txt

Date: Mon, 9 Nov 1998 18:26:05 -0600 From: xnec To: [email protected] Subject: Several new CGI vulnerabilities INFO: After looking over the perl-CGI scripts on www.cgi-resources.com, I've discovered vulnerabilities in the following: 1. HAMcards Postcard script v1.0 Beta 2 www.hamnetcenter.com ...

Exploits0
Rows per page
Query Builder