9775 matches found
CVE-2005-0111
Stack-based buffer overflow in the websql CGI program in MySQL MaxDB 7.5.00 allows remote attackers to execute arbitrary code via a long password parameter...
CGI/PHP/ASP bugs
No description provided...
Webmin Web Brute Force v1.5 (cgi-version)
No description provided by source. !/usr/bin/perl use CGI qw:standard; use IO::Socket; $CGI::HEADERSONCE = 1; $CGI = new CGI; $atak = $CGI-param"atak"; $host = $CGI-param"host"; $wlist = $CGI-param"wlist"; $cmd = $CGI-param"cmd"; print $CGI-header-type='text/html',-charset='windows-1254'; print...
Webmin 1.5 - Web Brute Force (CGI)
!/usr/bin/perl use CGI qw:standard; use IO::Socket; $CGI::HEADERSONCE = 1; $CGI = new CGI; $atak = $CGI-param"atak"; $host = $CGI-param"host"; $wlist = $CGI-param"wlist"; $cmd = $CGI-param"cmd"; print $CGI-header-type='text/html',-charset='windows-1254'; print qqWebmin Web Brute Force v1.5 - cgi...
Webmin 1.5 - Web Brute Force (CGI)
Webmin 1.5 - Web Brute Force CGI !/usr/bin/perl use CGI qw:standard; use IO::Socket; $CGI::HEADERSONCE = 1; $CGI = new CGI; $atak = $CGI-param"atak"; $host = $CGI-param"host"; $wlist = $CGI-param"wlist"; $cmd = $CGI-param"cmd"; print $CGI-header-type='text/html',-charset='windows-1254'; print...
CGI bugs
No description provided...
CVE-2004-2661
Soft3304 04WebServer before 1.41 does not properly check file names, which allows remote attackers to obtain sensitive information CGI source code...
CGI bugs
No description provided...
CGI bugs
No description provided...
Ikonboard ikonboard.cgi Multiple Parameter SQL Injection
The remote server is running IkonBoard, a Web Bulletin Board System written in Perl. The remote version of this software fails to sanitize user-supplied input to multiple variables in the 'ikonboard.cgi' script. An attacker can exploit this flaw to launch SQL injection attacks. %NASLMINLEVEL 7030...
UseModWiki wiki.pl XSS
The remote host is using UseModWiki, a wiki CGI written in Perl. The CGI 'wiki.pl' is vulnerable to a cross-site-scripting issue that may allow attackers to steal the cookies of third parties. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
Moderate: Red Hat Security Advisory: ruby security update
An updated ruby package that fixes a denial of service issue for the CGI instance is now available. Updated 17 Jan 2005 Errata has been updated to include 32-bit libraries on 64-bit architectures. Ruby is an interpreted scripting language for object-oriented programming. A flaw was dicovered in t...
security flaw
The CGI module in Ruby 1.6 before 1.6.8, and 1.8 before 1.8.2, allows remote attackers to cause a denial of service infinite loop and CPU consumption via a certain HTTP request...
RHEL 2.1 / 3 : ruby (RHSA-2004:635)
An updated ruby package that fixes a denial of service issue for the CGI instance is now available. Updated 17 Jan 2005 Errata has been updated to include 32-bit libraries on 64-bit architectures. Ruby is an interpreted scripting language for object-oriented programming. A flaw was dicovered in t...
CGI bugs
No description provided...
F-Secure Policy Manager 5.11 - 'FSMSH.dll' CGI Application Installation Full Path Disclosure
source: https://www.securityfocus.com/bid/11869/info F-Secure Policy Manager includes a CGI application named 'fsmsh.dll'. By supplying unexpected input as an argument to the 'fsmsh.dll' application the vulnerable software will return an error message that includes the installation path of the...
F-Secure Policy Manager 5.11 - FSMSH.dll CGI Application Installation Full Path Disclosure
F-Secure Policy Manager 5.11 - FSMSH.dll CGI Application Installation Full Path Disclosure source: https://www.securityfocus.com/bid/11869/info F-Secure Policy Manager includes a CGI application named 'fsmsh.dll'. By supplying unexpected input as an argument to the 'fsmsh.dll' application the...
CGI bugs
No description provided...
phpBB <= 2.0.10 Remote Command Execution Exploit (cgi version)
Exploit for unknown platform in category web applications ============================================================== phpBB param"atak"; $serv = $CGI-param"serv"; $dir = $CGI-param"dir"; $topic = $CGI-param"topic"; $cmd = $CGI-param"cmd"; print...
phpBB <= 2.0.10 Remote Command Execution Exploit (cgi version)
No description provided by source. !/usr/bin/perl wphpbb.cgi hack service: http://site/cgi-bin/wphpbb.cgi use CGI qw:standard; $CGI::HEADERSONCE = 1; $CGI = new CGI; $atak = $CGI-param"atak"; $serv = $CGI-param"serv"; $dir = $CGI-param"dir"; $topic = $CGI-param"topic"; $cmd = $CGI-param"cmd"; pri...