Lucene search
K

9795 matches found

securityvulns
securityvulns
added 2010/12/27 12:0 a.m.214 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6CVSS1.6AI score0.03139EPSS
Exploits0References20Affected Software10
securityvulns
securityvulns
added 2010/12/24 12:0 a.m.32 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2010/12/23 12:0 a.m.33 views

Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple)

Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:250 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...

4.3CVSS9.1AI score0.02713EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/23 12:0 a.m.37 views

Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple)

Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:250 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...

4.3CVSS9.5AI score0.02713EPSS
Exploits0References2
exploitpack
exploitpack
added 2010/12/23 12:0 a.m.11 views

D-Link WBR-1310 - Authentication Bypass

D-Link WBR-1310 - Authentication Bypass Exploit Title: D-Link WBR-1310 Authentication Bypass Vulnerability Shodan Dork: Embedded HTTP Server 2.00 Date: 22-Dec-2010 Author: Craig Heffner, /dev/ttyS0 Software Link: http://www.dlink.com/products/?pid=474 Version: 2.00 Tested on: WBR-1301, firmware...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/12/23 12:0 a.m.32 views

D-Link WBR-1310 - Authentication Bypass

Exploit Title: D-Link WBR-1310 Authentication Bypass Vulnerability Shodan Dork: Embedded HTTP Server 2.00 Date: 22-Dec-2010 Author: Craig Heffner, /dev/ttyS0 Software Link: http://www.dlink.com/products/?pid=474 Version: 2.00 Tested on: WBR-1301, firmware version 2.00 The CGI scripts in the D-Lin...

7AI score
Exploits0
securityvulns
securityvulns
added 2010/12/21 12:0 a.m.27 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References21Affected Software8
securityvulns
securityvulns
added 2010/12/20 12:0 a.m.18 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/12/17 12:0 a.m.38 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.07119EPSS
Exploits13References8Affected Software2
securityvulns
securityvulns
added 2010/12/15 12:0 a.m.27 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References11Affected Software2
Tenable Nessus
Tenable Nessus
added 2010/12/15 12:0 a.m.1201 views

Dell Integrated Remote Access Controller (iDRAC) Web Interface Detection

The web interface for Dell Integrated Remote Access Controller iDRAC, formerly known as Dell Remote Access Controller DRAC, was detected on the remote host. C Tenable, Inc. Thanks to Jason Haar for his help! include'compat.inc'; if description scriptid51185; scriptversion"1.32";...

5.7AI score
Exploits0References1
securityvulns
securityvulns
added 2010/12/12 12:0 a.m.44 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

4.3CVSS1.6AI score0.01728EPSS
Exploits0References13Affected Software11
securityvulns
securityvulns
added 2010/12/12 12:0 a.m.63 views

[ MDVSA-2010:250 ] perl-CGI-Simple

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:250 http://www.mandriva.com/security/ Package : perl-CGI-Simple Date : December 9, 2010 Affected: Corporate 4.0, Enterprise Server 5.0 Problem Description: A vulnerability was discovered and corrected in...

4.3CVSS9.1AI score0.02713EPSS
Exploits0
FreeBSD
FreeBSD
added 2010/12/10 12:0 a.m.64 views

php -- NULL byte poisoning

PHP-specific version of NULL-byte poisoning was briefly described by ShAnKaR: Poison NULL byte vulnerability for perl CGI applications was described in 1. ShAnKaR noted, that same vulnerability also affects different PHP applications. PHP developers report that branch 5.3 received a fix: Paths wi...

5CVSS7.3AI score0.05363EPSS
Exploits2References2
securityvulns
securityvulns
added 2010/12/08 12:0 a.m.31 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.8CVSS1.6AI score0.0263EPSS
Exploits6References7Affected Software2
OSV
OSV
added 2010/12/06 8:13 p.m.6 views

CVE-2010-4411

Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761...

6.7AI score
Exploits0References15
OSV
OSV
added 2010/12/06 8:13 p.m.2 views

DEBIAN-CVE-2010-4411

Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761...

4.3CVSS7.1AI score0.02579EPSS
Exploits0References1
OSV
OSV
added 2010/12/06 8:13 p.m.1 views

DEBIAN-CVE-2010-4410

CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...

4.3CVSS7.6AI score0.02045EPSS
Exploits0References1
NVD
NVD
added 2010/12/06 8:13 p.m.25 views

CVE-2010-4410

CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...

4.3CVSS9AI score0.02045EPSS
Exploits0References24
OSV
OSV
added 2010/12/06 8:13 p.m.7 views

CVE-2010-4410

CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...

6.8AI score
Exploits0References24
Rows per page
Query Builder