9795 matches found
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Meeting Room Booking System Detection
The remote host is running Meeting Room Booking System, a web-based room booking system written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid50001; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01";...
Generic Web Application Unix Command Execution
$Id: genericexec.rb 10642 2010-10-11 19:30:57Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
mathTeX mathtex.cgi getdirective Function dpi Tag Arbitrary Code Execution
The remote web server hosts mathTeX, a CGI script for displaying math on the web. The version of this application installed on the remote host fails to sanitize input via the 'dpi' or 'density' tags in an expression of shell metacharacters in the 'getdirective' function before using it in a call ...
Conversation for Exploration (Index.cgi) LFI Vulnerability
Exploit for php platform in category web applications ========================================================== Conversation for Exploration Index.cgi LFI Vulnerability ========================================================== Author: Net.Edit0r Email : email protected & email protected Script:...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
SurgeMail surgeweb XSS
The remote web server hosts a CGI script that fails to adequately sanitize request strings with malicious JavaScript. By leveraging this issue, an attacker may be able to cause arbitrary HTML and script code to be executed in a user's browser within the security context of the affected site...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
CVE-2010-2491
CVE-2010-2491 is a cross-site scripting (XSS) vulnerability in Roundup, specifically in the CGI component cgi/client.py. The issue allows remote attackers to inject arbitrary script/HTML via the template argument to the /issue program, and affects Roundup versions prior to 1.4.14. The vulnerabili...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Mercantec SoftCart - CGI Overflow (Metasploit)
$Id: mercantecsoftcart.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
PT-2010-4249
Name of the Vulnerable Software and Affected Versions Microsoft Internet Information Services IIS version 7.5 Description A buffer overflow issue exists in Microsoft Internet Information Services IIS 7.5 when FastCGI is enabled. This allows remote attackers to execute arbitrary code via crafted...