Lucene search
K

9794 matches found

0day.today
0day.today
added 2010/03/30 12:0 a.m.22 views

HP OpenView NNM OvWebHelp.exe CGI Topic overflow

Exploit for windows platform in category remote exploits ================================================ HP OpenView NNM OvWebHelp.exe CGI Topic overflow ================================================ !/usr/bin/python Exploit title: HP OpenView NNM OvWebHelp.exe CGI Topic overflow Date:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/03/30 12:0 a.m.33 views

HP OpenView Network Node Manager (OV NNM) - 'OvWebHelp.exe' CGI Topic Overflow

!/usr/bin/python Exploit title: HP OpenView NNM OvWebHelp.exe CGI Topic overflow Date: 2010.03.30 Software link: hp.com Version: 7.53 Tested on: Windows 2003 SP2 CVE: 2009-4178 Code: Trying 172.16.29.130... Connected to 172.16.29.130. Escape character is '^'. Microsoft Windows Version 5.2.3790 C...

7AI score
Exploits0
securityvulns
securityvulns
added 2010/03/29 12:0 a.m.62 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References3Affected Software2
0day.today
0day.today
added 2010/03/26 12:0 a.m.20 views

Surge-FTP Admin Web interface XSS Vulnerability

Exploit for php platform in category web applications =============================================== Surge-FTP Admin Web interface XSS Vulnerability =============================================== Exploit Title: Surge-FTP Admin Web interface XSS Vulnerability Date: 2010-01-09 Author: FB1H2S...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2010/03/25 12:0 a.m.32 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References5Affected Software2
Tenable Nessus
Tenable Nessus
added 2010/03/25 12:0 a.m.29 views

eScan MWAdmin Interface Detection

MWAdmin, a web interface included with multiple Linux-based eScan products, was detected on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid45344; scriptversion"1.9"; scriptcvsdate"Date: 2019/11/25"; scriptnameenglish:"eScan MWAdmin Interface...

5.5AI score
Exploits0References1
securityvulns
securityvulns
added 2010/03/23 12:0 a.m.33 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References14Affected Software7
securityvulns
securityvulns
added 2010/03/21 12:0 a.m.23 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References7Affected Software5
securityvulns
securityvulns
added 2010/03/18 12:0 a.m.25 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

4.3CVSS1.6AI score0.01042EPSS
Exploits2References12Affected Software8
Tenable Nessus
Tenable Nessus
added 2010/03/17 12:0 a.m.40 views

Trouble Ticket Express fid Parameter Arbitrary Remote Code Execution

The remote host is running Trouble Ticket Express, an open source web-based trouble ticket application written in Perl. At least one module included with the version of Trouble Ticket Express hosted on the remote web server fails to sanitize input to the 'fid' parameter of the 'ttx.cgi' script...

5.7AI score
Exploits0References2
securityvulns
securityvulns
added 2010/03/15 12:0 a.m.36 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.02181EPSS
Exploits0References14Affected Software9
securityvulns
securityvulns
added 2010/03/11 12:0 a.m.41 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.02312EPSS
Exploits2References17Affected Software11
securityvulns
securityvulns
added 2010/03/04 12:0 a.m.21 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References2Affected Software2
Check Point Advisories
Check Point Advisories
added 2010/03/03 12:0 a.m.5 views

MDaemon Raw Message Handler Buffer Overflow (CVE-2003-1200)

WorldClient is a program listening on TCP/3000 and executing the CGI program Form2Raw, which processes HTTP requests. The vulnerable products do not require any user credentials to access the program. The specially crafted content will be passed unchecked to the vulnerable server program, MDaemon...

7.5CVSS8AI score0.65097EPSS
Exploits8
securityvulns
securityvulns
added 2010/03/02 12:0 a.m.55 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References10Affected Software8
myhack58
myhack58
added 2010/02/27 12:0 a.m.24 views

Remote included and local contain vulnerabilities principle-vulnerability warning-the black bar safety net

First, let's discuss the include file vulnerability,the first thing to ask is,what is"remote file inclusion vulnerability"for? The answer is: the server through the php properties of a function to contain any files, since you want to include this file source filter is not strict, so can go to tha...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2010/02/25 12:0 a.m.45 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

5CVSS1.6AI score0.09385EPSS
Exploits2References6Affected Software5
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.23 views

Debian DSA-1882-1 : xapian-omega - missing input sanitization

It was discovered that xapian-omega, a CGI interface for searching xapian databases, is not properly escaping user-supplied input when printing exceptions. An attacker can use this to conduct cross-site scripting attacks via crafted search queries resulting in an exception and steal potentially...

4.3CVSS5.5AI score0.019EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.36 views

Debian DSA-1883-1 : nagios2 - missing input sanitising

Several vulnerabilities have been found in nagios2, a host/service/network monitoring and management system. The Common Vulnerabilities and Exposures project identifies the following problems : Several cross-site scripting issues via several parameters were discovered in the CGI scripts, allowing...

4.3CVSS7.8AI score0.02469EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.33 views

Debian DSA-1914-1 : mapserver - several vulnerabilities

Several vulnerabilities have been discovered in mapserver, a CGI-based web framework to publish spatial data and interactive mapping applications. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0843 Missing input validation on a user-supplied map...

10CVSS6.9AI score0.09011EPSS
Exploits5References14
Rows per page
Query Builder