Lucene search
K

9794 matches found

Typo3
Typo3
added 2010/02/23 12:0 a.m.19 views

Vulnerabilities in TYPO3 Core

It has been discovered that TYPO3 Core is vulnerable to Cross-Site Scripting, Authentication Bypass for frontend users and Information Disclosure. Component Type: TYPO3 Core Affected Versions: 4.2.11 and below, 4.3.1 and below Vulnerability Types: Authentication Bypass, Cross-Site Scripting XSS,...

6.4AI score
Exploits0Affected Software1
securityvulns
securityvulns
added 2010/02/22 12:0 a.m.22 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References6Affected Software2
seebug.org
seebug.org
added 2010/02/19 12:0 a.m.48 views

gitWeb v1.5.2 Remote Command Execution

No description provided by source. Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind command...

7.5CVSS0.2AI score0.1188EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2010/02/19 12:0 a.m.977 views

CGI Generic Command Execution (time-based)

The remote web server hosts CGI scripts that fail to adequately sanitize request strings. By leveraging this issue, an attacker may be able to execute arbitrary commands on the remote host. Note that this script uses a time-based detection method which is less reliable than the basic method...

6.1AI score
Exploits0References2
Packet Storm
Packet Storm
added 2010/02/19 12:0 a.m.34 views

gitWeb 1.x Remote Command Execution

Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.X Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code:...

7.5CVSS0.1AI score0.1188EPSS
Exploits6
Check Point Advisories
Check Point Advisories
added 2010/02/18 12:0 a.m.6 views

Microsoft ISAPI W3Who Library Buffer Overflow (CVE-2004-1134)

The W3Who dynamically linked library DLL, when used in the context of an IIS HTTP server, provides various information about the current HTTP client, as well as the current running environment. It is included with the Internet Services Application Programming Interface ISAPI and is meant to be us...

10CVSS7.3AI score0.72326EPSS
Exploits5
exploitpack
exploitpack
added 2010/02/18 12:0 a.m.44 views

gitWeb 1.5.2 - Remote Command Execution

gitWeb 1.5.2 - Remote Command Execution Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind...

7.5CVSS0.1AI score0.1188EPSS
Exploits6
0day.today
0day.today
added 2010/02/18 12:0 a.m.62 views

gitWeb v1.5.2 Remote Command Execution

Exploit for unknown platform in category remote exploits ====================================== gitWeb v1.5.2 Remote Command Execution ====================================== Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2...

7.1AI score0.1188EPSS
Exploits6
Exploit DB
Exploit DB
added 2010/02/18 12:0 a.m.53 views

gitWeb 1.5.2 - Remote Command Execution

Exploit Title: gitWeb remote command execution Date: 2009.06.19 Author: S2 Crew Hungary Software Link: - Version: GIT 1.5.2 Tested on: debian linux, GIT 1.5.2 CVE: CVE-2008-5516 - CVE-2008-5517 Code: The cgi script doesn't show the command output blind command execution ; Vulnerable functions in...

7.5CVSS7AI score0.1188EPSS
Exploits6
CVE
CVE
added 2010/02/12 9:0 p.m.51 views

CVE-2001-1586

CVE-2001-1586 affects SimpleServer:WWW 1.13 and earlier. It is a directory traversal flaw where encoded ../ sequences in requests to the cgi-bin/ directory allow remote attackers to run arbitrary commands with the server’s privileges. OpenVAS/Nessus entries describe remote command execution, conf...

10CVSS7.5AI score0.082EPSS
Exploits1References5Affected Software1
securityvulns
securityvulns
added 2010/02/12 12:0 a.m.27 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.5CVSS1.6AI score0.01928EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2010/02/08 12:0 a.m.26 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits2References6Affected Software2
securityvulns
securityvulns
added 2010/02/04 12:0 a.m.58 views

Cpanel Bypass Safe mode [ extract tar.gz by Cpanel ]

==================================================== Cpanel Bypass Safe mode extract tar.gz by Cpanel ==================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / ...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2010/02/04 12:0 a.m.92 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.8CVSS1.6AI score0.03373EPSS
Exploits0References16Affected Software7
Tenable Nessus
Tenable Nessus
added 2010/02/02 12:0 a.m.502 views

MoinMoin Detection

The remote host is running MoinMoin, a wiki written in Python. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid44382; scriptversion"1.5"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"MoinMoin Detection";...

6.9AI score
Exploits0References1
Metasploit
Metasploit
added 2010/02/01 2:12 a.m.12 views

HTTP File Same Name Directory Scanner

This module identifies the existence of files in a given directory path named as the same name of the directory. Only works if PATH is different than '/'. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

6.9AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/02/01 12:0 a.m.4 views

HP OpenView Network Node Manager OVwSelection Buffer Overflow (CVE-2009-4181)

The HP OpenView product consists of a suite of network and system management software applications developed by HP. It includes several optional modules and components, such as OpenView Quality Manager, OpenView Performance Insight, OpenView Network Node Manager, etc. A buffer overflow...

10CVSS7.3AI score0.1086EPSS
Exploits5
Check Point Advisories
Check Point Advisories
added 2010/01/31 12:0 a.m.3 views

HP OpenView Network Node Manager CGI Host Header Buffer Overflow (CVE-2009-4177)

HP OpenView product consists of a suite of network and system management software applications developed by HP. It includes several optional modules and components, such as OpenView Quality Manager, OpenView Performance Insight, OpenView Network Node Manager, etc. A buffer overflow vulnerability...

10CVSS7.3AI score0.1345EPSS
Exploits1
securityvulns
securityvulns
added 2010/01/28 12:0 a.m.27 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.03353EPSS
Exploits1References2Affected Software2
securityvulns
securityvulns
added 2010/01/26 12:0 a.m.58 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.01391EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder