Lucene search
K

9794 matches found

Tenable Nessus
Tenable Nessus
added 2010/01/25 12:0 a.m.774 views

CGI Generic Unseen Parameters Discovery

By sending requests with additional parameters such as 'admin', 'debug', or 'test' to CGI scripts hosted on the remote web server, Nessus was able to generate at least one significantly different response even though the parameters themselves do not actually appear in responses. This behavior...

5.6AI score
Exploits0References1
securityvulns
securityvulns
added 2010/01/23 12:0 a.m.39 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.10612EPSS
Exploits0References5Affected Software3
Metasploit
Metasploit
added 2010/01/22 5:52 a.m.28 views

HP OpenView Network Node Manager ovalarm.exe CGI Buffer Overflow

This module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.53. By sending a specially crafted CGI request to ovalarm.exe, an attacker can execute arbitrary code. This specific vulnerability is due to a call to "sprintfnew" in the "isWide" function within "ovalarm.exe". A...

10CVSS7.9AI score0.66973EPSS
Exploits8
Packet Storm
Packet Storm
added 2010/01/22 12:0 a.m.38 views

HP OpenView Network Node Manager ovalarm.exe CGI Buffer Overflow

$Id: hpnnmovalarmlang.rb 8192 2010-01-22 05:52:53Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

10CVSS1.1AI score0.66973EPSS
Exploits8
securityvulns
securityvulns
added 2010/01/21 12:0 a.m.24 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2010/01/19 12:0 a.m.37 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.8CVSS1.6AI score0.01342EPSS
Exploits0References5Affected Software4
Exploit DB
Exploit DB
added 2010/01/18 12:0 a.m.18 views

SurgeFTP 2.x - 'surgeftpmgr.cgi' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/37844/info SurgeFTP is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in an administrator's browser session in the conte...

7AI score
Exploits0
securityvulns
securityvulns
added 2010/01/17 12:0 a.m.26 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References4Affected Software2
securityvulns
securityvulns
added 2010/01/12 12:0 a.m.22 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References3Affected Software2
Saint
Saint
added 2010/01/09 12:0 a.m.35 views

HP OpenView Network Node Manager nnmRptConfig.exe CGI Template Buffer Overflow

Added: 01/09/2010 CVE: CVE-2009-3848 BID: 37296 OSVDB: 60926 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A stack buffer overflow vulnerability allows remote attackers to execute arbitrary commands by requesting the...

10CVSS7.6AI score0.11794EPSS
Exploits5
Saint
Saint
added 2010/01/09 12:0 a.m.31 views

HP OpenView Network Node Manager nnmRptConfig.exe CGI Template Buffer Overflow

Added: 01/09/2010 CVE: CVE-2009-3848 BID: 37296 OSVDB: 60926 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A stack buffer overflow vulnerability allows remote attackers to execute arbitrary commands by requesting the...

10CVSS7.6AI score0.11794EPSS
Exploits5
securityvulns
securityvulns
added 2010/01/07 12:0 a.m.40 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.09996EPSS
Exploits10References2Affected Software2
Check Point Advisories
Check Point Advisories
added 2010/01/06 12:0 a.m.3 views

Preemptive Protection against HP OpenView Network Node Manager snmp.exe Oid Variable Buffer Overflow Vulnerability

A buffer overflow vulnerability has been reported in HP OpenView Network Node Manager NNM CGI program snmp.exe. The NNM is an HP OpenView product which manages networks. It determines and displays physical and logical connectivity in networks, as well as information referring to protocols running...

10CVSS7.3AI score0.73694EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2010/01/06 12:0 a.m.41 views

CentOS 5 : cups (CESA-2008:0192)

Updated cups packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Common UNIX Printing System CUPS provides a portable printing layer for UNIXR operatin...

10CVSS7.2AI score0.08282EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2010/01/06 12:0 a.m.19 views

Movable Type Detection

Detection of Movable Type. The script sends a connection request to the server and attempts to extract the version number from the reply. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced source...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2010/01/05 12:0 a.m.21 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References4Affected Software3
Check Point Advisories
Check Point Advisories
added 2010/01/04 12:0 a.m.6 views

Multiple Vendor CUPS Administration Interface CGI Heap Overflow (CVE-2008-0047)

The Common Unix Printing System CUPS is a modular printing system for Unix-like operating systems that allows a computer to act as a print server. A computer running CUPS is a host that can accept print jobs from client computers, process them, and send them to the appropriate printer. A heap...

9.3CVSS7.7AI score0.06765EPSS
Exploits1
OpenVAS
OpenVAS
added 2010/01/04 12:0 a.m.16 views

CoreHTTP CGI Support Remote Command Execution Vulnerability

CoreHTTP is prone to a remote command-execution vulnerability because the software fails to adequately sanitize user-supplied input. Successful attacks can compromise the affected software and possibly the computer. CoreHTTP 0.5.3.1 is vulnerable; other versions may also be affected. OpenVAS...

0.7AI score
Exploits0References3
OpenVAS
OpenVAS
added 2010/01/04 12:0 a.m.14 views

CoreHTTP CGI Support RCE Vulnerability

CoreHTTP is prone to a remote command-execution vulnerability because the software fails to adequately sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.3AI score
Exploits0References2
Packet Storm
Packet Storm
added 2009/12/31 12:0 a.m.39 views

HP OpenView Network Node Manager OpenView5.exe CGI Buffer Overflow

$Id: hpnnmopenview5.rb 7874 2009-12-15 05:41:29Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

10CVSS1AI score0.69613EPSS
Exploits9
Rows per page
Query Builder