Lucene search
K

9791 matches found

Cvelist
Cvelist
added 2009/07/02 10:0 a.m.17 views

CVE-2009-2300

The management interface in the phion airlock Web Application Firewall WAF 4.1-10.41 does not properly handle CGI requests that specify large width and height parameters for an image, which allows remote attackers to execute arbitrary commands or cause a denial of service resource consumption via...

7.7AI score0.02783EPSS
Exploits0References3
0day.today
0day.today
added 2009/07/02 12:0 a.m.41 views

Sourcefire 3D Sensor & Defense Center 4.8.x Privilege Escalation Vuln

Exploit for cgi platform in category web applications ===================================================================== Sourcefire 3D Sensor & Defense Center 4.8.x Privilege Escalation Vuln ===================================================================== Affected product ----------------...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2009/07/01 12:0 a.m.24 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References2Affected Software2
securityvulns
securityvulns
added 2009/06/30 12:0 a.m.30 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. LinksExchanger - Crossite scripting. phpMyAdmin - Crossite scripting...

1.5AI score
Exploits0References2Affected Software3
securityvulns
securityvulns
added 2009/06/29 12:0 a.m.51 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. CMS SiteLogic: SQL injection, crossite scripting, information leak...

1.5AI score
Exploits0References5Affected Software4
securityvulns
securityvulns
added 2009/06/26 12:0 a.m.91 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

10CVSS1.5AI score0.95438EPSS
Exploits17References4Affected Software3
securityvulns
securityvulns
added 2009/06/24 12:0 a.m.28 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References3Affected Software3
OpenVAS
OpenVAS
added 2009/06/23 12:0 a.m.27 views

Debian: Security Advisory (DSA-1816-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.9CVSS7.6AI score0.01955EPSS
Exploits4References3
securityvulns
securityvulns
added 2009/06/22 12:0 a.m.31 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References4Affected Software2
securityvulns
securityvulns
added 2009/06/21 12:0 a.m.36 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

10CVSS1.5AI score0.23373EPSS
Exploits9References6Affected Software3
Tenable Nessus
Tenable Nessus
added 2009/06/19 12:0 a.m.356 views

CGI Generic Remote File Inclusion

The remote web server hosts CGI scripts that fail to adequately sanitize request strings. By leveraging this issue, an attacker may be able to include a remote file from a remote server and execute arbitrary commands on the target host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/06/19 12:0 a.m.86 views

CGI Generic Tests Timeout

Some generic CGI tests ran out of time during the scan. The results may be incomplete. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid39470; scriptversion"1.15"; scriptsetattributeattribute:"pluginmodificationdate"...

5.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/06/19 12:0 a.m.1181 views

CGI Generic XSS (quick test)

The remote web server hosts CGI scripts that fail to adequately sanitize request strings with malicious JavaScript. By leveraging this issue, an attacker may be able to cause arbitrary HTML and script code to be executed in a user's browser within the security context of the affected site. These...

5.6AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/06/19 12:0 a.m.132 views

CGI Generic Command Execution

The remote web server hosts CGI scripts that fail to adequately sanitize request strings. By leveraging this issue, an attacker may be able to execute arbitrary commands on the remote host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...

6AI score
Exploits0References2
securityvulns
securityvulns
added 2009/06/18 12:0 a.m.40 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2009/06/16 12:0 a.m.65 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References8Affected Software5
0day.today
0day.today
added 2009/06/15 12:0 a.m.21 views

FormMail 1.92 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ============================================= FormMail 1.92 Multiple Remote Vulnerabilities ============================================= FormMail 1.92 Multiple Vulnerabilities Name Multiple Vulnerabilities in FormMail Systems Affected...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/06/15 12:0 a.m.22 views

Netgear DG632 Router Authentication Bypass Vulnerability

Exploit for hardware platform in category remote exploits ======================================================== Netgear DG632 Router Authentication Bypass Vulnerability ======================================================== Product Name: Netgear DG632 Router Vendor: http://www.netgear.com...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/15 12:0 a.m.40 views

formmail 1.92 - Multiple Vulnerabilities

FormMail 1.92 Multiple Vulnerabilities Name Multiple Vulnerabilities in FormMail Systems Affected FormMail 1.92 and possibly earlier versions Severity Medium Impact CVSSv2 Medium 4.3/10, vector: AV:N/AC:M/Au:N/C:P/I:N/A:N Vendor http://www.scriptarchive.com/formmail.html Advisory...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/06/14 12:0 a.m.42 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References7Affected Software5
Rows per page
Query Builder