215 matches found
ghdb
This plugin finds possible vulnerabilities using google. One configurable parameter exist: resultlimit Using the google hack database released by Exploit-DB.com, this plugin searches Google for possible vulnerabilities in the target domain. Special thanks go to the guys at...
wordpress_enumerate_users
This plugin finds usernames in WordPress installations. The authors archive page is tried using "?author=ID" query and incrementing the ID for each request until 404. If the response is a redirect, the blog is affected by TALSOFT-2011-0526 http://seclists.org/fulldisclosure/2011/May/493 advisory...
digit_sum
This plugin tries to find new URLs by changing the numbers that are present on it. Two configurable parameters exist: fuzzImages maxDigitSections An example will clarify what this plugin does, lets suppose that the input for this plugin is: http://host.tld/index1.asp This plugin will request:...
phpinfo
This plugin searches for the PHP Info file in all the directories and subdirectories that are sent as input and if it finds it will try to determine the version of the PHP. The PHP Info file holds information about the PHP and the system version, environment, modules, extensions, compilation...
url_fuzzer
This plugin will try to find new URLs based on the input. If the input is for example: http://a/a.html The plugin will request: http://a/a.html.tgz http://a/a.tgz http://a/a.zip … etc If the response is different from the 404 page whatever it may be, automatic detection is performed, then we have...
FBI will Monitor Social Media using Crawl Application
FBI will Monitor Social Media using Crawl Application The Federal Bureau of Investigation is looking for a better way to spy on Facebook and Twitter users. The Bureau is asking companies to build software that can effectively scan social media online for significant words, phrases and behavior so...
WordPress Crawl Rate Tracker 2.0.2 SQL Injection
Exploit Title: WordPress Crawl Rate Tracker plugin wpdb-getresults"SELECT DATEFROMUNIXTIMEvisittime visitdate,robotname,COUNT total FROM $this-sbtrackingtable WHERE visittime = '$start' AND visittime trackingbotreportchartdata;...
WordPress Crawl Rate Tracker plugin <= 2.0.2 SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: WordPress Crawl Rate Tracker plugin wpdb-getresults"SELECT DATEFROMUNIXTIMEvisittime visitdate,robotname,COUNT total FROM $this-sbtrackingtable WHERE visittime = '$start' AND visittime trackingbotreportchartdata; 0day.today...
WordPress Crawl Rate Tracker Plugin <= 2.0.2 - SQL Injection
Crawl Rate Tracker plugin is prone to an SQL injection. This vulnerability allows an attacker to modify data, alter queries to the application SQL database, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Solution Upgrade the plugin...
WordPress Plugin Crawl Rate Tracker 2.0.2 - SQL Injection
WordPress Plugin Crawl Rate Tracker 2.0.2 - SQL Injection Exploit Title: WordPress Crawl Rate Tracker plugin wpdb-getresults"SELECT DATEFROMUNIXTIMEvisittime visitdate,robotname,COUNT total FROM $this-sbtrackingtable WHERE visittime = '$start' AND visittime trackingbotreportchartdata;...
WordPress Plugin Crawl Rate Tracker 2.0.2 - SQL Injection
Exploit Title: WordPress Crawl Rate Tracker plugin wpdb-getresults"SELECT DATEFROMUNIXTIMEvisittime visitdate,robotname,COUNT total FROM $this-sbtrackingtable WHERE visittime = '$start' AND visittime trackingbotreportchartdata;...
Metasploit Web Crawler
This auxiliary module is a modular web crawler, to be used in conjunction with wmap someday or standalone. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Web Crawler. Author: Efrain Torres et at metasploit.com 2010...
Debian Security Advisory DSA 432-1 (crawl)
The remote host is missing an update to crawl announced via advisory DSA 432-1. OpenVAS Vulnerability Test $Id: deb4321.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 432-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 949-1 (crawl)
The remote host is missing an update to crawl announced via advisory DSA 949-1. Steve Kemp from the Debian Security Audit project discovered a security related problem in crawl, another console based dungeon exploration game in the vein of nethack and rogue. The program executes commands insecure...
Debian: Security Advisory (DSA-949-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-432)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
pjblog upload vulnerability-vulnerability warning-the black bar safety net
First of all have pjblog the super administrator accounteven is to take their blog to the test Log in, post a new log, pass an asp horse, and the extension to get rid of that pjblog seemingly didn't do the file header check, remember address Then login the backend, the recovery database before...
Debian DSA-949-1 : crawl - insecure program execution
Steve Kemp from the Debian Security Audit project discovered a security related problem in crawl, another console based dungeon exploration game in the vein of nethack and rogue. The program executes commands insecurely when saving or loading games which can allow local attackers to gain group...
CVE-2006-0045
crawl before 4.0.0 does not securely call programs when saving and loading games, which allows local users to gain privileges...
CVE-2006-0045
crawl before 4.0.0 does not securely call programs when saving and loading games, which allows local users to gain privileges...