Lucene search
K

1307 matches found

exploitpack
exploitpack
added 2006/09/07 12:0 a.m.14 views

Web Server Creator 0.1 - l Remote File Inclusion

Web Server Creator 0.1 - l Remote File Inclusion Web Server Creator v0.1 l Remote Include Vulnerability Author: XORON URL: http://www.comscripts.com/jump.php?action=script&id=1082 Class: Remote cont@ct: x0r0nathotmaildotcom Code: include $l; Exploit:...

0.2AI score
Exploits0
0day.today
0day.today
added 2006/09/07 12:0 a.m.29 views

Web Server Creator v0.1 (l) Remote Include Vulnerability

Exploit for unknown platform in category web applications ======================================================== Web Server Creator v0.1 l Remote Include Vulnerability ======================================================== Web Server Creator v0.1 l Remote Include Vulnerability Author: XORON...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/08/10 12:0 a.m.51 views

BlogHoster v2.2 Post Comment Html Injection

HeLiOsZ - Dark End Team - Internet Security Team BlogHoster v2.2 Post Comment Html Injection IRC: darkend.sytes.net darkend , http://darkend.sytes.net & http://www.darkend.org Rish : Medium Type : web applet Creator: http://www.blogsplosion.com Exploit: - To exploit this issue you must put your...

0.3AI score
Exploits0
Cvelist
Cvelist
added 2006/05/21 4:0 p.m.25 views

CVE-2005-1755

PHP remote file inclusion vulnerability in pollvote.php in PHP Poll Creator 1.01 allows remote attackers to execute arbitrary PHP code via the relativerpfad parameter...

7.4AI score0.02469EPSS
Exploits1References5
CVE
CVE
added 2006/05/21 4:0 p.m.47 views

CVE-2005-1755

The CVE-2005-1755 entry concerns PHP Poll Creator (version 1.01) where PHP remote file inclusion is possible through the relativer_pfad parameter in poll_vote.php. The underlying issue is arbitrary PHP code execution via a manipulated relative path, as described in the NVD entry for poll_vote.php...

6.4CVSS7.9AI score0.02469EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2006/04/03 5:4 p.m.17 views

Input validation

Unspecified vulnerability in VCEngine.php in v-creator before 1.3-pre3, when the VCCRYPTOMETHOD option is OPENSSL, allows remote attackers to execute arbitrary commands, possibly due to problems in the 1 encrypt and 2 decrypt functions...

7.5CVSS8.1AI score0.03477EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/04/03 5:0 p.m.26 views

CVE-2006-1599

Unspecified vulnerability in VCEngine.php in v-creator before 1.3-pre3, when the VCCRYPTOMETHOD option is OPENSSL, allows remote attackers to execute arbitrary commands, possibly due to problems in the 1 encrypt and 2 decrypt functions...

7.5AI score0.03477EPSS
Exploits0References7
CVE
CVE
added 2006/04/03 5:0 p.m.54 views

CVE-2006-1599

Vulnerability CVE-2006-1599 affects v-creator before 1.3-pre3, in VCEngine.php when VC_CRYPTO_METHOD is OPENSSL. Root cause appears to be issues in the encrypt and decrypt functions, enabling remote command execution. The available sources indicate the vulnerability resides in the crypto handling...

7.5CVSS7.5AI score0.03477EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2006/03/31 12:0 a.m.38 views

[SA19453] v-creator VCEngine.php Shell Command Injection Vulnerability

TITLE: v-creator VCEngine.php Shell Command Injection Vulnerability SECUNIA ADVISORY ID: SA19453 VERIFY ADVISORY: http://secunia.com/advisories/19453/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: v-creator 1.x http://secunia.com/product/9080/ DESCRIPTION: A...

0.3AI score
Exploits0
NVD
NVD
added 2005/12/31 5:0 a.m.15 views

CVE-2005-1755

PHP remote file inclusion vulnerability in pollvote.php in PHP Poll Creator 1.01 allows remote attackers to execute arbitrary PHP code via the relativerpfad parameter...

6.4CVSS7.4AI score0.02469EPSS
Exploits1References5
NVD
NVD
added 2005/11/30 11:3 a.m.14 views

CVE-2005-3917

SQL injection vulnerability in usersession in CommodityRentals 2.0 Online Rental Business Creator script allows remote attackers to execute arbitrary SQL commands via the userid parameter...

7.5CVSS8.3AI score0.01211EPSS
Exploits0References4
CVE
CVE
added 2005/11/30 11:0 a.m.58 views

CVE-2005-3917

The CVE-2005-3917 entry affects CommodityRentals 2.0 Online Rental Business Creator script. It is a SQL injection vulnerability in the usersession function exploitable via the user_id parameter, enabling remote execution of arbitrary SQL commands. Impact per CVSS: Confidentiality/Integrity/Availa...

7.5CVSS8.8AI score0.01211EPSS
Exploits0References4Affected Software1
Packet Storm
Packet Storm
added 2005/08/14 12:0 a.m.22 views

phpPoll.txt

svadvisory6 -------------------------------------------------------------+ Title: PHP Injection in PHP Poll Creator | Software: PHP Poll Creator v 1.01 | Homepage: http://www.phppc.de +------------+ Finder: rash | 24.05.05 | -------------------------------------------------------------+ Descripti...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/05/26 12:0 a.m.50 views

PHP Injection in PHP Poll Creator

svadvisory6 -------------------------------------------------------------+ Title: PHP Injection in PHP Poll Creator | Software: PHP Poll Creator v 1.01 | Homepage: http://www.phppc.de +------------+ Finder: rash | 24.05.05 | -------------------------------------------------------------+ Descripti...

7.6AI score
Exploits0
exploitpack
exploitpack
added 2005/05/25 12:0 a.m.13 views

PHP Poll Creator 1.0.1 - Poll_Vote.php Remote File Inclusion

PHP Poll Creator 1.0.1 - PollVote.php Remote File Inclusion source: https://www.securityfocus.com/bid/13760/info PHP Poll Creator is affected by a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execu...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/25 12:0 a.m.20 views

PHP Poll Creator 1.0.1 - 'Poll_Vote.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/13760/info PHP Poll Creator is affected by a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer...

7.4AI score
Exploits0
NVD
NVD
added 2003/04/11 4:0 a.m.11 views

CVE-2002-1427

The printhtmltofile function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users...

7.5CVSS6.7AI score0.06936EPSS
Exploits1References3
Cvelist
Cvelist
added 2003/03/18 5:0 a.m.15 views

CVE-2002-1427

The printhtmltofile function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users...

6.7AI score0.06936EPSS
Exploits1References3
CVE
CVE
added 2003/03/18 5:0 a.m.43 views

CVE-2002-1427

The CVE-2002-1427 entry affects Easy Homepage Creator 1.0. The print_html_to_file function in edit.cgi does not validate user credentials, enabling remote attackers to modify other users’ home pages. CVSS v2 data reports a base score of 7.5 ( HIGH ) with network attack vector, no authentication, ...

7.5CVSS7AI score0.06936EPSS
Exploits1References3Affected Software2
NVD
NVD
added 2002/12/31 5:0 a.m.9 views

CVE-2002-2217

Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal WSC-WebPortal 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 l parameter to customize.php or the 2 pg parameter to index.php...

7.5CVSS7.7AI score0.02055EPSS
Exploits1References8
Rows per page
Query Builder