Lucene search
+L

113 matches found

xssed
xssed
added 2009/09/15 12:0 a.m.22 views

Unfixed XSS vulnerability at www.ratehispanic.com

Security researcher Don Tukulesto, has submitted on 15/09/2009 a cross-site-scripting XSS vulnerability affecting www.ratehispanic.com, which at the time of submission ranked 543638 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/11/2011. It...

6.6AI score
Exploits0References1
exploitpack
exploitpack
added 2009/09/09 12:0 a.m.133 views

Dnsmasq 2.50 - Heap Overflow Null Pointer Dereference

Dnsmasq 2.50 - Heap Overflow Null Pointer Dereference -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server 1. Advisory Information Title: Dnsmasq Heap...

6.8CVSS0.1AI score0.12684EPSS
Exploits8
xssed
xssed
added 2009/01/21 12:0 a.m.7 views

Unfixed XSS vulnerability at www.21stcentury.com.my

Security researcher Don Tukulesto, has submitted on 21/01/2009 a cross-site-scripting XSS vulnerability affecting www.21stcentury.com.my, which at the time of submission ranked 6090601 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/10/2010...

6.6AI score
Exploits0References1
Atlassian
Atlassian
added 2008/06/24 6:19 a.m.27 views

Security Vulnerability in xwork, need to update to fixed version

see http://cwiki.apache.org/confluence/display/WW/S2-003 confluence currently using v1.0.3. 1.0.x branch was not yet patched so we cannot upgrade straight away. Don B is working on releasing the fix...

0.9AI score
Exploits0Affected Software1
seebug.org
seebug.org
added 2008/03/11 12:0 a.m.21 views

Mambo Component eWriting 1.2.1 (cat) SQL Injection Vulnerability

No description provided by source. eWriting 1.2.1 - SQL injection Discovered by breakerunit & Don BHack b4lc4n.org Gretz to h4cky0u.org l r00tsecurity.org l h4cky0u.biz l Dorks: "Powered by eWriting 1.2.1 allinurl:"comewriting" Joomla!...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/02/14 12:0 a.m.43 views

PHP Live! 3.2.2 - 'questid' SQL Injection (1)

!Info! PHP Live! © OSI Codes Inc. enables live help and live customer support communication directly from your website. With PHP Live!, you can provide one-on-one chat assistance in real-time, answer visitor questions and add that extra human touch to your website. !SQL Injection! Code:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/12/18 12:0 a.m.37 views

MySpace Content Zone 3.x - Arbitrary File Upload

---------------------------------------------------- +-MySpace Content Zone RFi-+ ---------------------------------------------------- Found By Don & breakerunit ---------------------------------------------------- Vuln file: /admin/uploadgames.php Fix: secure admin area Dork: "Powered by MySpace...

7AI score
Exploits0
CVE
CVE
added 2007/10/05 12:0 a.m.43 views

CVE-2007-5218

CVE-2007-5218 describes a cross-site scripting (XSS) vulnerability in the PHP-based “DRBGuestbook” software, specifically in index.php of version 1.1.13 by Don Barnes. The issue allows remote attackers to inject arbitrary web script or HTML via the action parameter. The provided documents do not ...

4.3CVSS5.7AI score0.0173EPSS
Exploits0References6Affected Software1
Exploit DB
Exploit DB
added 2007/08/30 12:0 a.m.75 views

Ourspace 2.0.9 - 'uploadmedia.cgi' Arbitrary File Upload

++++++++++++++++++++++++++++++++++++ | Discovered by Breakerunit & Don | | Ourspace 2.0.9| script info: http://www.codedworld.com/download/our-space/26931.html Exploit: /cgi-bin/ourspace/newswire/uploadmedia.cgi dork: inurl:"/cgi-bin/ourspace/ Greetz to: Balcan Crew Members h4cky0u.org and my...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/06/24 12:0 a.m.15 views

Pharmacy System 2.0 - index.php?ID SQL Injection

Pharmacy System 2.0 - index.php?ID SQL Injection --==+================================================================================+==-- --==+ Pharmacy System v2 AND PRIOR SQL INJECTION VULNERBILITYS +==-- --==+================================================================================+==...

0.2AI score
Exploits0
xssed
xssed
added 2007/05/28 12:0 a.m.7 views

Unfixed XSS vulnerability at www.freevbcode.com

Security researcher Cyber Don, has submitted on 28/05/2007 a cross-site-scripting XSS vulnerability affecting www.freevbcode.com, which at the time of submission ranked 33185 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/05/2007. It is...

Exploits0References1
seebug.org
seebug.org
added 2007/02/28 12:0 a.m.31 views

Plan 9 Kernel (devenv.c OTRUNC/pwrite) Local Exploit

No description provided by source. / !!! DO NOT DISTRIBUTE !!! / / identity theft this exploit uses my devenv.c OTRUNC/pwrite vulnerability to overwrite specific kernel addresses to help elevate our privileges. this exploit is very picky, so you must understand the plan9 kernel and know what you...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.84 views

Multiple Vendor DNS Response Flooding DoS Vulnerability

Multiple DNS vendors are reported susceptible to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2004 Cedric Tissieres, Objectif Securite Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...

5CVSS6.7AI score0.02765EPSS
Exploits0References2
Rows per page
Query Builder