Lucene search
+L

666 matches found

Exploit DB
Exploit DB
added 2008/06/20 12:0 a.m.64 views

phpAuction - 'profile.php' SQL Injection (1)

Viva IslaM Viva IslaM Remote SQL Injection Vulnerability PHPAuction profile.php userid AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ATsDp.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : PHPAuction site : www.phpauctions.info D0rk1 : allinurl: "profile.php?userid" auctionid D0rk2 :...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/06/18 12:0 a.m.19 views

BaSiC-CMS (index.php r) Remote SQL Injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability BaSiC-CMS index.php r AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : BaSiC-CMS site : www.Basic-CMS.de -:: SQL ::- www.site.com/pages/...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/06/17 12:0 a.m.20 views

FreeCMS.us 0.2 - index.php SQL Injection

FreeCMS.us 0.2 - index.php SQL Injection Viva IslaM Viva IslaM Remote SQL Injection Vulnerability FreeCMS 0.2 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : FreeCMS Vesrion : 0.2 site : www.Freecms.us -:: SQL ::- www.site.com/...

0.1AI score
Exploits0
xssed
xssed
added 2008/05/27 12:0 a.m.20 views

Unfixed XSS vulnerability at mirabolivia.com

Security researcher el-mago, has submitted on 27/05/2008 a cross-site-scripting XSS vulnerability affecting mirabolivia.com, which at the time of submission ranked 85861 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/07/2008. It is currentl...

6.6AI score
Exploits0References1
Packet Storm
Packet Storm
added 2008/05/22 12:0 a.m.31 views

netbutikker-sql.txt

Viva Islam rEm0te SQL Injection Vulnerability netbutik V1 index.php id Script Name : Netbutik Download : www.simpelside.dk Version : version 1 , 2 , 3 ,4 AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] Note This script have 4 version on demo and users table have diffrents names y...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/05/21 12:0 a.m.21 views

EntertainmentScript (play.php id) Remote SQL Injection Vulnerability

No description provided by source. rEm0te SQL Injection Vulnerability EntertainmentScript V1.4.0 play.php id Script : EntertainmentScript.com V1.4.0 name script on demo site is fastfreemedia DeMo : http://demo.fastfreemedia.com/index.php AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email :...

7.1AI score
Exploits0
Oracle linux
Oracle linux
added 2008/03/14 12:0 a.m.60 views

Moderate: kernel security and bug fix update

2.6.9-67.0.7.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with...

6.8CVSS0.4AI score0.02378EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.11 views

Debian Security Advisory DSA 340-1 (x-face-el)

The remote host is missing an update to x-face-el announced via advisory DSA 340-1. OpenVAS Vulnerability Test $Id: deb3401.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 340-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

0.5AI score
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.25 views

Debian Security Advisory DSA 338-1 (x-face-el)

The remote host is missing an update to x-face-el announced via advisory DSA 338-1. OpenVAS Vulnerability Test $Id: deb3381.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 338-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

10CVSS0.4AI score0.18266EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.20 views

Debian Security Advisory DSA 1269-1 (lookup-el)

The remote host is missing an update to lookup-el announced via advisory DSA 1269-1. Tatsuya Kinoshita discovered that Lookup, a search interface to electronic dictionaries on emacsen, creates a temporary file in an insecure fashion when the ndeb-binary feature is used, which allows a local...

4.6CVSS0.2AI score0.00367EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.9 views

Debian: Security Advisory (DSA-1269-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS6.7AI score0.00367EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.11 views

Debian: Security Advisory (DSA-340)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
NVD
NVD
added 2007/03/19 7:19 p.m.11 views

CVE-2007-0237

The ndeb-binary feature in Lookup lookup-el allows local users to overwrite arbitrary files via a symlink attack on temporary files...

4.6CVSS6.1AI score0.00367EPSS
Exploits0References10
CVE
CVE
added 2007/03/19 7:0 p.m.72 views

CVE-2007-0237

CVE-2007-0237 affects the ndeb-binary feature of Lookup (lookup-el). The vulnerability arises from insecure temporary file handling, allowing a local attacker to perform a symlink attack to overwrite arbitrary files. Affected advisories/documentation: Gentoo GLSA 200712-07, GLSA 200712-07 (Gentoo...

4.6CVSS5.9AI score0.00367EPSS
Exploits0References10Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/03/19 12:0 a.m.25 views

Debian DSA-1269-1 : lookup-el - insecure temporary file

Tatsuya Kinoshita discovered that Lookup, a search interface to electronic dictionaries on emacsen, creates a temporary file in an insecure fashion when the ndeb-binary feature is used, which allows a local attacker to craft a symlink attack to overwrite arbitrary files. %NASLMINLEVEL 70300 C...

4.6CVSS5.6AI score0.00367EPSS
Exploits0References2
Debian
Debian
added 2007/03/18 5:37 p.m.38 views

[SECURITY] [DSA 1269-1] New lookup-el packages fix insecure temporary file

-------------------------------------------------------------------------- Debian Security Advisory DSA 1269-1 [email protected] http://www.debian.org/security/ Martin Schulze March 18th, 2007 http://www.debian.org/security/faq -...

4.6CVSS6.2AI score0.00367EPSS
Exploits0
securityvulns
securityvulns
added 2007/03/18 12:0 a.m.48 views

[Full-disclosure] [SECURITY] [DSA 1269-1] New lookup-el packages fix insecure temporary file

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1269-1 [email protected] http://www.debian.org/security/ Martin Schulze March 18th, 2007 http://www.debian.org/security/faq -...

4.6CVSS1.2AI score0.00367EPSS
Exploits0
Oracle linux
Oracle linux
added 2006/11/30 12:0 a.m.55 views

Important kernel security update

2.6.9-42.0.3.0.2 -rebuilt for EL 2.6.9-42.0.3.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.9-42.0.3 -fix mprotect to not allow permission subversion Jason Baron 190073 CVE-2006-2071 -fix sysperfmonctl file descriptor reference count issue Anil Keshavamurthy...

7.8CVSS0.20561EPSS
Exploits7
securityvulns
securityvulns
added 2006/03/08 12:0 a.m.59 views

[Full-disclosure] Remote access to NeuSecure/Netcool backend database via web interface credentials leakage

-= DDSi Security Report =- March 8th, 2006 --------------------------------------------------------------------------------------------------------- Another credentials leak was found in Netcool/NeuSecure Security Information Management platform which leads to remote backend database access with...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2006/02/17 12:0 a.m.37 views

[Full-disclosure] Password disclosure and remote access in Netcool/NeuSecure Security information management platform

Multiple security information disclosure paths and remote access Netcool/NeuSecure Security information management platform . Cleartext-storage of passwords in the configuration file Cleartext reporting of user password in the log Default backend Mysql database user and remote access. Laxed...

7.3AI score
Exploits0
Rows per page
Query Builder