Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

188 matches found

securityvulns
securityvulnsadded 2000/12/13 12:0 a.m.30 views

Insecure input validation in ad.cgi

Hi, ad.cgi from "Scripts by Tammie's HUSBAND" contains an insecure input validation vulnerability. Information on ad.cgi is available at: http://www.conservatives.net/atheist/scripts/index.html?ads ----code snippet---- $filename = "$FORM'file'"; $datafile = "$basedir" . "$filename"; ... open INFO...

0.3AI score
Exploits0
Packet Storm
Packet Stormadded 2000/11/14 12:0 a.m.22 views

new.phf.txt

PROBLEM: ... mainint argc, char argv entry entries64; ... forx=0;cl0 != '\0';x++ m=x; getwordentriesx.val,cl,'&'; plustospaceentriesx.val; unescapeurlentriesx.val; getwordentriesx.name,entriesx.val,'='; ... The for' loop does not verify that x is less than 64. The entries' struct being a flat dat...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2000/07/12 12:0 a.m.16 views

CVSWeb Developer CVSWeb 1.80 - Insecure Perl 'open' Code Execution

source: https://www.securityfocus.com/bid/1469/info Cvsweb 1.80 makes an insecure call to the perl OPEN function, providing attackers with write access to a cvs repository the ability to execute arbitrary commands on the host machine. The code that is being exploited here is the following: open$f...

7AI score
Exploits0
Exploit DB
Exploit DBadded 2000/04/23 12:0 a.m.18 views

LCDProc 0.4 - Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/1131/info A vulnerability exists in the server portion of version 0.4 of the LCDProc package. Several remote buffer overflows exist that could allow a remote attacker to corrupt memory and execute arbitrary code. As listed in the Bugtraq posting...

7.4AI score
Exploits0
exploitpack
exploitpackadded 1999/08/25 12:0 a.m.12 views

Netscape Enterprise Server 3.6 SP2FastTrack Server 2.0.1 - GET

Netscape Enterprise Server 3.6 SP2FastTrack Server 2.0.1 - GET source: https://www.securityfocus.com/bid/1024/info A GET request containing over 4080 characters will cause the httpd.exe process to crash within Netscape Enterprise Server 3.6, resulting in a Dr. Watson error. Arbitrary code can be...

0.3AI score
Exploits0
Packet Storm
Packet Stormadded 1999/08/17 12:0 a.m.19 views

nftp-bof.txt

Date: Mon, 16 Nov 1998 18:02:43 -0700 Reply-To: Eric Wanner Sender: Bugtraq List From: Eric Wanner Subject: nftp vulnerability fwd Content-Type:MULTIPART/MIXED; nftp is a shareware ftp program available at ftp://crydee.sai.msu.su/pub/comp/software/asv/nftp/ that is becoming more and more widely...

Exploits0
exploitpack
exploitpackadded 1996/10/30 12:0 a.m.22 views

SGI IRIX 6.2 - SpaceWare

SGI IRIX 6.2 - SpaceWare source: https://www.securityfocus.com/bid/471/info The SpaceBall game, shipped with Irix 6.2 from Silicon Graphics contains a security hole which could result in the compromise of the root account. By blindly taking the contents of the $HOSTNAME variable, and not placing...

7.4AI score
Exploits0
exploitpack
exploitpackadded 1996/06/01 12:0 a.m.10 views

suid_perl 5.001 - Command Execution

suidperl 5.001 - Command Execution !/usr/bin/suidperl -U $ENVPATH="/bin:/usr/bin"; $=0;$=0; exec"/bin/bash"; milw0rm.com 1996-06-01...

1AI score
Exploits0
Rows per page
Query Builder