CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

759 matches found

exploitpack•added 2006/10/12 12:0 a.m.•143 views

MamboLaiThai ExtCalThai 0.9.1 - admin_events.php?CONFIG_EXT[LANGUAGES_DIR] Remote File Inclusion

MamboLaiThai ExtCalThai 0.9.1 - adminevents.php?CONFIGEXTLANGUAGESDIR Remote File Inclusion source: https://www.securityfocus.com/bid/20487/info ExtCalThai is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issue...

Exploit DB•added 2006/09/29 12:0 a.m.•21 views

Buzlas 2006-1 Full - 'Archive_Topic.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/20511/info Buzlas is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...

exploitpack•added 2006/09/24 12:0 a.m.•16 views

ToendaCMS 1.0.4 - Media.php Directory Traversal

ToendaCMS 1.0.4 - Media.php Directory Traversal source: https://www.securityfocus.com/bid/20170/info toendaCMS is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to access sensitive...

exploitpack•added 2006/09/13 12:0 a.m.•12 views

NextAge Cart - index.php Multiple Cross-Site Scripting Vulnerabilities

NextAge Cart - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/20040/info NextAge Cart is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

Exploit DB•added 2006/09/08 12:0 a.m.•21 views

Vikingboard 0.1b - 'help.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/19916/info Vikingboard is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to steal cookie-based authentication credentials and to launch oth...

exploitpack•added 2006/08/30 12:0 a.m.•12 views

HLstats 1.34 - index.php Multiple Cross-Site Scripting Vulnerabilities

HLstats 1.34 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/19771/info HLstats is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues may help...

Exploit DB•added 2006/08/30 12:0 a.m.•16 views

HLstats 1.34 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/19771/info HLstats is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues may help an attacker steal cookie-based authentication credentials and launch...

securityvulns•added 2006/08/04 12:0 a.m.•46 views

Ruby Safe Level security bypass

"alias" can be exploited to replace safe function, directory access protection bypass. Few potentially dangerous methods are not limited...

Exploits0References2Affected Software1

Symantec•added 2006/07/11 12:0 a.m.•24 views

Microsoft Windows Server Driver Mailslot Remote Heap Buffer Overflow Vulnerability

Description Microsoft Windows Server driver is prone to a remote heap buffer-overflow vulnerability. This issue is due to a failure of the software to properly bounds check user-supplied input prior to copying it to an insufficiently-sized memory buffer. Exploiting this issue allows anonymous,...

Exploits0References5Affected Software6

Exploit DB•added 2006/04/25 12:0 a.m.•25 views

CafeLog B2 0.6.1 Weblog and News Publishing Tool - 'b2mail.php?b2inc' Remote File Inclusion

source: https://www.securityfocus.com/bid/23659/info B2 is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks are...

exploitpack•added 2006/04/19 12:0 a.m.•11 views

xFlow 5.46.11 - index.cgi Multiple Cross-Site Scripting Vulnerabilities

xFlow 5.46.11 - index.cgi Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17614/info xFlow is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in...

Packet Storm•added 2006/03/02 12:0 a.m.•36 views

ArchAngelFlaw.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 KingOfSka - http://www.cpc.info.ms Contro Potere Crew Advisories 5 26/02/2006 http://www.archangelmgt.com/ Archangel Weblog 0.90.02 Admin Authentication Bypass & Remote File Inclusion 1:. Background : Archangel Weblog is a new, full featured weblog...

exploitpack•added 2006/02/15 12:0 a.m.•15 views

GnuPG 1.x - Detached Signature Verification Bypass

GnuPG 1.x - Detached Signature Verification Bypass source: https://www.securityfocus.com/bid/16663/info GnuPG is affected by a detached signature verification-bypass vulnerability because it fails to properly notify scripts that an invalid detached signature was presented and that the verificatio...

0day.today•added 2005/12/01 12:0 a.m.•60 views

Microsoft Windows DTC Remote Exploit (PoC) (MS05-051) (updated)

Exploit for unknown platform in category remote exploits =============================================================== Microsoft Windows DTC Remote Exploit PoC MS05-051 updated =============================================================== / Hard to exploit, isn't it? I have tested it on 10+...

securityvulns•added 2005/08/26 12:0 a.m.•36 views

Astaro Security Linux 6.0 - HTTP CONNECT Access Localhost Weakness

Astaro Security Linux 6.0 - HTTP CONNECT Access Localhost Weakness ================================================================== Product: ======== Astaro Security Linux 6.0 is a network security solution, including a combination of the following security applications: - Stateful inspection...

Packet Storm•added 2005/08/14 12:0 a.m.•27 views

bluecoat7111.txt

Blue Coat Reporter 7.1.1.1 - multiple remote vulnerabilities ============================================================ Blue Coat Reporter ================== "Blue Coat Reporter 7 provides identity-based reporting on Web communications enabling enterprises to evaluate Web policies and manage...

0day.today•added 2005/07/21 12:0 a.m.•32 views

MS Windows Color Management Module Overflow Exploit (MS05-036)

Exploit for unknown platform in category dos / poc ============================================================== MS Windows Color Management Module Overflow Exploit MS05-036 ============================================================== / Author: snooq http://www.redpuffer.net/snooq/web/ Date: 2...

Packet Storm•added 2005/07/13 12:0 a.m.•59 views

sile002adv.txt

---- sile002 advisory + PoC PRODUCT: PHP-Nuke VERSION: 7.5 but others versions maybe either vulnerables VENDOR: http://www.phpnuke.org VULNERABILITY: Multiple vulnerability RISK: Hight Found by: Silentium of Anacron Group Italy date: 02/05/2005 e-mail: anacrongroupitalyatautisticidotorg myhome:...

seebug.org•added 2005/06/15 12:0 a.m.•28 views

eXtropia Shopping Cart web_store.cgi Remote Exploit

No description provided by source. !/usr/bin/perl -w Remote Command Execution Vulnerability In Webstore.cgi SegmentationFault Group Greetz to : Xsupr3mo - failed - Status-x - Stealh - P3S4D3L0 Greetz to : berhooz - nima - ehsan - Unknown OutLaw eutanasia www.ashiyane.com ok setp by setp to work :...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by