Lucene search
+L

4938 matches found

OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.13 views

Mambo Site Server XSS and Remote Arbitrary Code Execution Vulnerabilities (Jan 2003) - Active Check

An attacker may use the installed version of Mambo Site Server to perform a cross-site scripting attack on this host or execute arbitrary code through the gallery image uploader under the administrator directory. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpte...

6.8CVSS6.6AI score0.03537EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.17 views

Sendmail 8.8.8 - 8.9.2 Parsing Redirection DoS Vulnerability

The remote Sendmail server, according to its version number, allows remote attackers cause a denial of service by sending messages with a large number of headers. SPDX-FileCopyrightText: 2003 Xue Yong Zhi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

5CVSS6.8AI score0.02427EPSS
Exploits0References1
exploitpack
exploitpack
added 2005/11/02 12:0 a.m.13 views

Simple PHP Blog 0.4 - colors.php Multiple Cross-Site Scripting Vulnerabilities

Simple PHP Blog 0.4 - colors.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/15283/info Simple PHP Blog is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input...

Exploits0
exploitpack
exploitpack
added 2005/11/02 12:0 a.m.20 views

News2Net 3.0 - index.php SQL Injection

News2Net 3.0 - index.php SQL Injection source: https://www.securityfocus.com/bid/15274/info News2Net is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation coul...

Exploits0
Exploit DB
Exploit DB
added 2005/10/27 12:0 a.m.25 views

ATutor 1.x - 'forum.inc.php' Arbitrary Command Execution

source: https://www.securityfocus.com/bid/15221/info ATutor is prone to multiple vulnerabilities. These issues can allow remote attackers to execute arbitrary PHP commands and carry out local file include and cross-site scripting attacks. ATutor 1.5.1-pl1 and prior versions are affected...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/10/26 12:0 a.m.13 views

GCards 1.43 - news.php SQL Injection

GCards 1.43 - news.php SQL Injection source: https://www.securityfocus.com/bid/15216/info gCards is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2005/10/24 12:0 a.m.15 views

Nuked-klaN 1.7 Links Module - link_id SQL Injection

Nuked-klaN 1.7 Links Module - linkid SQL Injection source: https://www.securityfocus.com/bid/15181/info Nuked Klan is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Thes...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2005/10/22 12:0 a.m.26 views

FlatNuke 2.5.x - 'index.php' Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/15172/info FlatNuke is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to execute arbitrary server-side scri...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/10/18 12:0 a.m.12 views

MySource 2.14 - mail.php?PEAR_PATH Remote File Inclusion

MySource 2.14 - mail.php?PEARPATH Remote File Inclusion source: https://www.securityfocus.com/bid/15133/info MySource is prone to multiple remote and local file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

7.5AI score
Exploits0
exploitpack
exploitpack
added 2005/10/18 12:0 a.m.13 views

MySource 2.14 - Span.php?PEAR_PATH Remote File Inclusion

MySource 2.14 - Span.php?PEARPATH Remote File Inclusion source: https://www.securityfocus.com/bid/15133/info MySource is prone to multiple remote and local file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2005/10/18 12:0 a.m.18 views

MySource 2.14 - 'insert_table.php?bgcolor' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15132/info MySource is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in t...

7.4AI score
Exploits0
myhack58
myhack58
added 2005/10/11 12:0 a.m.17 views

Talking about after the invasion of the hardware destruction method-vulnerability warning-the black bar safety net

| Internetthe field of security, one foot magic ridge, and then strong fortress also has his deadly colony, hackersarttoday, was born many kinds of means of attack, and in front of the defense method is endless, but whether it is anti-both, all overlooked an important aspect-that is, hardware...

6.5AI score
Exploits0
Exploit DB
Exploit DB
added 2005/10/08 12:0 a.m.49 views

Cyphor 0.19 - 'lostpwd.php?nick' SQL Injection

source: https://www.securityfocus.com/bid/15047/info Cyphor is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data. Other attacks are also possible. ?php ---...

7AI score
Exploits0
exploitpack
exploitpack
added 2005/10/07 12:0 a.m.9 views

Oracle HTML DB 1.51.6 - f?p Cross-Site Scripting

Oracle HTML DB 1.51.6 - f?p Cross-Site Scripting source: https://www.securityfocus.com/bid/15031/info Oracle HTML DB is prone to cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context...

6.7AI score
Exploits0
Exploit DB
Exploit DB
added 2005/09/30 12:0 a.m.28 views

PluggedOut CMS 0.4.8 - 'contenttypeid' SQL Injection

source: https://www.securityfocus.com/bid/14426/info PluggedOut CMS is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data. Other attacks are also possible...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2005/09/19 12:0 a.m.20 views

vBulletin 1.0.1 lite/2.x/3.0 - '/admincp/modlog.php?orderby' Cross-Site Scripting

source: https://www.securityfocus.com/bid/14874/info vBulletin is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/08/21 12:0 a.m.10 views

Alkalay.Net (Multiple Scripts) - Remote Command Execution

Alkalay.Net Multiple Scripts - Remote Command Execution source: https://www.securityfocus.com/bid/14893/info Multiple Alkalay.net scripts are prone to arbitrary remote command execution vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2005/08/20 12:0 a.m.15 views

Land Down Under 800801 - links.php?w SQL Injection

Land Down Under 800801 - links.php?w SQL Injection source: https://www.securityfocus.com/bid/14618/info Land Down Under is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2005/08/20 12:0 a.m.15 views

Land Down Under 800 - journal.php?w Cross-Site Scripting

Land Down Under 800 - journal.php?w Cross-Site Scripting source: https://www.securityfocus.com/bid/14619/info Land Down Under is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2005/08/17 12:0 a.m.13 views

PHPFreeNews 1.40 - searchresults.php Multiple SQL Injections

PHPFreeNews 1.40 - searchresults.php Multiple SQL Injections source: https://www.securityfocus.com/bid/14589/info PHPFreeNews is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL...

0.2AI score
Exploits0
Rows per page
Query Builder