Lucene search
+L

1545 matches found

0day.today
0day.today
added 2009/11/22 12:0 a.m.17 views

PHP MultiPart Form-Data Denial of Service PoC

Exploit for unknown platform in category web applications ============================================= PHP MultiPart Form-Data Denial of Service PoC ============================================= !/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/11/22 12:0 a.m.15 views

PHP MultiPart Form-Data Denial of Service PoC

No description provided by source. !/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print "" print " PHP...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/11/22 12:0 a.m.30 views

PHP - MultiPart Form-Data Denial of Service (PoC)

!/usr/bin/python PHP MultiPart Form-Data Denial of Service proof of concept, 23-10-2009 Bogdan Calin [email protected] import httplib, urllib, sys, string, threading from string import replace from urlparse import urlparse def usage: print "" print " PHP MultiPart Form-Data Denial of Service...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/11/20 12:0 a.m.19 views

PHP file upload DoS

POST request multipart/form-data with a large number of uploaded files causes resources exhaustion...

1.1AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2009/11/20 12:0 a.m.59 views

PHP "multipart/form-data" denial of service

Description ------------ PHP version 5.3.1 was just released. This release contains a patch for a denial of service condition we've reported on 27 October 2009. The problem is related with PHP's handling of RFC 1867 Form-based File Upload in HTML. When you send a POST request to a PHP script with...

7.8AI score
Exploits0
Cent OS
Cent OS
added 2009/10/28 1:44 p.m.80 views

firefox, nspr security update

CentOS Errata and Security Advisory CESA-2009:1530 Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open sour...

10CVSS6.8AI score0.28167EPSS
Exploits55References8
myhack58
myhack58
added 2009/09/20 12:0 a.m.19 views

PHP web alerts, a variety of PHP application\0 filter vulnerability-vulnerability warning-the black bar safety net

Vulnerability description: When the PHP program with the specified PATH, in the PATH of the file Backdoor was added%0 0 can upload any file. Test procedure: NEATPIC PHP directory direct-reading version 1.2.3 This document participants: Vulnerability experiment: Xiaolu,Lilo,SuperHei,Darkness All B...

7AI score
Exploits0
NVD
NVD
added 2009/05/06 5:30 p.m.20 views

CVE-2009-1576

Unspecified vulnerability in Drupal 5.x before 5.17 and 6.x before 6.11, as used in vbDrupal before 5.17.0, allows user-assisted remote attackers to obtain sensitive information by tricking victims into visiting the front page of the site with a crafted URL and causing form data to be sent to an...

4.3CVSS6.1AI score0.01631EPSS
Exploits0References11
Prion
Prion
added 2009/05/06 5:30 p.m.13 views

Cross site request forgery (csrf)

Unspecified vulnerability in Drupal 5.x before 5.17 and 6.x before 6.11, as used in vbDrupal before 5.17.0, allows user-assisted remote attackers to obtain sensitive information by tricking victims into visiting the front page of the site with a crafted URL and causing form data to be sent to an...

4.3CVSS6.7AI score0.01631EPSS
Exploits0References11Affected Software1
seebug.org
seebug.org
added 2009/04/28 12:0 a.m.22 views

VisionLMS 1.0 (changePW.php) Remote Password Change Exploit

No description provided by source. html head titleVisionLMS 1.0 | Change Password/title p VisionLMS 1.0 Remote Password Changebr Coded by Mr.tro0oqybr E-mail [email protected] --- Yemeni hackerbr Greetz All my Friendsbr /p form enctype="multipart/form-data" method="post" name="form"...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/04/28 12:0 a.m.44 views

VisionLms 1.0 - 'changePW.php' Remote Password Change

VisionLMS 1.0 | Change Password VisionLMS 1.0 Remote Password Change Coded by Mr.tro0oqy E-mail [email protected] --- Yemeni hacker Greetz All my Friends kjkjkj-- milw0rm.com 2009-04-28...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/03/20 12:0 a.m.19 views

Breach Security ModSecurity for Apache DoS

Module hangs on incomplete HTTP POST multipart/form-data request...

0.2AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2009/03/19 12:0 a.m.18 views

ModSecurity 2.5.9 - Remote Denial of Service

ModSecurity 2.5.9 - Remote Denial of Service ============================================= INTERNET SECURITY AUDITORS ALERT 2009-001 - Original release date: February 25th, 2009 - Last revised: March 19th, 2009 - Discovered by: Juan Galiana Lara - Severity: 7.8/10 CVSS Base Scored...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2009/03/17 12:0 a.m.20 views

HP LaserJet printers crossite request forgery

Crossite request forgery with form data in conjunctions with insecure default access...

2.9AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2008/12/01 12:0 a.m.33 views

Andy's PHP KnowledgeBase 0.92.9 - Arbitrary File Upload

============================================================== Andy's PHP Knowledgebase Arbitrary File Upload Vulnerability ============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

7.4AI score
Exploits0
NVD
NVD
added 2008/11/17 6:18 p.m.21 views

CVE-2008-3644

Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache...

1.9CVSS5.2AI score0.00324EPSS
Exploits1References9
Prion
Prion
added 2008/11/17 6:18 p.m.19 views

Design/Logic Flaw

Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache...

1.9CVSS5.3AI score0.00324EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2008/11/17 6:0 p.m.27 views

CVE-2008-3644

Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache...

5.1AI score0.00324EPSS
Exploits1References9
CVE
CVE
added 2008/11/17 6:0 p.m.60 views

CVE-2008-3644

Summary: CVE-2008-3644 affects Apple Safari prior to 3.2. The issue is that Safari does not reliably prevent caching of form data in fields with autocomplete disabled, allowing local users to read sensitive information from the browser page cache. The vulnerability is described in the NVD entry f...

1.9CVSS5.1AI score0.00324EPSS
Exploits1References9Affected Software1
Exploit DB
Exploit DB
added 2008/10/29 12:0 a.m.29 views

7Shop 1.1 - Arbitrary File Upload

!/usr/bin/perl use warnings; use strict; use LWP::UserAgent; use HTTP::Request::Common; my $fname = rand1000 . ".php"; int.. yes i know PU! print Spoofing + + Discovered && Coded By: t0pP8uZz + + + + Contact IRC: irc.rizon.net sectalk + + Vendor not notified! Later versions maybe vuln! + + + +...

7.4AI score
Exploits0
Rows per page
Query Builder