Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8163 matches found

0day.today
0day.todayadded 2014/01/29 12:0 a.m.146 views

Oracle Forms and Reports 11.1 - Remote Exploit

Exploit for jsp platform in category remote exploits require 'uri' require 'open-uri' require 'openssl' OpenSSL::SSL::VERIFYPEER = OpenSSL::SSL::VERIFYNONE def uploadpayloaddest url =...

6.4CVSS9.3AI score0.98695EPSS
Exploits11
exploitpack
exploitpackadded 2014/01/29 12:0 a.m.15 views

Oracle Forms and Reports 11.1 - Arbitrary Code Execution

Oracle Forms and Reports 11.1 - Arbitrary Code Execution...

2.9AI score
Exploits0
Exploit DB
Exploit DBadded 2014/01/29 12:0 a.m.134 views

Oracle Forms and Reports 11.1 - Arbitrary Code Execution

!/usr/bin/env ruby Exploit Title: Oracle Reports 11.1 About: Automated exploit for CVE-2012-3153/CVE-2012-3152 Google Dork: inurl:/reports/rwservlet/ Date: 01/28/2014 Exploit Author: Mekanismen Credits to: @misssudo for initial disclosure Reference: http://netinfiltration.com/ Vendor Homepage:...

9.1CVSS9.3AI score0.98695EPSS
Exploits11
Packet Storm
Packet Stormadded 2014/01/28 12:0 a.m.78 views

Oracle Forms And Reports Database Disclosure

PARSEQUERY http://docs.oracle.com/cd/E1676401/bi.1111/b32121/pbrcla007.htmi640592 Description Use PARSEQUERY to parse an rwservlet query and display the constructed Reports Server command line. Syntax http://yourwebserver/reports/rwservlet/parsequery?server=servername&authid=username/password...

6.4CVSS9.3AI score0.9822EPSS
Exploits10
Tenable Nessus
Tenable Nessusadded 2014/01/19 12:0 a.m.13 views

IBM Forms Viewer Installed

Binary data ibmformsviewerinstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2014/01/19 12:0 a.m.27 views

IBM Forms Viewer Stack Buffer Overflow

The version of IBM Forms Viewer on the remote host is affected by a stack-based buffer overflow in the XDL form fontname tag parser. This can allow an attacker to execute arbitrary code. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid72026; scriptversion"1.8";...

6.8CVSS6.3AI score0.34035EPSS
Exploits5References4
seebug.org
seebug.orgadded 2014/01/16 12:0 a.m.21 views

PHPJabbers Vacation Packages Listing 2.0多个漏洞

No description provided by source. Vacation Packages Listing V2.0 - Multiple Vulnerabilities ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2014/01/16 12:0 a.m.28 views

FreeBSD : chromium -- multiple vulnerabilities (5acf4638-7e2c-11e3-9fba-00262d5ed8ee)

Google Chrome Releases reports : 11 security fixes in this release, including : - 249502 High CVE-2013-6646: Use-after-free in web workers. Credit to Collin Payne. - 326854 High CVE-2013-6641: Use-after-free related to forms. Credit to Atte Kettunen of OUSPG. - 324969 High CVE-2013-6642: Address...

7.5CVSS8.2AI score0.01804EPSS
Exploits5References8
FreeBSD
FreeBSDadded 2014/01/14 12:0 a.m.35 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 11 security fixes in this release, including: 249502 High CVE-2013-6646: Use-after-free in web workers. Credit to Collin Payne. 326854 High CVE-2013-6641: Use-after-free related to forms. Credit to Atte Kettunen of OUSPG. 324969 High CVE-2013-6642: Address bar...

7.5CVSS0.6AI score0.01804EPSS
Exploits5References1
Positive Technologies
Positive Technologiesadded 2014/01/11 12:0 a.m.3 views

PT-2014-2542 · Red Hat +1 · Red Hat Cloudforms +1

Name of the Vulnerable Software and Affected Versions: Red Hat CloudForms 2.0 Management Engine CFME versions 5.1 and earlier ManageIQ Enterprise Virtualization Manager versions 5.0 and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands. This is...

7.5CVSS6.7AI score0.16108EPSS
Exploits3References7
securityvulns
securityvulnsadded 2014/01/09 12:0 a.m.65 views

[CVE-2013-5573] Jenkins v1.523 Default markup formatter permits offsite-bound forms

Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Information CVE reference: CVE-2013-5573 CVSS v2...

4.3CVSS9.3AI score0.05406EPSS
Exploits5
securityvulns
securityvulnsadded 2014/01/09 12:0 a.m.76 views

[CVE-2013-5676] Plain Text Password In SonarQube Jenkins Plugin

Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Information CVE reference: CVE-2013-5573 CVSS v2...

4.3CVSS9.3AI score0.05406EPSS
Exploits9
Exploit DB
Exploit DBadded 2014/01/07 12:0 a.m.23 views

IBM Forms Viewer - Unicode Buffer Overflow (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 'IBM Forms Viewer Unicode Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer...

6.8CVSS7.4AI score0.34035EPSS
Exploits5
0day.today
0day.todayadded 2014/01/04 12:0 a.m.40 views

IBM Forms Viewer Unicode Buffer Overflow

This Metasploit module exploits a stack-based buffer overflow in IBM Forms Viewer. The vulnerability is due to a dangerous usage of strcpy-like function, and occurs while parsing malformed XFDL files, with a long fontname value. This Metasploit module has been tested successfully on IBM Forms...

6.8CVSS6.7AI score0.34035EPSS
Exploits5
Packet Storm
Packet Stormadded 2014/01/03 12:0 a.m.32 views

IBM Forms Viewer Unicode Buffer Overflow

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 'IBM Forms Viewer Unicode Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer...

6.8CVSS0.9AI score0.34035EPSS
Exploits5
Metasploit
Metasploitadded 2013/12/27 4:20 p.m.22 views

IBM Forms Viewer Unicode Buffer Overflow

This module exploits a stack-based buffer overflow in IBM Forms Viewer. The vulnerability is due to a dangerous usage of a strcpy-like function, and occurs while parsing malformed XFDL files containing a long fontname value. This module has been tested successfully on IBM Forms Viewer 4.0 on...

6.8CVSS6.8AI score0.34035EPSS
Exploits5
exploitpack
exploitpackadded 2013/12/18 12:0 a.m.33 views

Jenkins 1.523 - Persistent HTML Code

Jenkins 1.523 - Persistent HTML Code 01. Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Informatio...

4.3CVSS9.6AI score0.05406EPSS
Exploits5
Exploit DB
Exploit DBadded 2013/12/18 12:0 a.m.43 views

Jenkins 1.523 - Persistent HTML Code

Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Information CVE reference: CVE-2013-5573 CVSS v2...

4.3CVSS7AI score0.05406EPSS
Exploits5
RedHat Linux
RedHat Linuxadded 2013/12/17 6:29 p.m.2 views

cumin: missing authorization checks in forms, charts, and csv export widgets

cumin in Red Hat Enterprise MRG Grid 2.4 does not properly enforce user roles, which allows remote authenticated users to bypass intended role restrictions and obtain sensitive information or perform privileged operations via unspecified vectors...

6.5CVSS5.9AI score0.01885EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2013/12/17 6:28 p.m.3 views

cumin: missing authorization checks in forms, charts, and csv export widgets

cumin in Red Hat Enterprise MRG Grid 2.4 does not properly enforce user roles, which allows remote authenticated users to bypass intended role restrictions and obtain sensitive information or perform privileged operations via unspecified vectors...

6.5CVSS5.9AI score0.01885EPSS
Exploits0References4
Rows per page
Query Builder