Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1915 matches found

0day.today
0day.todayadded 2012/01/02 12:0 a.m.28 views

WSN Links Script 2.3.4 SQL Injection Vulnerabilitiy

Exploit for php platform in category web applications Exploit Title: WSN Links Script SQL Injection Vulnerabilitiy Google Dork: "Powered by WSN Links" Date: 1/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link:...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2012/01/01 12:0 a.m.27 views

PHP-X-Links SQL Injection

Exploit Title: Php-X-Links Script SQL Injection Vulnerabilitiy Google Dork: "Powered by Php-X-Links" Date: 1/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Version: All Version Category:: webapps Security Risk:: High Tested on: GNU/Linux Ubuntu - Windows...

0.1AI score
Exploits0
Packet Storm
Packet Stormadded 2012/01/01 12:0 a.m.21 views

Readmore Systems SQL Injection

Exploit Title: Readmore Systems Script SQL Injection Vulnerability Google Dork: Website Powered By ReadMore Systems Date: 16/12/2011 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: http://readmoresystems.com Version: All Version Security Risk::High...

0.4AI score
Exploits0
Packet Storm
Packet Stormadded 2012/01/01 12:0 a.m.20 views

wsCMS Cross Site Scripting / SQL Injection

Exploit Title: wsCMS alert/farbodmahini/ www.wbnb-fanb.ca/search.php?search=alert/farbodmahini/ www.gowanbrae.ca/search.php?search=alert/farbodmahini/ Special Thanks : Mehdi.H4ckcity-2MzRp-Mikili-M.Prince-Bl4ck.Viper-iC0d3R- IrIsT-K0242-P0W3RFU7-Mr.M4st3r-HigherSense ,... GreetZ : All H4ckCity...

0.4AI score
Exploits0
Packet Storm
Packet Stormadded 2012/01/01 12:0 a.m.20 views

jPORTAL 2 SQL Injection

Exploit Title: jPORTAL 2 SQL Injection Vulnerabilitiy Google Dork: "powered by jPORTAL 2" Date: 8/12/2011 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: http://jportal2.com/ Version: All Version Security Risk::High Tested on: GNU/Linux Ubuntu -...

0.3AI score
Exploits0
Packet Storm
Packet Stormadded 2012/01/01 12:0 a.m.15 views

PHPB2B Cross Site Scripting

Exploit Title: PHPB2B Cross Site Scripting Vulnerabilitiy Google Dork: "Powered by PHPB2B" Date: 1/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: www.phpb2b.com Version: All Version Category:: webapps Security Risk:: Low Tested on: GNU/Linu...

Exploits0
Packet Storm
Packet Stormadded 2012/01/01 12:0 a.m.21 views

WebSAT Blind SQL Injection

Exploit Title: WebSAT Blind SQL Injection Vulnerabilitiy Google Dork: "powered by WebSAT™" Date: 1/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: www.off-ice.com.au Version: All Version Category:: webapps Security Risk:: High Tested on:...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2012/01/01 12:0 a.m.29 views

WordPress LivePHP Cross Site Scripting

Exploit Title: Wordpress wp-livephp plugin Cross-Site Scripting Vulnerability Google Dork: "Powered by Wordpress" Date: 25/12/2011 Author: H4ckCity Security Team Discovered By: Am!r IrIsT Home: WwW.H4ckCity.Org Software Link: http://wordpress.org/extend/plugins/wp-livephp/ Version: All Version...

Exploits0
Packet Storm
Packet Stormadded 2011/12/31 12:0 a.m.22 views

WordPress Whois Search Cross Site Scripting

| Exploit Title: Wordpress whois search Cross-Site Scripting Vulnerability Google Dork: "inurl:wp-content/plugins/wp-whois/" Date: 31/12/2011 Author:||Atmon3r || Discovered By: Atmon3r Software Link: http://wordpress.org/extend/plugins/wordpress-whois-search/ Version: All Version Security Risk::...

Exploits0
Packet Storm
Packet Stormadded 2011/12/31 12:0 a.m.32 views

EducationSansar SQL Injection

Exploit Title: EducationSansar SQL Injection Vulnerability Google Dork: Powered by: EducationSansar.com Date: 30/12/2011 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: http://www.educationsansar.com Version: All Version Security Risk::High Tested...

0.3AI score
Exploits0
Packet Storm
Packet Stormadded 2011/12/30 12:0 a.m.33 views

Rapidleech Cross Site Scripting

Exploit Title: Rapidleech alert/farbodmahini/ and click on Transload files. Demo: http://www.gigaleecher.com/audl.php http://aeon.zonyx.tv/audl.php Special Thanks : Mehdi.H4ckcity-2MzRp-Mikili-M.Prince-Bl4ck.Viper-iC0d3R- nitrojen90-K0242-kingcope-Mr.M4st3r , ... GreetZ : All H4ckCity Member - BH...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2011/12/30 12:0 a.m.31 views

WordPress Facebook Page Promoter Lightbox Cross Site Scripting

Exploit Title: Wordpress facebook-page-promoter-lightbox plugin Cross-Site Scripting Vulnerability Google Dork: "Powered by Wordpress" Date: 25/12/2011 Author: H4ckCity Security Team Discovered By: Am!r IrIsT Home: WwW.H4ckCity.Org Software Link:...

0.3AI score
Exploits0
Packet Storm
Packet Stormadded 2011/12/29 12:0 a.m.24 views

Neturf Cross Site Scripting

Exploit Title: Neturf Cross Site Scripting Vulnerabilitiy Google Dork: Web Application Powered by: Neturf Date: 27/12/2011 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: http://www.neturf.com/ Version: All Version Security Risk:: Low Tested on:...

Exploits0
0day.today
0day.todayadded 2011/12/16 12:0 a.m.39 views

Readmore Systems Script SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Readmore Systems Script SQL Injection Vulnerability Google Dork: Website Powered By ReadMore Systems Date: 16/12/2011 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link:...

7.1AI score
Exploits0
UbuntuCve
UbuntuCveadded 2011/12/15 3:57 a.m.40 views

CVE-2011-4339

ipmievd aka the IPMI event daemon in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux RHEL 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this fil...

3.6CVSS6AI score0.00061EPSS
Exploits0References1
Prion
Prionadded 2011/12/15 3:57 a.m.20 views

Code injection

ipmievd aka the IPMI event daemon in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux RHEL 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this fil...

3.6CVSS6.6AI score0.00061EPSS
Exploits0References15Affected Software1
Cvelist
Cvelistadded 2011/12/15 2:0 a.m.21 views

CVE-2011-4339

ipmievd aka the IPMI event daemon in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux RHEL 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this fil...

6AI score0.00061EPSS
Exploits0References15
CVE
CVEadded 2011/12/15 2:0 a.m.83 views

CVE-2011-4339

OpenIPMI’s ipmievd daemon (as used by ipmitool 1.8.11 on RHEL6, Debian, Fedora 16 and other products) creates a world-writable ipmievd.pid (0666), enabling a local user to kill arbitrary processes. CVE-2011-4339 is cited across multiple advisories (e.g., MiracleLinux AXSA entries, Oracle Linux RH...

3.6CVSS6AI score0.00061EPSS
Exploits0References15Affected Software1
UbuntuCve
UbuntuCveadded 2011/12/15 12:0 a.m.26 views

CVE-2011-4613

The X.Org X wrapper xserver-wrapper.c in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY...

4.6CVSS5.9AI score0.00084EPSS
Exploits3References2
0day.today
0day.todayadded 2011/12/11 12:0 a.m.28 views

jPORTAL 2 (comment.php id) Remote SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: jPORTAL 2 SQL Injection Vulnerabilitiy Google Dork: "powered by jPORTAL 2" Date: 8/12/2011 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: http://jportal2.com/ Version: All Versio...

7.1AI score
Exploits0
Rows per page
Query Builder