CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm•added 2009/11/18 12:0 a.m.•74 views

Bitrix Site Manager Remote File Inclusion

Author : Don Tukulesto [email protected] + Date : November 13, 2009 + Homepage : http://www.indonesiancoder.com + Vendor : http://www.bitrixsoft.com/ + Method : Remote File Inclusion + Location : INDONESIA Notes : I know this is an old bugs, but i just write this exploit under perl module...

0.4AI score

seebug.org•added 2009/11/13 12:0 a.m.•63 views

Bitrix Site Manager Multiple Remote File Include Vulnerability

No description provided by source. + Author : Don Tukulesto [email protected] + Date : November 13, 2009 + Homepage : http://www.indonesiancoder.com + Vendor : http://www.bitrixsoft.com/ + Method : Remote File Inclusion + Location : INDONESIA Notes : I know this is an old bugs, but i just...

Cvelist•added 2009/06/16 7:0 p.m.•22 views

CVE-2009-2081

Directory traversal vulnerability in help.php in phpWebThings 1.5.2 and earlier, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the module parameter...

6.6AI score0.02516EPSS

Exploits0References2

NVD•added 2009/04/27 7:30 p.m.•13 views

CVE-2009-1445

Multiple directory traversal vulnerabilities in WebPortal CMS 0.8-beta allow remote attackers to 1 read arbitrary files via directory traversal sequences in the lang parameter to libraries/helpdocs/help.php and 2 include and execute arbitrary local files via directory traversal sequences in the...

7.5CVSS7.3AI score0.0606EPSS

Exploits1References4

Cvelist•added 2009/02/20 1:0 a.m.•17 views

CVE-2008-6201

Directory traversal vulnerability in help.php in the eskuel module in KwsPHP 1.3.456, as available before 20080416, allows remote attackers to execute arbitrary commands via the action parameter. NOTE: some of these details are obtained from third party information...

7.7AI score0.03057EPSS

Exploits0References7

xssed•added 2008/08/15 12:0 a.m.•17 views

Unfixed XSS vulnerability at phpsnips.com

Security researcher GTADarkDude, has submitted on 15/08/2008 a cross-site-scripting XSS vulnerability affecting phpsnips.com, which at the time of submission ranked 1996003 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/08/2008. It is...

0.1AI score

Exploits0References1

0day.today•added 2008/08/12 12:0 a.m.•13 views

BBlog 0.7.6 (mod) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ==================================================== BBlog 0.7.6 mod Remote SQL Injection Vulnerability ==================================================== BBlog 0.7.6 SQL Injection Vuln Vulnpath: /bblogplugins/builtin.help.php Vuln:...

Cvelist•added 2008/08/10 8:0 p.m.•24 views

CVE-2008-3565

Multiple cross-site scripting XSS vulnerabilities in Meeting Room Booking System MRBS 1.2.6 allow remote attackers to inject arbitrary web script or HTML via the area parameter to 1 day.php, 2 week.php, 3 month.php, 4 search.php, 5 report.php, and 6 help.php. NOTE: the provenance of this...

5.7AI score0.01492EPSS

Exploits1References4

exploitpack•added 2008/08/04 12:0 a.m.•14 views

Meeting Room Booking System (MRBS) 1.2.6 - help.php Cross-Site Scripting

Meeting Room Booking System MRBS 1.2.6 - help.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30531/info MRBS Meeting Room Booking Software is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...

6.8AI score

CVE•added 2008/07/30 6:0 p.m.•46 views

CVE-2008-3384

CVE-2008-3384 affects Interact Learning Community Environment Interact 2.4.1. Multiple directory traversal vulnerabilities in help/help.php allow remote attackers to include and execute arbitrary local files via a .. in the (1) module and (2) file parameters. The NVD entry notes a CVSS v2 base sc...

7.5CVSS7.3AI score0.03158EPSS

Exploits1References8Affected Software1

Packet Storm•added 2008/07/28 12:0 a.m.•18 views

talkback-lfi.txt

============================================================================================================= o TalkBack 2.3.5 Local File Inclusion Vulnerability Software : TalkBack version 2.3.5 Vendor : http://www.scripts.oldguy.us/talkback Author : NoGe Contact : nogedotcodeatgmaildotcom...

seebug.org•added 2008/07/28 12:0 a.m.•21 views

TalkBack 2.3.5 (language) Local File Inclusion Vulnerability

No description provided by source. ============================================================================================================= o TalkBack 2.3.5 Local File Inclusion Vulnerability Software : TalkBack version 2.3.5 Vendor : http://www.scripts.oldguy.us/talkback Author : NoGe Conta...

exploitpack•added 2008/07/28 12:0 a.m.•13 views

TalkBack 2.3.5 - Language Local File Inclusion

TalkBack 2.3.5 - Language Local File Inclusion ============================================================================================================= o TalkBack 2.3.5 Local File Inclusion Vulnerability Software : TalkBack version 2.3.5 Vendor : http://www.scripts.oldguy.us/talkback Author ...

Exploit DB•added 2008/07/28 12:0 a.m.•33 views

TalkBack 2.3.5 - 'Language' Local File Inclusion

seebug.org•added 2007/10/20 12:0 a.m.•14 views

ZZ FlashChat <= (help.php) 3.1 Local File Inclusion Vulnerability

No description provided by source. Title : ZZ:FlashChat Local File Inclusion Vulnerability Source : http://download.zehnet.de/index.php Author : d3hydr8 Homepage : http://www.darkc0de.com Vuln: : /chat/admin/inc/help.php?file=LFI...

exploitpack•added 2007/10/19 12:0 a.m.•12 views

ZZ FlashChat 3.1 - help.php Local File Inclusion

ZZ FlashChat 3.1 - help.php Local File Inclusion Title : ZZ:FlashChat Local File Inclusion Vulnerability Source : http://download.zehnet.de/index.php Author : d3hydr8 Homepage : http://www.darkc0de.com Vuln: : /chat/admin/inc/help.php?file=LFI milw0rm.com 2007-10-19...

Exploit DB•added 2007/10/19 12:0 a.m.•33 views

ZZ FlashChat 3.1 - 'help.php' Local File Inclusion

Title : ZZ:FlashChat Local File Inclusion Vulnerability Source : http://download.zehnet.de/index.php Author : d3hydr8 Homepage : http://www.darkc0de.com Vuln: : /chat/admin/inc/help.php?file=LFI milw0rm.com 2007-10-19...