Lucene search
K

406 matches found

OpenVAS
OpenVAS
added 2011/01/03 12:0 a.m.21 views

QuickPHP <= 1.10.0 Remote Source Code Disclosure Vulnerability - Active Check

QuickPHP is prone to a remote source code disclosure vulnerability because it fails to properly sanitize user-supplied input. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5AI score
Exploits0References1
0day.today
0day.today
added 2010/08/10 12:0 a.m.29 views

Msxml2.XMLHTTP.3.0 Response Handling Memory Corruption (MS10-051)

Exploit for windows platform in category dos / poc ================================================================= Msxml2.XMLHTTP.3.0 Response Handling Memory Corruption MS10-051 ================================================================= Sources:...

7AI score
Exploits0
securityvulns
securityvulns
added 2010/02/17 12:0 a.m.56 views

Enomaly ECP: Multiple vulnerabilities in VMcasting protocol &amp; implementation.

Enomaly ECP: Multiple vulnerabilities in VMcasting protocol & implementation. Synopsis Enomaly ECP up to and including v3.0.4 is believed to contain an insecure silent update mechanism that could allow a remote attacker to execute arbitrary code as root, and to inject or modify VM workloads for...

0.7AI score
Exploits0
NVD
NVD
added 2009/07/07 11:30 p.m.30 views

CVE-2009-2351

Opera 9.52 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting XSS attacks via vectors related to 1 injecting a Refresh header or 2 specifying the content of a Refresh header, a related issue to...

4.3CVSS5.8AI score0.01709EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2009/03/06 12:0 a.m.25 views

EZ-Blog SQLi Vulnerability (Mar 2009) - Active Check

EZ-Blog is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...

6.8CVSS7.6AI score0.00913EPSS
Exploits1References1
0day.today
0day.today
added 2008/12/08 12:0 a.m.20 views

Neostrada Livebox Router Remote Network Down PoC Exploit

Exploit for unknown platform in category dos / poc ======================================================== Neostrada Livebox Router Remote Network Down PoC Exploit ======================================================== Neostrada Livebox Router Remote Network Down PoC Exploit Author: 0in aka...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.50 views

Solaris 10 (x86) : 124673-20 (deprecated)

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware subcomponent: Web Container. Supported versions that are affected are 9.2.4, 10.0.2, 10.3.5, 10.3.6 and 12.1.1. Easily exploitable vulnerability allows successful unauthenticated network attacks via HTTP. Successful...

5CVSS6.5AI score0.68914EPSS
Exploits9References4
Positive Technologies
Positive Technologies
added 2007/04/10 12:0 a.m.8 views

PT-2007-1146 · Oracle +1 · Oracle Weblogic Server +2

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 10.3.6.0.0 and 12.1.3.0.0 Description: The issue is related to the Oracle WebLogic Server component of Oracle Fusion Middleware, specifically the Web Services subcomponent. It is an easily exploitable...

10CVSS7.1AI score0.99964EPSS
Exploits39References102
Gentoo Linux
Gentoo Linux
added 2006/04/05 12:0 a.m.16 views

Kaffeine: Buffer overflow

Background Kaffeine is a graphical front-end for the xine-lib multimedia library. Description Kaffeine uses an unchecked buffer when fetching remote RAM playlists via HTTP. Impact A remote attacker could entice a user to play a specially-crafted RAM playlist resulting in the execution of arbitrar...

5.1CVSS7.1AI score0.03493EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.19 views

WebHints remote command execution flaw

The remote version of the WebHints scripts is vulnerable to remote command execution flaw through the script SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...

7.5CVSS7AI score0.09609EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.19 views

Xeneo Web Server %A DoS Vulnerability

It was possible to crash the remote Xeneo web server by requesting a malformed URL ending with /%A or /% SPDX-FileCopyrightText: 2003 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

5CVSS6.7AI score0.03236EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.14 views

Argosoft HTTP GET Request Saturation Remote DoS

Binary data 2176.prm...

7.3AI score
Exploits0References1
securityvulns
securityvulns
added 2004/06/10 12:0 a.m.42 views

Cisco Security Advisory: Cisco CatOS Telnet, HTTP and SSH Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco CatOS Telnet, HTTP and SSH Vulnerability Revision 1.0 For Public Release 2004 June 9 at 1600 UTC GMT ---------------------------------------------------------------------- Contents Summary Affected Products Details Impac...

Exploits0
NVD
NVD
added 2003/12/31 5:0 a.m.12 views

CVE-2003-1269

AN HTTP 1.41e allows remote attackers to obtain the root web server path via an HTTP request with a long argument to a script, which leaks the path in an error message...

5CVSS6.6AI score0.02078EPSS
Exploits0References3
NVD
NVD
added 2003/12/31 5:0 a.m.16 views

CVE-2003-1270

AN HTTP 1.41e allows remote attackers to cause a denial of service borken pipe via an HTTP request to aux.cgi with a long argument, possibly triggering a buffer overflow or MS-DOS device vulnerability...

5CVSS7.3AI score0.01389EPSS
Exploits1References2
securityvulns
securityvulns
added 2002/09/02 12:0 a.m.19 views

XSS in Null HTTPd

Null HTTPd is a simple HTTP server that runs on Win32/Unix systems. It is quite basic, but offers good CGI support. A vulnerability in Null HTTPd may allow cross-site scripting via a 404 page: http://localhost/a?x=SCRIPTalertdocument.URL/SCRIPT You have to place this in the query string so that i...

Exploits0
CVE
CVE
added 2002/08/31 4:0 a.m.157 views

CVE-2002-1078

Affects Abyss Web Server 1.0.3. The vulnerability allows remote attackers to trigger directory listing by sending an HTTP GET request that ends with a large sequence of / characters. The underlying cause is not detailed in the provided documents beyond the request construction; the impact is expo...

5CVSS7AI score0.02759EPSS
Exploits1References4Affected Software1
securityvulns
securityvulns
added 2002/07/08 12:0 a.m.20 views

MacOS X SoftwareUpdate Vulnerability

---------------------------------------------------------------------------- MacOS X SoftwareUpdate Vulnerability. ---------------------------------------------------------------------------- Date: July 6, 2002 Version: MacOS 10.1.X and possibly 10.0.X Problem: MacOS X SoftwareUpdate connects to...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2002/06/12 12:0 a.m.24 views

Microsoft SQL Server 2000 - &#039;SQLXML&#039; Buffer Overflow (PoC)

source: https://www.securityfocus.com/bid/5004/info SQLXML is a component of SQL Server 2000, which enables SQL servers to receive and send database queries via XML Extensible Markup Language format. Such queries can be sent using various methods of communication, one of which is via HTTP. SQLXML...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2001/06/27 12:0 a.m.61 views

Cisco IOS 11.x/12.x - HTTP Configuration Arbitrary Administrative Access (4)

source: https://www.securityfocus.com/bid/2936/info IOS is router firmware developed and distributed by Cisco Systems. IOS functions on numerous Cisco devices, including routers and switches. It is possible to gain full remote administrative access on devices using affected releases of IOS. By...

7AI score
Exploits0
Rows per page
Query Builder