Lucene search
+L

9689 matches found

redhat
redhat
added 2008/08/05 7:58 a.m.4 views

JBossEAP status servlet info leak

JBoss Enterprise Application Platform aka JBossEAP or EAP before 4.2.0.CP03, and 4.3.0 before 4.3.0.CP01, allows remote attackers to obtain sensitive information about "deployed web contexts" via a request to the status servlet, as demonstrated by a full=true query string...

5CVSS7.4AI score0.47111EPSS
Exploits6References4
securityvulns
securityvulns
added 2008/07/30 12:0 a.m.50 views

Cisco IOS shellcode explanation

Hi, Lots of people have been asking for details about the slightly unorthodox shellcode I used within the IOS FTP exploit, so here goes: .equ vtyinfo, 0x8182da60 //contains a pointer to the VTY info structure .equ terminate, 0x80e4086c lis 4,vtyinfo@ha la 4,vtyinfo@l4 xor 8,8,8 //Clear r8 lwzx...

0.4AI score
Exploits0
nessus
nessus
added 2008/07/28 12:0 a.m.10 views

AIX 530007 : U819262

The remote host is missing AIX PTF U819262 which is related to the security of the package devices.common.IBM.mpio.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

5.5AI score
Exploits0
xssed
xssed
added 2008/07/26 12:0 a.m.8 views

Unfixed XSS vulnerability at www.declanbutler.info

Security researcher doublecheck, has submitted on 26/07/2008 a cross-site-scripting XSS vulnerability affecting www.declanbutler.info, which at the time of submission ranked 7084928 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/09/2008. It...

6.6AI score
Exploits0References1
nvd
nvd
added 2008/07/25 4:41 p.m.20 views

CVE-2008-3315

Multiple cross-site scripting XSS vulnerabilities in Claroline 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the 1 query string to a announcements/messages.php; b lostPassword.php and c profile.php in auth/; d calendar/myagenda.php; e group/group.php; f learningPath.php...

4.3CVSS5.6AI score0.02028EPSS
Exploits1References8
nvd
nvd
added 2008/07/15 10:41 p.m.18 views

CVE-2008-3186

Multiple cross-site scripting XSS vulnerabilities in Chipmunk Blog Blogger allow remote attackers to inject arbitrary web script or HTML via the membername parameter to 1 members.php, 2 comments.php, 3 photos.php, 4 archive.php, or 5 cat.php. NOTE: the provenance of this information is unknown; t...

4.3CVSS5.7AI score0.01218EPSS
Exploits0References2
seebug
seebug
added 2008/07/12 12:0 a.m.21 views

Download Accelerator Plus - DAP 8.x m3u File Buffer Overflow Exploit (c)

No description provided by source. include stdio.h include stdlib.h / DAP 8.x .m3u File BOF C Exploit for XP SP2,SP3 English SecurityFocus Advisory: Download Accelerator Plus DAP is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied inpu...

7.1AI score
Exploits0
redhat
redhat
added 2008/07/02 1:15 p.m.5 views

No title provided

The initrequestinfo function in sapi/cgi/cgimain.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATHTRANSLATED, which might allow remote attackers to execute arbitrary code via a crafted URI...

10CVSS7.6AI score0.10918EPSS
Exploits2References3
seebug
seebug
added 2008/07/01 12:0 a.m.17 views

eSHOP100 (SUB) Remote SQL Injection Vulnerability

No description provided by source. ...:::::eSHOP100 SQL Injection Vulnerbility ::::.... AUTHOR : JuDge AUTHOR Email:[email protected],[email protected] Script WebSite:http://www.eshop100.co.uk Dork:: DescRipTiON: pull customers info from database EX...

7.1AI score
Exploits0
redhat
redhat
added 2008/06/30 3:33 p.m.8 views

mod_perl PerlRun denial of service

PerlRun.pm in Apache modperl before 1.30, and RegistryCooker.pm in modperl 2.x, does not properly escape PATHINFO before use in a regular expression, which allows remote attackers to cause a denial of service resource consumption via a crafted URI...

5CVSS5.8AI score0.10111EPSS
Exploits0References4
redhat
redhat
added 2008/06/30 3:29 p.m.7 views

mod_perl PerlRun denial of service

PerlRun.pm in Apache modperl before 1.30, and RegistryCooker.pm in modperl 2.x, does not properly escape PATHINFO before use in a regular expression, which allows remote attackers to cause a denial of service resource consumption via a crafted URI...

5CVSS5.8AI score0.10111EPSS
Exploits0References4
packetstorm
packetstorm
added 2008/06/30 12:0 a.m.21 views

eshop100-sql.txt

, .ss$$$$$$$$$$s, - $. s$$$$$$$$$$$$$$$$Ss - "$$$$$$$$$$$$$$$$$$o$$$ , - s$$$$$$$$$$$$$$$$$$$$$$$$s, ,s - s$$$$$$$$$"$$$$$$""""$$$$$$"$$$$$, - s$$$$$$$$$$s""$$$$ssssss"$$$$$$$$" - s$$$$$$$$$$' """ss"$"$s"" - s$$$$$$$$$$, """""$ .s$$s - s$$$$$$$$$$$$s,... s$$' - ssss$$$$$$$$$$$$$$$$$$$$s. .$$"$. ,...

7.4AI score
Exploits0
zdt
zdt
added 2008/06/30 12:0 a.m.20 views

eSHOP100 (SUB) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================= eSHOP100 SUB Remote SQL Injection Vulnerability ================================================= - , .ss$$$$$$$$$$s, - $. s$$$$$$$$$$$$$$$$Ss - "$$$$$$$$$$$$$$$$$$o$$$ , -...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/06/30 12:0 a.m.11 views

eSHOP100 - SUB SQL Injection

eSHOP100 - SUB SQL Injection - , .ss$$$$$$$$$$s, - $. s$$$$$$$$$$$$$$$$Ss - "$$$$$$$$$$$$$$$$$$o$$$ , - s$$$$$$$$$$$$$$$$$$$$$$$$s, ,s - s$$$$$$$$$"$$$$$$""""$$$$$$"$$$$$, - s$$$$$$$$$$s""$$$$ssssss"$$$$$$$$" - s$$$$$$$$$$' """ss"$"$s"" - s$$$$$$$$$$, """""$ .s$$s - s$$$$$$$$$$$$s,... s$$' -...

8.6AI score
Exploits0
packetstorm
packetstorm
added 2008/06/28 12:0 a.m.29 views

jokeswebsite-sql.txt

|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/06/26 12:0 a.m.23 views

Easysitenetwork Jokes Complete Website 2.1.3 - jokeid SQL Injection

Easysitenetwork Jokes Complete Website 2.1.3 - jokeid SQL Injection || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection...

0.4AI score
Exploits0
zdt
zdt
added 2008/06/26 12:0 a.m.27 views

Tips Complete Website 1.2.0 (tipid) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== Tips Complete Website 1.2.0 tipid SQL Injection Vulnerability ===============================================================...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2008/06/26 12:0 a.m.44 views

Easysitenetwork Jokes Complete Website 2.1.3 - 'jokeid' SQL Injection

|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/06/26 12:0 a.m.22 views

Riddles Complete Website 1.2.1 - riddleid SQL Injection

Riddles Complete Website 1.2.1 - riddleid SQL Injection || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | |...

0.3AI score
Exploits0
packetstorm
packetstorm
added 2008/06/24 12:0 a.m.17 views

sharecms-sql.txt

============================================================== ShareCMS 0.1 Multiple Remote SQL Injection Vulnerabilities ============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

7.4AI score
Exploits0
Rows per page
Query Builder