CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2143 matches found

exploitpack•added 2008/09/05 12:0 a.m.•17 views

AWStats Totals 1.14 - AWStatstotals.php Remote Code Execution

AWStats Totals 1.14 - AWStatstotals.php Remote Code Execution ?php / Remote Execution Exploit for AWStats Totals vulnerability Interactive Shell Version 2 Updated 05/09/08: The exploit now works with magic quotes on or off Author: Ricardo Almeida email: ricardojbaataeiouDoTpt Greetz The hacker...

0.1AI score

Exploits0

Packet Storm•added 2008/09/04 12:0 a.m.•34 views

awstats-exec.txt

\n"; arrayshift$argv; $host = $argv0; Start the interactive shell while1 fwriteSTDOUT, "shell: "...

7.4AI score

Exploits0

seebug.org•added 2008/08/22 12:0 a.m.•16 views

Sun Solaris 'namefs' Kernel Local Privilege Escalation Vulnerability

Sun Solaris也容易给当地的特权升级的漏洞。本地攻击者可以利用这个问题上执行任意代码与内核级的特权。成功利用这个问题将导致被完全控制。 Sun Solaris 9x86 Sun Solaris 9 Sun Solaris 8x86 Sun Solaris 8 Sun Solaris 10.0x86 Sun Solaris 10.0 Avaya Interactive Response 3.0 Avaya Interactive Response 2.0 Avaya CMS Server 13.0 Avaya CMS Server 14.1 Avaya CMS Server 14...

7.1AI score

Exploits0

seebug.org•added 2008/08/22 12:0 a.m.•15 views

Sun Solaris 'snoop(1M)' Utility Multiple Remote Vulnerabilities

The Solaris 'snoop1M' network utility is prone to multiple remote vulnerabilities, including: - Multiple stack-based buffer-overflow vulnerabilities - Multiple format-string vulnerabilities Exploiting these issues will allow attackers to execute arbitrary code with the privileges of the 'nobody'...

8.1AI score

Exploits0

seebug.org•added 2008/08/22 12:0 a.m.•11 views

Sun Solaris 'sendfilev()' Local Denial of Service Vulnerability

Solaris 'sendfilev' 系统调用造成了本地拒绝服务漏洞。攻击者可以利用这个问题引发系统挂起，导致在一个拒绝服务。这个问题影响的Solaris 10和OpenSolaris之前的版本 Sun Solaris 10x86 Sun Solaris 10 Sun OpenSolaris build snv95 Sun OpenSolaris build snv92 Sun OpenSolaris build snv91 Sun OpenSolaris build snv90 Sun OpenSolaris build snv89 Sun OpenSolaris build...

7.1AI score

Exploits0

seebug.org•added 2008/08/22 12:0 a.m.•17 views

Sun Solaris Platform Information and Control Library picld(1M) Local Denial of S

The Sun Solaris Platform Information and Control Library daemon 'picld1M' is prone to a local denial-of-service vulnerability. A local unprivileged attacker can exploit this issue to disable system monitoring and prevent proper operations of certain system utilities, resulting in a...

6.7AI score

Exploits0

CVE•added 2008/08/04 10:0 a.m.•236 views

CVE-2003-1562

MODE C CVE-2003-1562 refers to a race condition in sshd/OpenSSH 3.6.1p2 and earlier, where with PermitRootLogin disabled and using PAM keyboard-interactive authentication, sshd does not insert a delay after a root password attempt. This timing discrepancy could enable remote attackers to infer wh...

7.6CVSS6.7AI score0.00802EPSS

Exploits9References6Affected Software1

seebug.org•added 2008/06/28 12:0 a.m.•18 views

Orca 2.0 (params.php) Remote File Inclusion Vulnerability

No description provided by source. Orca - Interactive Forum Script Remote File Inclusion Vulnerability Discovered by : Ciph3r MAIL : [email protected] SP tanx4: Iranian hacker & Kurdish security TEAM sp TANX2: milw0rm.com & google.com & sourceforge.net CMS download :...

7.1AI score

Exploits0

Packet Storm•added 2008/06/28 12:0 a.m.•28 views

orca-rfi.txt

Orca - Interactive Forum Script Remote File Inclusion Vulnerability Discovered by : Ciph3r MAIL : [email protected] SP tanx4: Iranian hacker & Kurdish security TEAM sp TANX2: milw0rm.com & google.com & sourceforge.net CMS download :...

7.4AI score

Exploits0

Exploit DB•added 2008/06/26 12:0 a.m.•36 views

Orca 2.0/2.0.2 - 'params.php?gConf[dir][layouts]' Remote File Inclusion

7.4AI score

Exploits0

0day.today•added 2008/06/26 12:0 a.m.•32 views

Orca 2.0/2.0.2 (params.php) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications =============================================================== Orca 2.0/2.0.2 params.php Remote File Inclusion Vulnerability =============================================================== Orca - Interactive Forum Script Remote File...

7.1AI score

Exploits0

exploitpack•added 2008/06/26 12:0 a.m.•27 views

Orca 2.02.0.2 - params.php?gConf[dir][layouts] Remote File Inclusion

Orca 2.02.0.2 - params.php?gConfdirlayouts Remote File Inclusion Orca - Interactive Forum Script Remote File Inclusion Vulnerability Discovered by : Ciph3r MAIL : [email protected] SP tanx4: Iranian hacker & Kurdish security TEAM sp TANX2: milw0rm.com & google.com & sourceforge.net CMS...

0.5AI score

Exploits0

seebug.org•added 2008/04/29 12:0 a.m.•22 views

WordPress wpSS插件ss_id参数SQL注入漏洞

BUGTRAQ ID: 28894 wpSS是WordPress中所使用的电子表格插件，允许在WordPress博客中嵌入交互式的电子表格。 wpSS插件的wpSS/ssload.php文件中没有正确地过滤对ssid参数的数便用在了SQL查询中： ssload.php $id = $GET'ssid'; .... ssfunctions.php: function ssload $id, $plain=FALSE .... if $wpdb-query"SELECT FROM $tablename WHERE id='$id'" == 0...

6.9AI score

Exploits0

Prion•added 2008/04/16 5:5 p.m.•10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in login.php in Omnistar Interactive OSI Affiliate allow remote attackers to inject arbitrary web script or HTML via the 1 login, 2 profile, 3 profile2, and 4 ref parameters...

4.3CVSS6.1AI score0.00475EPSS

Exploits0References7

NVD•added 2008/04/16 5:5 p.m.•8 views

CVE-2008-1850

4.3CVSS5.8AI score0.00475EPSS

Exploits0References7

CVE•added 2008/04/16 5:0 p.m.•31 views

CVE-2008-1850

The CVE-2008-1850 entry describes multiple cross-site scripting (XSS) vulnerabilities in the login.php component of Omnistar Interactive OSI Affiliate. The underlying issue is improper handling of user-supplied parameters (login, profile, profile2, ref), allowing remote attackers to inject arbitr...

4.3CVSS5.8AI score0.00475EPSS

Exploits0References7Affected Software1

Cvelist•added 2008/04/16 5:0 p.m.•12 views

CVE-2008-1850

5.8AI score0.00475EPSS

Exploits0References7

Metasploit•added 2008/04/03 9:36 a.m.•46 views

Windows Command, Double Reverse TCP Connection (via Perl)

Creates an interactive shell via perl This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 148 include Msf::Payload::Single include Msf::Sessions::CommandShellOptions def initializeinfo...

7.1AI score

Exploits0

NVD•added 2008/02/22 11:44 p.m.•11 views

CVE-2008-0917

Cross-site scripting XSS vulnerability in Tor World Tor Search 1.1 and earlier, I-Navigator 4.0, Mobile Frontier 2.1 and earlier, Diary.cgi aka Quotes of the Day 1.5 and earlier, Tor News 1.21 and earlier, Simple BBS 1.3 and earlier, Interactive BBS 1.3 and earlier, Tor Board 1.1 and earlier,...

4.3CVSS5.6AI score0.00285EPSS

Exploits0References4

Prion•added 2008/02/22 11:44 p.m.•14 views

Cross site scripting

4.3CVSS5.9AI score0.00285EPSS

Exploits0References4Affected Software10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by