Lucene search
K

984 matches found

Rockylinux
Rockylinux
added 2020/04/28 9:3 a.m.18 views

perl-IO-Socket-SSL bug fix and enhancement update

An update is available for perl-IO-Socket-SSL. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

2.1AI score
Exploits0
Packet Storm
Packet Storm
added 2020/02/11 12:0 a.m.139 views

OpenSMTPD 6.6.1 Local Privilege Escalation

Exploit Title: OpenSMTPD 6.6.1 - Local Privilege Escalation Date: 2020-02-02 Exploit Author: Marco Ivaldi Vendor Homepage: https://www.opensmtpd.org/ Version: OpenSMTPD 6.4.0 - 6.6.1 Tested on: OpenBSD 6.6, Debian GNU/Linux bullseye/sid with opensmtpd 6.6.1p1-1 CVE: CVE-2020-7247 !/usr/bin/perl...

10CVSS0.4AI score0.98946EPSS
Exploits27
OSV
OSV
added 2020/01/28 4:15 p.m.22 views

CVE-2014-3230

The libwww-perl LWP::Protocol::https module 6.04 through 6.06 for Perl, when using IO::Socket::SSL as the SSL socket class, allows attackers to disable server certificate validation via the 1 HTTPSCADIR or 2 HTTPSCAFILE environment variable...

5.9CVSS6.7AI score
Exploits0References12
OSV
OSV
added 2020/01/28 4:15 p.m.1 views

DEBIAN-CVE-2014-3230

The libwww-perl LWP::Protocol::https module 6.04 through 6.06 for Perl, when using IO::Socket::SSL as the SSL socket class, allows attackers to disable server certificate validation via the 1 HTTPSCADIR or 2 HTTPSCAFILE environment variable...

5.9CVSS5.8AI score0.01338EPSS
Exploits1References1
CVE
CVE
added 2020/01/28 3:5 p.m.69 views

CVE-2014-3230

CVE-2014-3230 affects the libwww-perl LWP::Protocol::https module (versions 6.04–6.06) when using IO::Socket::SSL as the SSL socket class. The underlying issue is that server certificate validation can be disabled via the HTTPS_CA_DIR or HTTPS_CA_FILE environment variables. Impact described in th...

5.9CVSS5.5AI score0.01338EPSS
Exploits1References5Affected Software1
AlpineLinux
AlpineLinux
added 2020/01/28 3:5 p.m.49 views

CVE-2014-3230

The libwww-perl LWP::Protocol::https module 6.04 through 6.06 for Perl, when using IO::Socket::SSL as the SSL socket class, allows attackers to disable server certificate validation via the 1 HTTPSCADIR or 2 HTTPSCAFILE environment variable...

5.9CVSS5.7AI score0.01338EPSS
Exploits1
Debian CVE
Debian CVE
added 2020/01/28 3:5 p.m.61 views

CVE-2014-3230

The libwww-perl LWP::Protocol::https module 6.04 through 6.06 for Perl, when using IO::Socket::SSL as the SSL socket class, allows attackers to disable server certificate validation via the 1 HTTPSCADIR or 2 HTTPSCAFILE environment variable...

5.9CVSS5.7AI score0.01338EPSS
Exploits1
OpenVAS
OpenVAS
added 2018/12/10 12:0 a.m.16 views

Perl Modules Detection (Linux/Unix SSH Login)

SSH login-based detection of various installed Perl modules. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

0.3AI score
Exploits0
Saint
Saint
added 2017/02/16 12:0 a.m.83 views

HP Smart Storage Administrator command injection

Added: 02/16/2017 CVE: CVE-2016-8523 BID: 95868 Background HP Smart Storage Administrator HP SSA is a web-based application that helps an administrator configure, manage, diagnose, and monitor HP ProLiant Smart Array Controllers and other storage devices such as host bus adapters HBAs and HP...

9CVSS9.2AI score0.1704EPSS
Exploits8
seebug.org
seebug.org
added 2017/02/10 12:0 a.m.207 views

OpenBSD http server - denial of service vulnerability(CVE-2017-5850)

No description provided by source. !/usr/bin/perl -w curl --limit-rate 1 --continue-at 1 --header "Host: www.example.com" http://target/10mb.fs use warnings; use IO::Socket; use Parallel::ForkManager; $numforks = 50; if $ARGV \n"; sub killhttpd print "ATTACKING $ARGV0 using $numforks forks\n"; $p...

7.8CVSS7.5AI score0.17203EPSS
Exploits7
Kitploit
Kitploit
added 2016/12/12 2:11 p.m.63 views

FileBuster - An Extremely Fast And Flexible Web Fuzzer

An extremely fast and flexible web fuzzer. Why another fuzzer? My main motivation was to write a script that would allow me to fuzz a website based on a dictionary but that allowed me to filter words on that dictionary based on regex patterns. This necessity came from the frustration of trying to...

6.9AI score
Exploits0References3
Packet Storm
Packet Storm
added 2016/01/28 12:0 a.m.33 views

Ramui Forum Script 9.0 SQL Injection

Title: Ramui forum script 9.0 SQL Injection Exploit Author: bd0rk Twitter: twitter.com/bd0rk Vendor: http://www.ramui.com/ Download: http://ramui.com/forum-script/download-v9.html Google-Dork: n/a ---Script-Kiddie protection! : Direct SQL-Path: n/a ---Script-Kiddie protection! : Description: I've...

0.7AI score
Exploits0
Saint
Saint
added 2015/03/30 12:0 a.m.32 views

TWiki View Script debugenableplugins Request Parameter Vulnerability

Added: 03/30/2015 CVE: CVE-2014-7236 BID: 70372 OSVDB: 112977 Background TWiki is a web-based collaboration platform written in PERL. Problem The TWiki view script does not properly sanitize the debugenableplugins parameter before using it. Resolution Upgrade to TWiki-6.0.1 or higher, or apply th...

9.1AI score0.55637EPSS
Exploits12
Saint
Saint
added 2015/03/30 12:0 a.m.30 views

TWiki View Script debugenableplugins Request Parameter Vulnerability

Added: 03/30/2015 CVE: CVE-2014-7236 BID: 70372 OSVDB: 112977 Background TWiki is a web-based collaboration platform written in PERL. Problem The TWiki view script does not properly sanitize the debugenableplugins parameter before using it. Resolution Upgrade to TWiki-6.0.1 or higher, or apply th...

6.4CVSS9.1AI score0.55637EPSS
Exploits12
Saint
Saint
added 2015/03/30 12:0 a.m.33 views

TWiki View Script debugenableplugins Request Parameter Vulnerability

Added: 03/30/2015 CVE: CVE-2014-7236 BID: 70372 OSVDB: 112977 Background TWiki is a web-based collaboration platform written in PERL. Problem The TWiki view script does not properly sanitize the debugenableplugins parameter before using it. Resolution Upgrade to TWiki-6.0.1 or higher, or apply th...

9.1CVSS9.1AI score0.55637EPSS
Exploits12
0day.today
0day.today
added 2015/01/10 12:0 a.m.22 views

Palringo 2.8.1 - Stack Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/use/bin/perl Exploit Title: ‫palringo stack buffer overflow Date: 10 January 2015 Vulnerability discovered by: Mr.ALmfL9 Vendor Homepage: http://www.palringo.com/ Software Link: http://www.palringo.com/ar/sa/download/?get=winpc Version:...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2015/01/10 12:0 a.m.21 views

Palringo 2.8.1 - Local Stack Buffer Overflow

!/use/bin/perl Exploit Title: ‫palringo stack buffer overflow Date: 10 January 2015 Vulnerability discovered by: Mr.ALmfL9 Vendor Homepage: http://www.palringo.com/ Software Link: http://www.palringo.com/ar/sa/download/?get=winpc Version: 2.8.1 Tested on: Windows 8.1 use IO::Socket; $port = 8080;...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2014/10/21 12:0 a.m.26 views

Incredible PBX 11 2.0.6.5.0 Remote Command Execution

!/usr/bin/perl Title: Incredible PBX remote command execution exploit Author: Simo Ben youssef Contact: SimoatMorxploitcom Discovered: 1 September 2014 Coded: 21 October 2014 Published: 21 October 2014 MorXploit Research http://www.MorXploit.com Vendor: PBX in a Flash Vendor url:...

0.2AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

Duyuru Scripti Goster.ASP SQL injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22910/info Duyuru Scripti is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting this vulnerability could permit remot...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Flatnuke <= 2.7.1 (level) Remote Privilege Escalation Exploit

No description provided by source. !/usr/bin/env perl Flatnuke = 2.7.1 level Privilege Escalation 0-day Exploit Description ----------- Flatnuke contains one flaw that may allow a user to become administrator. The issue is due to 'sections/noneLogin/section.php' script not properly sanitizing use...

7.1AI score
Exploits0
Rows per page
Query Builder