CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

332 matches found

OSV•added 2009/09/21 7:30 p.m.•9 views

CVE-2009-3272

Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safari 3.2.3, and possibly other versions before 4.1.2, allows remote attackers to cause a denial of service application crash via JavaScript code that calls eval on a long string composed of A/ sequences...

Exploits0References4

securityvulns•added 2009/09/04 12:0 a.m.•82 views

Adobe Acrobat and Reader Collab 'getIcon()' JavaScript Method Exploit and Report (CVE-2009-0927)

Hi everyone, I published some work I did concerning the adobe reader Collab.getIcon buffer overflow. You can find the package exploit/report/payload on: http://www.coromputer.net/CVE-2009-0927package.zip Cheers, Ivan Rodriguez Almuina kralor - HiC && Crpt...

9.3CVSS1.3AI score0.96598EPSS

exploitpack•added 2009/08/24 12:0 a.m.•24 views

Arcade Trade Script 1.0b - (Authentication Bypass) Insecure Cookie Handling

Arcade Trade Script 1.0b - Authentication Bypass Insecure Cookie Handling ====================================================================== Â» Script : Arcade Trade Script v.1.0 Insecure Cookie Handling Vuln Â» Language : php Â» Script site : http://www.arcadetradescript.com Â» Founder:...

Packet Storm•added 2009/08/18 12:0 a.m.•25 views

Microsoft Internet Explorer Crash

Irfan Asrar Set Attribute Crash : Tested with IE7 Vista IE6 XP2 IE6 XP3 function c var li = document.createElement"li"; li.setAttribute"value", "1"; li.value = "1";...

0day.today•added 2009/08/07 12:0 a.m.•22 views

Logoshows BBS 2.0 (DD/ICH) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ========================================================== Logoshows BBS 2.0 DD/ICH Multiple Remote Vulnerabilities ========================================================== Logoshows BBS 2.0 DD vuln:...

0day.today•added 2009/05/14 12:0 a.m.•20 views

MRCGIGUY Message Box 1.0 Insecure Cookie Handling Vuln

Exploit for unknown platform in category web applications ====================================================== MRCGIGUY Message Box 1.0 Insecure Cookie Handling Vuln ====================================================== --------------------------------------------------------------- Message Bo...

0day.today•added 2009/05/14 12:0 a.m.•18 views

MRCGIGUY Amazon Directory 1.0/2.0 Insecure Cookie Handling Vuln

Exploit for unknown platform in category web applications =============================================================== MRCGIGUY Amazon Directory 1.0/2.0 Insecure Cookie Handling Vuln ===============================================================...

Packet Storm•added 2009/05/14 12:0 a.m.•27 views

D-Link CAPTCHA Bypass

D-Link Captcha Partially Broken May 12th, 2009 Hack-A-Day reported on D-Link’s new captcha system designed to protect against malware that alters DNS settings by logging in to the router using default administrative credentials. I downloaded the new firmware onto our DIR-628 to take a look, and...

seebug.org•added 2009/05/14 12:0 a.m.•13 views

MRCGIGUY Message Box 1.0 Insecure Cookie Handling Vuln

No description provided by source. --------------------------------------------------------------- --------------------------------------------------------------- Message Box Version 1.0 Insecure Cookie Handling Vulnerability --------------------------------------------------------------- Founder...

Packet Storm•added 2009/05/05 12:0 a.m.•23 views

PHP Site Lock 2.0 Insecure Cookie

-------------------------------------+ Homepage:http://www.kalptarudemos.com Product: PHP Site Lock 2.0 home:www.h4ckf0ru.com ------------------------------------- PHP Site Lock 2.0 Insecure Cookie Handling Vuln ------------------------------------- Exploit: --------...

exploitpack•added 2009/04/17 12:0 a.m.•20 views

Online Email Manager - Insecure Cookie Handling

Online Email Manager - Insecure Cookie Handling Online Email Manager Insecure Cookie Handling Vulnerability Author: Hussin X Home : WwW.IQ-TY.CoM email: darkangelg85atYahooDoTcom script : http://www.esoftpro.com/webscriptsonlineemailmanager.phps DorK : Powered by Online Email Manager exploit:...

Packet Storm•added 2009/02/17 12:0 a.m.•22 views

Grestul SQL Injection

Grestul Sql Injection By Cookie bypass Autore: x0r Email: [email protected] Site: http://w00tz0ne.org Let's Go! \admin\login.php : $username = SafeAddSlashes$POST'username'; $passcode = SafeAddSlashesmd5$POST'passcode'; $time = time; $check = SafeAddSlashes$POST'setcookie'; $query = "SELECT...

0day.today•added 2009/02/03 12:0 a.m.•28 views

Simple Machines Forums (BBCode) Cookie Stealing Vulnerability

Exploit for unknown platform in category web applications ============================================================= Simple Machines Forums BBCode Cookie Stealing Vulnerability ============================================================= Author: Xianur0 BBCode of the smf not filtered properly...

seebug.org•added 2009/02/03 12:0 a.m.•27 views

Simple Machines Forums (BBCode) Cookie Stealing Vulnerability

No description provided by source. Author: Xianur0 BBCode of the smf not filtered properly specified urls: centersize=14pturl=javascript:alert'xss'Saltando Filtro :D.../url/size...

Exploit DB•added 2009/01/24 12:0 a.m.•20 views

NewsCMSLite - Insecure Cookie Authentication Bypass

source: https://www.securityfocus.com/bid/33467/info NewsCMSLite is prone to an authentication-bypass vulnerability because it fails to adequately verify user-supplied input used for cookie-based authentication. Attackers can exploit this vulnerability to gain unauthorized access to the affected...

Exploit DB•added 2008/12/18 12:0 a.m.•24 views

Gobbl CMS 1.0 - Insecure Cookie Handling

--------------------------- Gobbl Cms 1.0 I.Cookie Hand. --------------------------- Autore: x0r Evolution Team Email: [email protected] Demo Site:http://www.gobbl.net/ --------------------------- Bug In: \admin\auth.php ? include '../config.php'; $user = $POST'user'; $pass = $POST'pass'; if...

0day.today•added 2008/11/08 12:0 a.m.•16 views

V3 Chat - Profiles/Dating Script 3.0.2 Insecure Cookie Handling Vuln

Exploit for unknown platform in category web applications ==================================================================== V3 Chat - Profiles/Dating Script 3.0.2 Insecure Cookie Handling Vuln ==================================================================== + V3 Chat - Profiles/Dating Scri...

Packet Storm•added 2008/10/31 12:0 a.m.•23 views

absolutepodcast-cookie.txt

| | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Discovered By : Hakxer Home : Www.educ-up.com Type Gap : Insecure cookie handling script : Absloute Podcast V 1.0 see script http://www.xigla.com/apodcasting/demo.htm Greetz...

Packet Storm•added 2008/10/23 12:0 a.m.•22 views

aflog-insecure.txt

aflog 1.01 Multiple Insecure Cookie Handling Vulnerabilies url: http://www.aflog.org/download.php Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Author will be not...

exploitpack•added 2008/10/10 12:0 a.m.•12 views

Konqueror 3.5.9 - load Remote Crash

Konqueror 3.5.9 - load Remote Crash document.load''; milw0rm.com 2008-10-10...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by