CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The httpsrequest function in Snoopy 1.2, as used in products such as 1 MagpieRSS, 2 WordPress, 3 Ampache, and 4 Jinzora, allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTPS URL to an SSL protected web page, which is not properly handled by the fetch function...

7.5CVSS7.8AI score0.17194EPSS

Exploits1References3

seebug.org•added 2014/07/01 12:0 a.m.•14 views

Jinzora <= 2.6 (extras/mt.php) Remote File Include Vulnerability

No description provided by source. ERNE ---- ERNEALiZM ---- BU ASK BiTMEZ---- Jinzora 2.6 - Remote File Include Vulnerabilities site : Www.Hack-Medya.Org Script : http://www.jinzora.com/downloads/j2.6.zip Credits : ERNE Contact : [email protected] Thanks : Liz0zim, Bitter.Melish, D3ngsz, Rmx,...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Jinzora 2.7.5 index.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27876/info Jinzora is prone to multiple HTML-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•9 views

Jinzora 2.7.5 ajax_request.php Multiple Parameter XSS

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

Jinzora 2.7.5 slim.php Multiple Parameter XSS

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•35 views

Jinzora <= 2.1 (media.php) Remote File Include Vulnerability

No description provided by source. Jinzora = 2.1 Remote File Inclusion Download Source : http://www.jinzora.com/downloads/j2.1.tar.gz Found By : k1tk4t - k1tk4t4tnewhack.org Location : Indonesia -- newhackdotorg file ; media.php bugs ; // include classes for extending. requireonce$includepath...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

Jinzora 2.7.5 popup.php Multiple Parameter XSS

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Jinzora <= 2.7 (include_path) Multiple Remote File Include Vulnerabilities

No description provided by source. +------------------------------------------------------------------------------------------- + Jinzora = 2.7 includepath Multiple Remote File Include Vulnerabilities +------------------------------------------------------------------------------------------- +...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•43 views

Jinzora Media Jukebox <= 2.8 (name) Local File Inclusion Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl Jinzora Media Jukebox = 2.8 Local File Inclusion Vulnerability Script site: http://jinzora.com/ ,...

7.1AI score

Exploits0

Prion•added 2009/07/02 10:30 a.m.•13 views

Directory traversal

Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the name parameter...

7.5CVSS7.6AI score0.02392EPSS

Exploits0References1Affected Software1

NVD•added 2009/07/02 10:30 a.m.•9 views

CVE-2009-2313

Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the name parameter...

7.5CVSS7.1AI score0.02392EPSS

Exploits0References1

Cvelist•added 2009/07/02 10:0 a.m.•18 views

CVE-2009-2313

Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the name parameter...

7.1AI score0.02392EPSS

Exploits0References1

CVE•added 2009/07/02 10:0 a.m.•45 views

CVE-2009-2313

The CVE-2009-2313 issue affects Jinzora Media Jukebox (2.8 and earlier), where a directory traversal flaw in index.php allows remote attackers to include and execute local files via a dot-dot in the name parameter. Public references (including Exploit-DB entry 8278) indicate this is a local file ...

7.5CVSS7.3AI score0.02392EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by