CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

No description provided by source. Kurdish Security newsReporter v1.1 Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : newsReporter Site : http://www.knusperleicht.at Code : // removed the old code becau...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•13 views

k_shoutbox <= 4.4 - Remote File Inclusion Vulnerability

No description provided by source. Kurdish Security ShoutBox Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : ShoutBox Site : http://www.knusperleicht.at Code : // // INCLUDE PATH define'SBINCLUDEPATH',...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•7 views

Knusperleicht Shoutbox 2.6 Shout.php HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21637/info Knusperleicht Shoutbox is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to execute HTML and script code...

7.1AI score

Exploits0

Check Point Advisories•added 2014/02/03 12:0 a.m.•2 views

Knusperleicht Shoutbox index.php sb_include_path Parameter PHP Code Execution - Ver2 (CVE-2006-3989)

A code execution vulnerability has been reported in Knusperleicht Shoutbox. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5AI score0.03348EPSS

Exploits1

Check Point Advisories•added 2014/01/07 12:0 a.m.•2 views

Knusperleicht Shoutbox index.php sb_include_path Parameter PHP Code Execution - Ver2 (CVE-2006-3989)

5.1CVSS7.5AI score0.03348EPSS

Exploits1

NVD•added 2006/12/23 11:28 a.m.•10 views

CVE-2006-6721

Multiple cross-site scripting XSS vulnerabilities in shout.php in Knusperleicht ShoutBox 2.6 allow remote attackers to inject arbitrary web script or HTML via the 1 sbNick or 2 sbKommentar parameter...

6.8CVSS5.8AI score0.01676EPSS

Exploits1References3

CVE•added 2006/12/23 11:0 a.m.•45 views

CVE-2006-6721

CVE-2006-6721 describes multiple cross-site scripting (XSS) vulnerabilities in shout.php of Knusperleicht ShoutBox 2.6. An attacker can remotely inject arbitrary script or HTML by supplying the (1) sbNick or (2) sbKommentar parameter, enabling script execution in the victim’s browser. The affecte...

6.8CVSS6AI score0.01676EPSS

Exploits1References3Affected Software1

Exploit DB•added 2006/12/18 12:0 a.m.•27 views

Knusperleicht Shoutbox 2.6 - 'Shout.php' HTML Injection

source: https://www.securityfocus.com/bid/21637/info Knusperleicht Shoutbox is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to execute HTML and script code in the context of the affected...

7.4AI score

Exploits0

seebug.org•added 2006/12/06 12:0 a.m.•24 views

Knusperleicht NewsReporter News_include_path远程文件包含漏洞

Knusperleicht NewsReporter是一款基于PHP的新闻管理程序。 Knusperleicht NewsReporter不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。问题是'index.php'脚本对用户提交的"newsincludepath"参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 Knusperleicht NewsReporter 1.1 http://www.knusperleicht.at/...

7.1AI score

Exploits0

seebug.org•added 2006/12/06 12:0 a.m.•68 views

Knusperleicht NewsLetter Index.PHP远程文件包含漏洞

Knusperleicht NewsLetter是一款基于PHP的新闻管理程序。 Knusperleicht NewsLetter不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。问题是'index.php'脚本对用户提交的"NLPATH"参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 Knusperleicht NewsLetter 3.5 http://knusperleicht.at/index.php?knuspi=phpecke http://example.com/Script...

7.1AI score

Exploits0

seebug.org•added 2006/12/06 12:0 a.m.•23 views

Knusperleicht ShoutBox SB_Include_Path远程文件包含漏洞

Knusperleicht ShoutBox是一款基于PHP的音乐管理程序。 Knusperleicht ShoutBox不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。问题是'index.php'脚本对用户提交的"SBINCLUDEPATH"参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 Knusperleicht ShoutBox 4.4 http://knusperleicht.at/index.php?knuspi=phpecke...

7.1AI score

Exploits0

seebug.org•added 2006/12/06 12:0 a.m.•86 views

Knusperleicht Quickie Quick_Path远程文件包含漏洞

Knusperleicht Quickie是一款基于PHP的WEB应用程序。 Knusperleicht Quickie不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。问题是'quickie.php'脚本对用户提交的"QUICKPATH"参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 Knusperleicht Quickie http://knusperleicht.at/index.php?knuspi=Quickie...

7.1AI score

Exploits0

seebug.org•added 2006/12/06 12:0 a.m.•25 views

Knusperleicht FAQ Script Index.PHP远程文件包含漏洞

Knusperleicht FAQ是一款基于PHP的FAQ管理程序。 Knusperleicht FAQ不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。问题是'index.php'脚本对用户提交的"faqpath"参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 Knusperleicht FAQ 1.0 http://knusperleicht.at/index.php?knuspi=phpecke...

7.1AI score

Exploits0

Packet Storm•added 2006/08/17 12:0 a.m.•23 views

faqscript.txt

Kurdish Security FAQ Script v1.0 Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : FAQ Script Site : http://www.knusperleicht.at Code : //if the script is includet you have to set this path else the path...

7.4AI score

Exploits0

Packet Storm•added 2006/08/17 12:0 a.m.•26 views

quickie.txt

Kurdish Security Quickie Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : Kurdish Security FileManager Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack &...

7.4AI score

Exploits0

NVD•added 2006/08/07 7:4 p.m.•14 views

CVE-2006-4007

PHP remote file inclusion vulnerability in index.php in Knusperleicht Guestbook 3.5 allows remote attackers to execute arbitrary PHP code via a URL in the GBPATH parameter...

7.5CVSS7.5AI score0.02484EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by