Lucene search
K

2585 matches found

Packet Storm
Packet Storm
added 2010/06/29 12:0 a.m.32 views

Joomla Google Maps Remote File Inclusion

========================================================== Joomla Component comgooglemaps Remote File Inclusion =========================================================== WWw.HaCkTeacH.oRg/cc +===================================================================================+ ?Joomla Component...

0.5AI score
Exploits0
0day.today
0day.today
added 2010/06/26 12:0 a.m.25 views

Joomla Component com_google_maps Remote File Inclusion Vulnerability

Exploit for php platform in category web applications ==================================================================== Joomla Component comgooglemaps Remote File Inclusion Vulnerability ====================================================================...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/01/12 12:0 a.m.24 views

Google Maps Cross Site Scripting

Google Maps XSS currently unpatched Discovered By - Pratul Agrawal [email protected] Gaurav Baruah [email protected] PoC -...

0.3AI score
Exploits0
FreeBSD
FreeBSD
added 2009/12/22 12:0 a.m.9 views

jpgraph2 -- XSS vulnerability

Martin Barbella reports: JpGraph is an object oriented library for PHP that can be used to create various types of graphs which also contains support for client side image maps. The GetURLArguments function for the JpGraph's Graph class does not properly sanitize the names of get and post...

1.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2009/11/04 12:0 a.m.35 views

Mozilla Seamonkey Multiple Vulnerabilities (Nov 2009) - Windows

Mozilla Seamonkey browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.15519EPSS
Exploits4References7
OpenVAS
OpenVAS
added 2009/11/04 12:0 a.m.39 views

Mozilla Seamonkey Multiple Vulnerabilities (Nov 2009) - Linux

Mozilla Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.15519EPSS
Exploits4References7
OpenVAS
OpenVAS
added 2009/11/04 12:0 a.m.34 views

Mozilla Seamonkey Multiple Vulnerabilities Nov-09 (Windows)

This host is installed with Mozilla Seamonkey browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbseamonkeymultvulnnov09win.nasl 4869 2016-12-29 11:01:45Z teissa $ Mozilla Seamonkey Multiple Vulnerabilities Nov-09 Windows Authors: Sharath S Copyright: Copyright c...

10CVSS1.3AI score0.15519EPSS
Exploits4References4
RedHat Linux
RedHat Linux
added 2009/11/03 6:21 p.m.2 views

kernel: /proc/$pid/maps visible during initial setuid ELF loading

The mmformaps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local users to read 1 maps and 2 smaps files under proc/ via vectors related to ELF loading, a setuid process, and a race condition...

2.1CVSS5.8AI score0.00393EPSS
Exploits1References4
Drupal
Drupal
added 2009/09/30 12:0 a.m.12 views

SA-CONTRIB-2009-067 Dex module - Cross Site Scripting, no longer maintained

The Dex: Contact Information Manager module enables contact information management with Google Maps and Yahoo Maps compatible geocoding. The module suffers from a Cross Site Scripting XSS vulnerability. Such an attack may lead to a malicious user gaining full administrative access. This module is...

6.3AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/07/01 12:0 a.m.49 views

RHEL 4 : kernel (RHSA-2009:1132)

Updated kernel packages that fix several security issues and various bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

7.8CVSS5.7AI score0.33491EPSS
Exploits6References11
seebug.org
seebug.org
added 2009/05/01 12:0 a.m.45 views

Memcached stats maps命令信息泄露漏洞

BUGTRAQ ID: 34756 CVECAN ID: CVE-2009-1255 Memcached是一个开源的多平台数据库缓存软件。 如果远程攻击者连接到了memcached的TCP端口(默认11211)并发布了stats maps命令,Memcached就会直接将/proc/self/maps的输出管道传输给客户端。这可能导致泄漏所分配内存区域的地址。 Danga Interactive memcached 1.2.7 MemcacheDB MemcacheDB 1.2 Danga Interactive -----------------...

5CVSS6.4AI score0.02252EPSS
Exploits2
OSV
OSV
added 2009/04/30 8:30 p.m.2 views

DEBIAN-CVE-2009-1255

The processstat function in 1 Memcached before 1.2.8 and 2 MemcacheDB 1.2.0 discloses a the contents of /proc/self/maps in response to a stats maps command and b memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain sensitive information such ...

5CVSS6.8AI score0.02252EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2009/04/29 12:0 a.m.34 views

memcached -- memcached stats maps Information Disclosure Weakness

Secunia reports: A weakness has been reported in memcached, which can be exploited by malicious people to disclose system information. The weakness is caused due to the application disclosing the content of /proc/self/maps if a stats maps command is received. This can be exploited to disclose e.g...

5CVSS6.4AI score0.02252EPSS
Exploits2References1
CVE
CVE
added 2008/11/04 1:0 a.m.40 views

CVE-2008-4908

CVE-2008-4908 affects CrossFire’s maps package, specifically maps/Info/combine.pl in crossfire-maps 1.11.0 . The vulnerability is a local-file overwrite through a symlink attack on a temporary file, allowing local users to overwrite arbitrary files. The available connected documents confirm the v...

3.3CVSS6.3AI score0.0029EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/11/04 1:0 a.m.22 views

CVE-2008-4908

maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

6.3AI score0.0029EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2008/11/04 1:0 a.m.15 views

CVE-2008-4908

maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

3.3CVSS6.1AI score0.0029EPSS
Exploits0
NVD
NVD
added 2008/11/04 12:57 a.m.14 views

CVE-2008-4908

maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

3.3CVSS6.3AI score0.0029EPSS
Exploits0References4
OSV
OSV
added 2008/11/04 12:57 a.m.2 views

DEBIAN-CVE-2008-4908

maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

3.3CVSS6.6AI score0.0029EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.33 views

FreeBSD Ports: apache

The remote host is missing an update to the system as announced in the referenced advisory. VID 9fff8dc8-7aa7-11da-bf72-00123f589060 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

4.3CVSS0.2AI score0.73692EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2008/06/30 3:29 p.m.7 views

httpd cross-site scripting flaw in mod_imap

Cross-site scripting XSS vulnerability in the modimap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps...

4.3CVSS7.3AI score0.73692EPSS
Exploits0References4
Rows per page
Query Builder