12 matches found
EUVD-2007-2980
Malware in sbrugna...
CVE-2023-41055
LibreY is vulnerable to a Server-Side Request Forgery (SSRF) in the engines/google/text.php and engines/duckduckgo/text.php files for versions before commit be59098abd119cda70b15bf3faac596dfd39a744. The issue allows remote attackers to coerce the server into issuing HTTP GET requests to arbitrary...
CVE-2023-41054
CVE-2023-41054 affects LibreY, a LibreX fork, with a Server-Side Request Forgery in image_proxy.php prior to commit 8f9b9803f231e2954e5b49987a532d28fe50a627. The issue allows an attacker to use the server as a proxy to issue HTTP GET requests to arbitrary targets, access internal-network informat...
CVE-2023-41054 LibreY Server-Side Request Forgery (SSRF) vulnerability in image_proxy.php
LibreY is a fork of LibreX, a framework-less and javascript-free privacy respecting meta search engine. LibreY is subject to a Server-Side Request Forgery SSRF vulnerability in the imageproxy.php file of LibreY before commit 8f9b9803f231e2954e5b49987a532d28fe50a627. This vulnerability allows remo...
Torrentz.eu Shuts Down Forever! End of Biggest Torrent Search Engine
Over two weeks after the shutdown of Kickass Torrents and arrest of its admin in Poland, the world's biggest BitTorrent meta-search engine Torrentz.eu has apparently shut down its operation. The surprise shutdown of Torrentz marks the end of an era. Torrentz.eu was a free, fast and powerful...
k-search (sql/xss) Multiple Vulnerabilities
No description provided by source. Category: K-Search SQL/XSS Multiple Remote Vulnerabilities Download: http://turn-k.net/k-search/demo Dork: inurl:K-Search, Powered By K-Search Author: Sangteamtham at hcegroupdotnet Homepage: HCE group - bug-z0ne.info Info: K-Search provides you a quick and easy...
MyDLstore Meta Search Engine Script 1.0 - url Remote File Inclusion
MyDLstore Meta Search Engine Script 1.0 - url Remote File Inclusion source: https://www.securityfocus.com/bid/43455/info MyDLstore Meta Search Engine Script is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this...
MyDLstore Meta Search Engine Script 1.0 - 'url' Remote File Inclusion
source: https://www.securityfocus.com/bid/43455/info MyDLstore Meta Search Engine Script is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute...
Meta Search Engine Script (url) Local File Disclosure Vulnerability
No description provided by source. -----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
Design/Logic Flaw
A certain admin script in Inout Meta Search Engine sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to inject arbitrary PHP code, as demonstrated by a request to admin/createengine.php followed by a request to...
CVE-2007-2988
A certain admin script in Inout Meta Search Engine sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to inject arbitrary PHP code, as demonstrated by a request to admin/createengine.php followed by a request to...
CVE-2007-2988
The CVE-2007-2988 entry describes a vulnerability in the Inout Meta Search Engine: an admin script redirects the browser but does not exit when admin credentials are missing, enabling remote attackers to inject arbitrary PHP code via a sequence of requests to admin/create_engine.php and then admi...