CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

seebug.org•added 2014/07/01 12:0 a.m.•98 views

Pligg 9.9.5 - CSRF Protection Bypass and Captcha Bypass

No description provided by source. Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass html !-- Remove this iframe from this file and place it on a site that you want to force people to vote for. Change these...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Yaws-Wiki 1.88-1 (Erlang) Stored and Reflective XSS Vulnerabilities

No description provided by source. Application: yaws-wiki version affected: 1.88-1 platform: Erlang homepage:http://yaws.hyber.org/ Researcher: Michael Brooks Orignal Advisory:https://sitewat.ch/en/Advisory/4 Install instructions for Ubuntu: sudo apt-get install yaws-wiki...

Nmap•added 2011/06/27 8:22 p.m.•171 views

http-majordomo2-dir-traversal NSE Script

Exploits a directory traversal vulnerability existing in Majordomo2 to retrieve remote files. CVE-2011-0049. Vulnerability originally discovered by Michael Brooks. For more information about this vulnerability: Script Arguments http-majordomo2-dir-traversal.rfile Remote file to download. Default:...

10CVSS9.2AI score0.94176EPSS

Exploits43

0day.today•added 2011/04/05 12:0 a.m.•22 views

Yaws-Wiki 1.88-1 (Erlang) Stored and Reflective XSS Vulnerabilities

Exploit for php platform in category web applications Application: yaws-wiki version affected: 1.88-1 platform: Erlang homepage:http://yaws.hyber.org/ Researcher: Michael Brooks Orignal Advisory:https://sitewat.ch/en/Advisory/4 Install instructions for Ubuntu: sudo apt-get install yaws-wiki...

Packet Storm•added 2011/03/08 12:0 a.m.•55 views

Majordomo2 Directory Traversal

-------------------------- NSOADV-2011-003 --------------------------- Majordomo2 'help' Command Directory Traversal Patch Bypass 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11 1111111 1...

5CVSS0.2AI score0.89981EPSS

Exploits6

OSV•added 2011/02/09 12:0 a.m.•23 views

DSA-2158-1 cgiirc - cross-site-scripting

Bulletin has no description...

4.3CVSS6.4AI score0.00442EPSS

Exploit DB•added 2011/02/03 12:0 a.m.•67 views

Majordomo2 - 'SMTP/HTTP' Directory Traversal

Original Advisory: https://sitewat.ch/en/Advisory/View/1 Credit: Michael Brooks https://sitewat.ch Vulnerability: Directory Traversal Software: Majordomo2 Identifier:CVE-2011-0049 Vendor: http://www.mj2.org/ Affected Build: 20110121 and prior Google dork:inurl:mjwwwusr Special thanks to Dave...

5CVSS6.5AI score0.90582EPSS

Exploits10

0day.today•added 2010/12/26 12:0 a.m.•22 views

Pligg 1.1.2 Blind SQL Injection and XSS Vulnerabilities

Exploit for php platform in category web applications Credit: Michael Brooks Special thanks to Eric Heikkinen for patching these quickly. Blind SQL Injection http://host/pligg1.1.2/search.php?adv=1&status= 'and+sleep9or+sleep9or+1%3D' &search=on&advancesearch= Search...

0day.today•added 2010/12/26 12:0 a.m.•29 views

OpenAuto 1.6.3 Multiple Vulnerabilities

Exploit for php platform in category web applications Credit:Michael Brooks Affects:OpenAuto 1.6.3 Vulnerabilites: XSRF/XSS/Blind SQLi/Captcha Bypass http://openautoclassifieds.com/ ---------------------------------------------------------------------------------------------------- Reflective XSS...

exploitpack•added 2010/12/25 12:0 a.m.•29 views

openauto 1.6.3 - Multiple Vulnerabilities

openauto 1.6.3 - Multiple Vulnerabilities Credit:Michael Brooks Affects:OpenAuto 1.6.3 Vulnerabilites: XSRF/XSS/Blind SQLi/Captcha Bypass http://openautoclassifieds.com/ ---------------------------------------------------------------------------------------------------- Reflective XSS by adding a...

0.7AI score

exploitpack•added 2010/12/25 12:0 a.m.•23 views

Pligg CMS 1.1.2 - Blind SQL Injection Cross-Site Scripting

Pligg CMS 1.1.2 - Blind SQL Injection Cross-Site Scripting Credit: Michael Brooks Special thanks to Eric Heikkinen for patching these quickly. Blind SQL Injection http://host/pligg1.1.2/search.php?adv=1&status= 'and+sleep9or+sleep9or+1%3D' &search=on&advancesearch= Search...

0.5AI score

Packet Storm•added 2010/05/05 12:0 a.m.•119 views

PHP-Nuke 7.0 / 8.1 / 8.1.35 Wormable Remote Code Execution

!/usr/bin/php ?php / Wormable Remote Code Execution in PHP-Nuke 7.0/8.1/8.1.35newist as of release Vendor's Website:http://phpnuke.org/ Secuirty Researcher: Michael Brooks https://sitewat.ch Original Advisory: http://blog.sitewat.ch/2010/05/vulnerabilities-in-php-nuke.html Google hack: "Francisco...

7.5CVSS0.1AI score0.85909EPSS

exploitpack•added 2010/05/05 12:0 a.m.•45 views

PHP-Nuke 7.08.18.1.35 - Wormable Remote Code Execution

PHP-Nuke 7.08.18.1.35 - Wormable Remote Code Execution !/usr/bin/php ?php / Wormable Remote Code Execution in PHP-Nuke 7.0/8.1/8.1.35newist as of release Vendor's Website:http://phpnuke.org/ Secuirty Researcher: Michael Brooks https://sitewat.ch Original Advisory:...

7.5CVSS0.1AI score0.85909EPSS

0day.today•added 2010/05/04 12:0 a.m.•64 views

PHP-Nuke 7.0/8.1/8.1.35 Wormable Remote Code Execution Affecting

Exploit for php platform in category web applications ================================================================ PHP-Nuke 7.0/8.1/8.1.35 Wormable Remote Code Execution Affecting ================================================================ !/usr/bin/php ?php / Wormable Remote Code...

7.1AI score0.85909EPSS

Packet Storm•added 2009/01/30 12:0 a.m.•45 views

Pligg 9.9.5 Cross Site Request Forgery

Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass ' width="0%" height="0%" var pliggstorytovotefor="/story.php?title=pliggxss"; function r var Z=false; ifwindow.XMLHttpRequest try Z=new XMLHttpRequest...

0.7AI score

exploitpack•added 2009/01/29 12:0 a.m.•662 views

Pligg CMS 9.9.5 - Cross-Site Request Forgery Protection Bypass Captcha Bypass

Pligg CMS 9.9.5 - Cross-Site Request Forgery Protection Bypass Captcha Bypass Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass ' width="0%" height="0%" var pliggstorytovotefor="/story.php?title=pliggxss";...

0.6AI score

exploitpack•added 2009/01/29 12:0 a.m.•18 views

WOW Web On Windows ActiveX Control 2 - Remote Code Execution

WOW Web On Windows ActiveX Control 2 - Remote Code Execution Written By Michael Brooks Special thanks to str0ke! software:WOW - Web On Windows ActiveX Control 2 - Remote Code Execution exploit type: Remote File Upload and Remote Code Execution Download:...

0.5AI score

seebug.org•added 2009/01/29 12:0 a.m.•47 views

Pligg 9.9.5 XSRF Protection Bypass and Captcha Bypass

0day.today•added 2009/01/29 12:0 a.m.•743 views

Pligg 9.9.5 XSRF Protection Bypass and Captcha Bypass

Exploit for unknown platform in category web applications ===================================================== Pligg 9.9.5 XSRF Protection Bypass and Captcha Bypass ===================================================== Written By Michael Brooks Pligg - XSRF Protection Bypass and Captcha Bypass...