Lucene search
K

68 matches found

seebug.org
seebug.org
added 2007/11/21 12:0 a.m.13 views

foosun create new admin exp

No description provided by source. !DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" HTMLHEADTITLEfoosun create new admin exp Codz By flyh4t/TITLE META http-equiv=Content-Type content="text/html; charset=gb2312" META content="MSHTML 6.00.2800.1479" name=GENERATOR/HEAD...

7.1AI score
Exploits0
Prion
Prion
added 2007/08/28 12:17 a.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in Ipswitch WSFTP allows remote attackers to inject arbitrary web script or HTML via arguments to a valid command, which is not properly handled when it is displayed by the view log option in the administration interface. NOTE: this can be leveraged to creat...

4.3CVSS6.1AI score0.01631EPSS
Exploits0References5
CVE
CVE
added 2007/08/28 12:0 a.m.47 views

CVE-2007-4555

CVE-2007-4555 describes a cross-site scripting (XSS) vulnerability in Ipswitch WS_FTP's administration interface. The issue occurs when arguments to a valid command are not properly sanitized and are displayed by the view log option, enabling an attacker to inject arbitrary web script or HTML. Th...

4.3CVSS5.7AI score0.01631EPSS
Exploits0References5Affected Software1
seebug.org
seebug.org
added 2007/01/04 12:0 a.m.24 views

Cacti Copy_Cacti_User.PHP SQL注入漏洞

Cacti是一款基于PHP的WEB应用程序。 Cacti不正确过滤用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,获得敏感信息。 问题是'CopyCactiUser.PHP'脚本对用户提交的WEB参数缺少过滤,提交恶意脚本代码作为参数数据,可导致获得敏感信息。 Cacti Cacti 0.8.6i 目前没有解决方案提供: http://cacti.net/ ?php printr' --------------------------------------------------------------------------- Cacti 0.8.6i...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/12/31 12:0 a.m.41 views

Cacti 0.8.6i (copy_cacti_user.php) SQL Injection Create Admin Exploit

No description provided by source. ?php printr' --------------------------------------------------------------------------- Cacti 0.8.6i "copycactiuser.php" sql injection create new admin exploit by rgod dork: intitle:"login to cacti" mail: retrog at alice dot it site:...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/07/15 12:0 a.m.177 views

MyBulletinBoard (MyBB) <= 1.1.5 (CLIENT-IP) SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================= MyBulletinBoard MyBB = 1.1.5 CLIENT-IP SQL Injection Exploit ================================================================= !/usr/bin/php -q -d shortopentag=on ? echo...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/07/14 12:0 a.m.48 views

Invision Power Board 2.1 &lt; 2.1.6 - SQL Injection (1)

!/usr/bin/perl Invision Power Board v2.1 "r57ipb216gui" ; $mw-geometry '420x550' ; $mw-resizable0,0; $mw-Label-text = '!', -font = 'Webdings 22'-pack; $mw-Label-text = 'Invision Power Board 2.1. 'Verdana 7 bold',-foreground='red'-pack; $mw-Label-text = ''-pack; $fleft=$mw-Frame-pack -side = 'left...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2006/02/26 12:0 a.m.30 views

vuSQL.pl.txt

!/usr/bin/perl use IO::Socket; VU Site Engine v. 2.0 add new admin exploit Bug found GeW http://www.security.nitro.ru Exploit coded by Censored - SV -------------------------------------------- Search Vulnerabilities // www.svt.nukleon.us if @ARGV newProto = "tcp", PeerAddr = "$host", PeerPort =...

7.4AI score
Exploits0
Rows per page
Query Builder