Lucene search
+L

626 matches found

UbuntuCve
UbuntuCve
added 2006/06/07 10:2 a.m.20 views

CVE-2006-2898

The IAX2 channel driver chaniax2 for Asterisk 1.2.x before 1.2.9 and 1.0.x before 1.0.11 allows remote attackers to cause a denial of service crash and execute arbitrary code via truncated IAX 2 IAX2 video frames, which bypasses a length check and leads to a buffer overflow involving negative...

7.5CVSS6.6AI score0.04293EPSS
Exploits0References1
securityvulns
securityvulns
added 2006/04/28 12:0 a.m.33 views

Kmail <=2.3 vuln.

Kmail =2.3 vuln. Vulnerability discovered by : r0t Date: 28 april 2006 vendorlink:www.webofall.com/displaynews.php?id=4 affected versions:2.3 and prior orginal advisory:http://pridels.blogspot.com/2006/04/kmail-23-vuln.html Vuln. Description: 1. Multiple Cross-Site Scripting attack vulnerabilitie...

Exploits0
securityvulns
securityvulns
added 2006/04/22 12:0 a.m.38 views

[Full-disclosure] Advisory: CoreNews <= 2.0.1 Multiple Remote Vulnerabilities.

--Security Report-- Advisory: CoreNews = 2.0.1 Multiple Remote Vulnerabilities. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 21/04/06 21:43 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: CoreNews http://www.coreslawn.de/...

2.2AI score
Exploits0
Exploit DB
Exploit DB
added 2006/04/21 12:0 a.m.32 views

dForum 1.5 - 'DFORUM_PATH' Multiple Remote File Inclusions

dForum ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploit works on dForum about.php admin.php anmelden.php closethread.php config.php delpost.php delthread.php dfcode.php download.php editanoc.php forum.php login.php makethread.php menu.php newthread.php openthread.php...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/04/02 12:0 a.m.42 views

EzASPSite <= 2.0 RC3 Remote SQL Injection Exploit Vulnerability.

--Security Report-- Advisory: EzASPSite = 2.0 RC3 Remote SQL Injection Exploit Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 29/03/06 21:33 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: EzASPSite...

1.3AI score
Exploits0
Packet Storm
Packet Storm
added 2006/04/01 12:0 a.m.22 views

EzASPSiteSQL.txt

--Security Report-- Advisory: EzASPSite http://victim/EZASPDir/Default.asp?Scheme=SQL EXAMPLE - http://victim/EZASPDir/Default.asp?Scheme=-1+UNION+SELECT+0,0,0,password,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/03/28 12:0 a.m.36 views

Connect Daily Web Calendar Software Multiple XSS vuln.

Connect Daily Web Calendar Software Multiple XSS vuln. Vuln. discovered by : r0t Date: 27 march 2006 vendor:http://www.mhsoftware.com/connectdaily.htm affected versions:3.2.9 and prior orginal advisory:http://pridels.blogspot.com/2006/03/connect-daily-multiple-xss-vuln.html Vuln. description:...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2006/03/28 12:0 a.m.28 views

CONTROLzx HMS - Hosting Management System vuln.

CONTROLzx HMS - Hosting Management System vuln. Vuln. discovered by : r0t Date: 27 march 2006 vendor:http://front.controlzx.com/ affected versions:V.3.3.4 and prior orginal advisory:http://pridels.blogspot.com/2006/03/controlzx-hms-hosting-management.html Vuln. description: CONTROLzx HMS contains...

0.1AI score
Exploits0
Prion
Prion
added 2006/02/25 11:2 a.m.14 views

Sql injection

DISPUTED SQL injection vulnerability in VCS Virtual Program Management Intranet VPMi Enterprise 3.3 allows remote attackers to execute arbitrary SQL commands via the UpdateID0 parameter to ServiceRequests.asp. NOTE: the provenance of this information is unknown; the details are obtained solely fr...

7.5CVSS8.4AI score0.01381EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/02/25 11:0 a.m.18 views

CVE-2006-0897

SQL injection vulnerability in VCS Virtual Program Management Intranet VPMi Enterprise 3.3 allows remote attackers to execute arbitrary SQL commands via the UpdateID0 parameter to ServiceRequests.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

8AI score0.01381EPSS
Exploits0References7
Packet Storm
Packet Storm
added 2006/02/06 12:0 a.m.40 views

kapda-26.txt

KAPDA New advisory Vendor: http://www.jaia-interactive.com Vulnerable: Version: 1.2.3 Bug: Sql Injection & Path Disclosure Exploitation: Remote with browser Description: -------------------- MyTopix is a PHP-based message board system that uses a MySQL database. Vulnerability: -------------------...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/12/05 12:0 a.m.27 views

Blog System v1.2 SQL inj. vuln.

Blog System v1.2 SQL inj. vuln. Vuln. dicovered by : r0t Date: 5 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/blog-system-v12-sql-inj-vuln.html vendor:http://www.netartmedia.net/blogsystem/ affected version:v1.2 and prior Product Description: Blog System allows you to launch and...

0.3AI score
Exploits0
Cvelist
Cvelist
added 2005/12/05 12:0 a.m.20 views

CVE-2005-4003

Multiple SQL injection vulnerabilities in Absolute Shopping Package Solutions ASPS Shopping Cart Professional 2.9d and earlier, and Lite 2.1 and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 srchproductname parameter to advsearch.asp and 2 bsearch parameter to...

8.1AI score0.01049EPSS
Exploits1References2
securityvulns
securityvulns
added 2005/11/29 12:0 a.m.36 views

FAQ System 1.1 SQL inj. vuln.

FAQ System 1.1 SQL inj. vuln. Vuln. dicovered by : r0t Date: 29 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/faq-system-11-sql-inj-vuln.html Vendor:http://ilyav.net/?q=node/23 affected version: 1.1 and prior Product Description: This extremely detailed Frequently Asked Questions...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2005/11/25 12:0 a.m.24 views

HelpDeskPoint Free Help Desk Software SQL inj.

HelpDeskPoint Free Help Desk Software SQL inj. Vuln. dicovered by : r0t Date: 25 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/helpdeskpoint-free-help-desk-software.html Vendor:http://helpdeskpoint.com affected version: 2.38 and prior Product Description: HelpDeskPoint.com Welcom...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2005/11/23 12:0 a.m.33 views

Survey Wizard "sid" SQL injection vuln.

Survey Wizard "sid" SQL injection vuln. Vuln. dicovered by : r0t Date 23 nov. 2005 Original advisory:http://pridels.blogspot.com/2005/11/survey-wizard-sid-sql-injection-vuln.html Vendor:http://www.phplabs.com/ Product link:http://www.phplabs.com/scripts.php?script=Survey20Wizard affected version:...

0.6AI score
Exploits0
Cvelist
Cvelist
added 2005/05/11 4:0 a.m.25 views

CVE-2005-1487

Multiple SQL injection vulnerabilities in FishCart 3.1 allow remote attackers to execute arbitrary SQL commands via the 1 cartid parameter to upstnt.php or 2 psku parameter to display.php. NOTE: the vendor disputes this report, saying that they are forced SQL errors. The original researcher is...

8.4AI score0.03454EPSS
Exploits1References8
OSV
OSV
added 2005/05/02 4:0 a.m.4 views

DEBIAN-CVE-2005-1228

Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. dot dot in the original filename within a compressed file...

5CVSS7.1AI score0.03584EPSS
Exploits0References1
OSV
OSV
added 2005/04/27 4:0 a.m.4 views

DEBIAN-CVE-2005-0206

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 CVE-2004-0888 is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities...

7.5CVSS7.4AI score0.02986EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2005/04/17 12:0 a.m.34 views

phpBBupload.txt

Advisory 1 "phpBB Upload Script "up.php" Arbitrary File Upload" $ Author: Status-x $ Contact: [email protected] - [email protected] $ Date: 7 April 2005 $ Website: http://defacers.com.mx $ Original Advisory: http://www.defacers.com.mx/advisories/2.txt $ Risk: High $ Vendor URL:...

7.4AI score
Exploits0
Rows per page
Query Builder