Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

OSV
OSVadded 2013/09/16 7:14 p.m.6 views

CVE-2013-4315

Directory traversal vulnerability in Django 1.4.x before 1.4.7, 1.5.x before 1.5.3, and 1.6.x before 1.6 beta 3 allows remote attackers to read arbitrary files via a file path in the ALLOWEDINCLUDEROOTS setting followed by a .. dot dot in a ssi template tag...

6.3AI score
Exploits0References7
0day.today
0day.todayadded 2011/11/01 12:0 a.m.36 views

Calibre E-Book Reader Local Root Exploit

Exploit for linux platform in category local exploits !/bin/sh .50-Calibrer Assault Mount by zx2c4 Calibre uses a suid mount helper, and like nearly all suid mount helpers that have come before it, it's badly broken. Let's go through Calibre's faulty code available at http://pastebin.com/auz9SULi...

6.8AI score
Exploits0
seebug.org
seebug.orgadded 2006/10/28 12:0 a.m.23 views

vbulletin Exploit Tool Box

No description provided by source. include unistd.h include stdio.h include stdlib.h include sys/types.h include sys/socket.h include netinet/in.h include netdb.h include arpa/inet.h include errno.h include string.h include iostream using namespace std; string exploit; string answer; string...

7.1AI score
Exploits0
securityvulns
securityvulnsadded 2003/05/29 12:0 a.m.45 views

Son hServer directory traversal

It's possible to use /.|./ to traverse directory...

2.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2003/05/11 12:0 a.m.29 views

unzip directory traversal revisited

unzip directory traversal revisited problem: well I kinda stumbled over this when i was looking for something else A while back some fuss was made over the use of .. sequences in archives because it allows you to craft an archive which will trojan your system on extraction the creators of unzip...

1.4AI score
Exploits0
securityvulns
securityvulnsadded 2002/07/23 12:0 a.m.37 views

PHP Resource Exhaustion Denial of Service

The PHP interpreter is a heavy-duty CGI EXE or SAPI module, depending on configuration that implements an HTML-embedded script language. A vulnerability in PHP can be used to cause a denial of service in some cases. PHP's install process on Apache requires a "/php/" alias to be created, as it...

Exploits0
Exploit DB
Exploit DBadded 2002/02/07 12:0 a.m.30 views

AtheOS 0.3.7 - Change Root Directory Escaping

/ source: https://www.securityfocus.com/bid/4051/info AtheOS is a freely available, open source operating system. It is distributed under the GPL, and maintained by the AtheOS project. It is possible to escape change rooted directories on AtheOS. Due to insufficient handling of relative pathes, a...

7.4AI score
Exploits0
Rows per page
Query Builder