Authorization Bypass

perl-lwp-protocol-https is vulnerable to Authorization Bypasses. This vulnerability exists due to a flaw in the way the LWP::Protocol::https module handles certain environment variables. A remote attacker can exploit this vulnerability to disable certificate validation, which could allow them to...

new packages: perl-LWP-Protocol-https

An update is available for perl-LWP-Protocol-https. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the...

new packages: perl-LWP-MediaTypes

An update is available for perl-LWP-MediaTypes. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rock...

Mageia: Security Advisory (MGASA-2014-0257)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Burp Exporter - A Burp Suite Extension To Copy A Request To The Clipboard As Multiple Programming Languages Functions

Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions. You can export as: cURL Wget Python Request Perl LWP PHP HTTPRequest2 Go Native NodeJS Request jQuery AJAX PowerShell Requirements Jython = 2.7.1 Burp Suite import In Burp Suite, und...

Wbb3 - Blind SQL Injection Vulnerability

No description provided by source. !/usr/bin/perl -w use strict; use LWP::Simple; $| = 1; print q ----------------------------------------------- Wbb3 Blind Sql Injection Injection in Announce Plugin Kleinanzeigen Markt Coded By Molli use: ano.pl url user id Announce Catid Google:...

Dmx Forum <= 2.1a (edit.php) Remote Password Disclosure Exploit

No description provided by source. !/usr/bin/perl by DarkFig -- www.acid-root.new.fr use LWP::Simple; if !$ARGV1 header; print \n| Usage: url memberid ----------------|; print \n+------------------------------------------+; print \n| Example: http://localhost/dmx/ 1 ------|; end; sub header print...

openSUSE Security Update : perl-LWP-Protocol-https (openSUSE-SU-2014:0710-1)

perl-LWP-Protocol-https was updated to prevent a possible MITM if the environment variables HTTPSCADIR or HTTPSCAFILE were set CVE-2014-3230. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

Fedora Update for perl-LWP-Protocol-https FEDORA-2014-6303

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 19 : perl-LWP-Protocol-https-6.04-2.fc19 (2014-6369)

This release fixes a server certification validation when a certificate authority is defined by HTTPSCADIR or HTTPSCAFILE environement variable. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

[SECURITY] Fedora 19 Update: perl-LWP-Protocol-https-6.04-2.fc19

The LWP::Protocol::https module provides support for using HTTPS schemed URLs with LWP. This module is a plug-in to the LWP protocol handling, so you don't use it directly. Once the module is installed LWP is able to access sites using HTTP over SSL/TLS...

Fedora 20 : perl-LWP-Protocol-https-6.04-4.fc20 (2014-6303)

This release fixes a server certification validation when a certificate authority is defined by HTTPSCADIR or HTTPSCAFILE environement variable. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

[SECURITY] Fedora 20 Update: perl-LWP-Protocol-https-6.04-4.fc20

The LWP::Protocol::https module provides support for using HTTPS schemed URLs with LWP. This module is a plug-in to the LWP protocol handling, so you don't use it directly. Once the module is installed LWP is able to access sites using HTTP over SSL/TLS...

CF Image Hosting Script 1.3.82 File Disclosure

!/usr/bin/perl CF Image Hosting Script 1.3.82 File Disclosure Exploit Bugfounder and Exploitcoder: bd0rk Contact: www.sohcrew.school-of-hack.net eMail: bd0rkathackermail.com Affected-Software: CF Image Hosting Script 1.3.82 Vendor: http://www.phpkode.com Download:...

Wbb3 SQL Injection

!/usr/bin/perl -w use strict; use LWP::Simple; $| = 1; print q ----------------------------------------------- Wbb3 Blind Sql Injection Injection in Announce Plugin Kleinanzeigen Markt Coded By Molli use: ano.pl url user id Announce Catid Google: "inurl:index.php?page=Announceshow" Special greetz...

yourownbux-bypass.txt

!/usr/bin/perl use LWP::UserAgent; use HTTP::Request; +-------------------------------------------------------------------------------------------------+- + Yourownbux v4.0 ------------------------------------------------------------+--+ + Cookie Modification Exploit...

Galatolo Web Manager 1.3a &lt;= XSS / Remote SQL Injection Vulnerability

No description provided by source. --==+============================================================================+==-- --==+ Galatolo Web Manager 1.3a = XSS / Remote SQL Injection Vulnerability +==-- --==+============================================================================+==--...

Joomla! Component Alphacontent 2.5.8 - Blind SQL Injection

!/usr/bin/perl eSploit Framework - Inphex use Digest::MD5 qwmd5 md5hex md5base64; use LWP::UserAgent; use HTTP::Cookies; use Switch; $host = shift; $path = shift; $id = shift; $nonfind = shift; choose anything thats inside the article of id $column = "username"; change if needet $table =...

Softbiz Freelancers Script 1 - SQL Injection

!/usr/bin/perl Softbiz Freelancers Script V.1 Multiple Remote Vulnerabilities SQL Injection Exploit/XSS AUTHOR : IRCRASH Dr.Crash Script Download : http://www.softbizscripts.com/ DORK: "Search Projects" intitle:"The ultimate project website" Our English Forum : http://ircrash.com/english/ XSS...

Woltlab Burning Board &lt;= 1.0.2 2.3.6 search.php SQL Injection Exploit 2

No description provided by source. !/usr/bin/perl Woltlab Burning Board 2.X/Lite search.php SQL Injection exploit - burned.pl written by trew [email protected] should work on every wbb regardless of php settings. v 1.2 - added 1337 sql filter evasion, version identification,better regex,raw cook...