Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

exploitpack
exploitpackadded 2009/01/11 12:0 a.m.15 views

VUPlayer 2.49 - .asx HREF Local Buffer Overflow (1)

VUPlayer 2.49 - .asx HREF Local Buffer Overflow 1 !/usr/bin/perl intro; does not need a thread method shellcode to run as best as can. seh work great too! win32exec - EXITFUNC=seh CMD=calc Size=343 Encoder=PexAlphaNum http://metasploit.com my $shellcode =...

0.5AI score
Exploits0
Exploit DB
Exploit DBadded 2004/01/21 12:0 a.m.23 views

Apache 2.0.4x mod_perl - File Descriptor Leakage (3)

source: https://www.securityfocus.com/bid/9471/info A vulnerability has been reported to exist in the Apache modperl module that may allow local attackers to gain access to privileged file descriptors. This issue could be exploited by an attacker to hijack a vulnerable server daemon. Other attack...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2002/04/23 12:0 a.m.37 views

CGIScript.net - csMailto Hidden Form Field Remote Command Execution

source: https://www.securityfocus.com/bid/4579/info CGIScript.NET csMailto is a Perl script designed to support multiple mailto: forms. A vulnerability has been reported in some versions of this script. Reportedly, configuration values used by the script are contained in hidden form values. As a...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2001/01/12 12:0 a.m.100 views

Fastgraf's whois.cgi - Remote Command Execution

!/usr/bin/perl whois.pl - Marco van Berkum - [email protected] homepage: http://ws.obit.nl - exploits Fastgraf's whois.cgi DO NOT EDIT THIS HEADER, else the bedbugs will bite Greets to sigmo for finding stupid POST examples Also greetings to DUCKEL YES YOU HAVE CREDIT NOW ; Use like this:...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2000/12/13 12:0 a.m.29 views

Insecure input validation in everythingform.cgi (remote command execution)

Hi All, This is Yet Another Bad Perl Script. everythingform.cgi uses a hidden field 'config' to determine where to read configuration data from. --code snippit-- .. $ConfigFile = $inconfig; .. openCONFIG, "$configdir$ConfigFile" || &Error"I can't open $ConfigFile in the ReadConfig subroutine...

0.2AI score
Exploits0
exploitpack
exploitpackadded 2000/12/11 12:0 a.m.12 views

Leif M. Wright everythingform.cgi 2.0 - Arbitrary Command Execution

Leif M. Wright everythingform.cgi 2.0 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/2101/info An input validation vulnerability exists in Leif M. Wright's everything.cgi, a Perl-based form design tool. The script fails to properly filter shell commands from user-supplied...

0.9AI score
Exploits0
Exploit DB
Exploit DBadded 2000/12/06 12:0 a.m.26 views

Endymion MailMan 3.0.x - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/2063/info A vulnerability exists in 3.x versions of Endymion MailMan Webmail prior to release 3.0.26. The widely-used Perl script provides a web-email interface. Affected versions make insecure use of the perl open function. Attackers can control the way...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2000/08/17 12:0 a.m.30 views

srcgrab.pl.txt

Subject: Re: Translate:f summary, history and thoughts Simple perl script exploit for the problem. Please find a simple perl script included at the bottom that exploits below described problem. ----- Original Message ----- From: "Daniel Doèekal" To: Sent: Tuesday, August 15, 2000 7:39 PM Subject:...

7.4AI score
Exploits0
Rows per page
Query Builder