Lucene search
K

64 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.70 views

PHP 5.3.3 NumberFormatter::getSymbol Integer Overflow

No description provided by source. From: Maksymilian Arciemowicz cxib securityreason com Date: Fri, 10 Dec 2010 14:43:32 +0100 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.3.3 NumberFormatter::getSymbol Integer Overflow Author: Maksymilian Arciemowicz http://securityreason.com/...

5CVSS0.18878EPSS
Exploits5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.32 views

PHP 5.3.3 ibase_gen_id() off-by-one Overflow Vulnerability

No description provided by source. === Vulnerability === PHP 5.3.3 Possible All versions ibasegenid off-by-one overflow === Author === cb === Description === User-supplied variable generator copied to 128 byte buffer query size of query variable. So its cause off-by-one overflow. You can see 1...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.62 views

CKEditor 4.0.1 - Multiple Vulnerabilities

No description provided by source. =========================================== Vulnerable Software: ckeditor 4.0.1 standard Download: http://download.cksource.com/CKEditor/CKEditor/CKEditor%204.0.1/ckeditor4.0.1standard.zip Vulns: Full Path Disclosure && XSS...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2014/03/09 12:0 a.m.21 views

ClipSharePro 4.1 - Local File Inclusion

Exploit Title : ClipSharePro 0 $configfile = $GET'configfile'; else showAlertMessage"ERROR: Failed to find configfile parameter", 1; else $configfile = $DEFAULTCONFIG; // Load config file require $configfile; //including arbitrary file $GET'configfile' echo $configfile; The vulnerability can be...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/08/27 12:0 a.m.1460 views

Obehotel CMS SQL Injection Vulnerability

Obehotel CMS suffers from denial of service, insecure transit, directory listing, and remote SQL injection vulnerabilities. OBEHOTEL Spanish CMS Blind SQLinjection / Apache httpd Remote Denial of Service / Directory Listing / Insecure transition from HTTPS to HTTP in form post I-VULNERABILITY...

7.8CVSS0.5AI score0.98945EPSS
Exploits17
Packet Storm
Packet Storm
added 2013/03/22 12:0 a.m.18 views

WordPress IndiaNIC FAQS Manager 1.0 SQL Injection

Exploit Title: WordPress IndiaNIC FAQ 1.0 Plugin Blind SQL Injection Google Dork: inurl:wp-content/plugins/faqs-manager Date: 21.03.2013 Exploit Author: m3tamantra http://m3tamantra.wordpress.com/blog Vendor Homepage: http://wordpress.org/extend/plugins/faqs-manager/ Software Link:...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2013/03/22 12:0 a.m.19 views

WordPress IndiaNIC FAQS Manager 1.0 XSS / CSRF

alert1 in question parameter. The Captcha value can be read from captcha parameter hidden field Part of Ask Question form =================== We don't need the captcha Image when we have this xD Request from Ask Question area XSS in question parameter POST /word...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2013/03/22 12:0 a.m.39 views

WordPress Plugin IndiaNIC FAQs Manager 1.0 - Blind SQL Injection

Exploit Title: WordPress IndiaNIC FAQ 1.0 Plugin Blind SQL Injection Google Dork: inurl:wp-content/plugins/faqs-manager Date: 21.03.2013 Exploit Author: m3tamantra http://m3tamantra.wordpress.com/blog Vendor Homepage: http://wordpress.org/extend/plugins/faqs-manager/ Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2013/03/04 12:0 a.m.23 views

Nconf 1.3 - Multiple SQL Injections

Exploit Title: nconf handleitem.php,Modifyattr.php etc Multiple Sql injection Date: 2013/3/4 Exploit Author: Saadat Ullah,[email protected] Software Link: http://sourceforge.net/projects/nconf/files/nconf/ Vendors: http://www.nconf.org/ Author HomePage: http://security-geeks.blogspot.com/...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2013/02/22 12:0 a.m.373 views

CKEditor 4.0.1 多个安全漏洞

CKEditor是一款在线文字编辑器 CKEditor存在多个安全漏洞,允许攻击者利用漏洞进行跨站请求伪造,跨站脚本攻击及获取路径信息 0 CKEditor 4.0.1 厂商解决方案 目前没有详细解决方案提供: http://ckeditor.com/ =========================================== Vulnerable Software: ckeditor 4.0.1 standard Download:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/02/20 12:0 a.m.31 views

CKEditor 4.0.1 - Multiple Vulnerabilities

=========================================== Vulnerable Software: ckeditor 4.0.1 standard Download: http://download.cksource.com/CKEditor/CKEditor/CKEditor%204.0.1/ckeditor4.0.1standard.zip Vulns: Full Path Disclosure && XSS =========================================== Tested On: Debian squeeze 6.0...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2013/02/05 12:0 a.m.51 views

glossword 1.8.12 - Multiple Vulnerabilities

glossword 1.8.12 - Multiple Vulnerabilities =================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF &&...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/02/05 12:0 a.m.44 views

glossword 1.8.12 - Multiple Vulnerabilities

=================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF && Shell upload. Dork: Powered by Glossword 1.8.1...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2013/02/03 12:0 a.m.46 views

Glossword 1.8.12 XSS / CSRF / Shell Upload / Database Disclosure

=================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF && Shell upload. Dork: Powered by Glossword 1.8.1...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/01/21 12:0 a.m.24 views

NConf 1.3 - Arbitrary File Creation

Exploit Title: nconf file read and wrtite exploit Date: 2013/1/20 Exploit Author: haidao,[email protected] Software Link: http://sourceforge.net/projects/nconf/files/nconf/ Version: nconf 1.3 Tested on: Server: Apache/2.2.15 Centos PHP/5.3.3 nconf can modify the config file of nagios and save it...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/01/19 12:0 a.m.17 views

php-Charts Arbitrary PHP Code Execution Vulnerability

Exploit for php platform in category web applications =============================================================== Vulnerable Software: php-chartv1.0 Official Site: http://php-charts.com/ Vuln: PHP Code Execution. =============================================================== Tested On: Debia...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2013/01/18 12:0 a.m.19 views

PHP-Charts - Arbitrary PHP Code Execution

PHP-Charts - Arbitrary PHP Code Execution =============================================================== Vulnerable Software: php-chartv1.0 Official Site: http://php-charts.com/ Vuln: PHP Code Execution. =============================================================== Tested On: Debian squeeze...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2013/01/16 12:0 a.m.36 views

PHP Charts 1.0 Code Execution

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/01/05 12:0 a.m.35 views

WordPress Spam Free 1.9.2 Filter Bypass

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2013/01/01 12:0 a.m.36 views

WordPress Sahifa 2.4.0 Cross Site Request Forgery / Path Disclosure

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

0.4AI score
Exploits0
Rows per page
Query Builder