Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm
Packet Stormadded 2009/12/15 12:0 a.m.22 views

Smart PHP Subscriber Disclosure

----------------------------------------------------------------------------------------------- Title: Smart PHP Subscriber Multiple Disclosure Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 14. December 2009...

7.4AI score
Exploits0
seebug.org
seebug.orgadded 2009/12/15 12:0 a.m.14 views

Smart PHP Subscriber Multiple Disclosure Vulnerabilities

No description provided by source. ----------------------------------------------------------------------------------------------- Title: Smart PHP Subscriber Multiple Disclosure Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 14. December 2009...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2007/01/27 12:0 a.m.13 views

PHP Subscriber远程密码泄露漏洞

PHP Subscriber是一款基于PHP的WEB应用程序。 PHP Subscriber不正确过滤用户提交的输入,远程攻击者可以利用漏洞获得密码敏感信息。 攻击者可以请求http://www.site.com/path/pwd.txt连接获得密码文件信息,然后使用BASE64解码密码信息。 PHP Subscriber 目前没有详细漏洞细节提供...

7.1AI score
Exploits0
Prion
Prionadded 2007/01/26 1:28 a.m.8 views

Improper access control

Scriptsez Smart PHP Subscriber aka subscribe stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain encoded passwords via a direct request for pwd.txt...

7.5CVSS6.8AI score0.05241EPSS
Exploits0References5
NVD
NVDadded 2007/01/26 1:28 a.m.9 views

CVE-2007-0518

Scriptsez Smart PHP Subscriber aka subscribe stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain encoded passwords via a direct request for pwd.txt...

7.5CVSS6.3AI score0.05241EPSS
Exploits0References5
Cvelist
Cvelistadded 2007/01/26 1:0 a.m.17 views

CVE-2007-0518

Scriptsez Smart PHP Subscriber aka subscribe stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain encoded passwords via a direct request for pwd.txt...

6.3AI score0.05241EPSS
Exploits0References5
CVE
CVEadded 2007/01/26 1:0 a.m.34 views

CVE-2007-0518

The CVE-2007-0518 entry concerns Scriptsez Smart PHP Subscriber (aka subscribe). The affected component stores sensitive information under the web root with insufficient access control, enabling remote attackers to retrieve encoded passwords via a direct request for pwd.txt. According to the NVD ...

7.5CVSS6.3AI score0.05241EPSS
Exploits0References5Affected Software1
securityvulns
securityvulnsadded 2007/01/24 12:0 a.m.50 views

subscribe (pwd.txt) Remote Password Disclosur

subscribe pwd.txt Remote Password Disclosur D0rk = "Powered By PHP Subscriber" discovered by : ThE TiGeR 100 Exploit : http://www.site.com/path/pwd.txt or http://www.site.com/pwd.txt then crack the password with bass64 decode ,,the password is coded by base64 not hash Contact:[email protected]...

0.9AI score
Exploits0
Rows per page
Query Builder