Lucene search
K

1196 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

chCounter indirect SQL Injection and XSS Vulnerabilities

No description provided by source. Exploit Title: chCounter indirect SQL Injection and XSS Vulnerabilities Date: 29.04.2010 Author: Valentin Category: webapps/0day Version: 3.1.1 Tested on: Debian, Apache2, PHP5, MySQL5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit

No description provided by source. ?!/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written for...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

Minify4Joomla Upload and Persistent XSS Vulnerability

No description provided by source. ======================================================= Minify4Joomla Upload and Persistent XSS Vulnerability ======================================================= Name : Minify4Joomla Upload and Persistent XSS Vulnerability Date : july 9,2010 Critical Level :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

OTSCMS <= 2.1.3 - Multiple Remote File Include Vulnerabilities

No description provided by source. Coding 4 Fun c4f.pl OTSCMS = 2.1.3 by Wrzasq www.otscms.com ; Class = Remote File Inclusion ; Download = http://sourceforge.net/project/showfiles.php?groupid=145557 ; Found by = GregStar gregstaratc4fdotpl ;...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

webgrind 1.0 (file param) Local File Inclusion Vulnerability

No description provided by source. webgrind 1.0 file param Local File Inclusion Vulnerability Vendor: Joakim Nygard and Jacob Oettinger Product web page: http://code.google.com/p/webgrind Affected version: 1.0 v1.02 in trunk on github Summary: Webgrind is an Xdebug profiling web frontend in PHP5...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Joomla Component RSComments 1.0.0 Persistent XSS

No description provided by source. Exploit Title: Joomla Component RSComments 1.0.0 Multiple XSS Vulnerabilities Date: 18 May 2010 Author: jdc Software Link: http://www.rsjoomla.com Version: 1.0.0 Tested on: PHP5, MySQL5 Name Field Persistent XSS -------------------------...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.45 views

BPStudent 1.0 - Blind SQL Injection

No description provided by source. x========================================================================================================================================x | AntiSecuritydotorg |...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2014/07/01 12:0 a.m.59 views

Ubuntu: Security Advisory (USN-2254-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS9.9AI score0.20805EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/07/01 12:0 a.m.46 views

Ubuntu: Security Advisory (USN-2254-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS9.8AI score0.20805EPSS
Exploits1References3
Debian
Debian
added 2014/06/27 11:30 a.m.39 views

php5 security update

Package : php5 Version : 5.3.3-7+squeeze20 CVE ID : CVE-2014-4049 It was discovered that PHP, a general-purpose scripting language commonly used for web application development, is vulnerable to a heap-based buffer overflow in the DNS TXT record parsing. A malicious server or man-in-the-middle...

5.1CVSS4.4AI score0.1091EPSS
Exploits0
Debian
Debian
added 2014/06/27 11:29 a.m.41 views

php5 security update

Package : php5 Version : 5.3.3-7+squeeze20 CVE ID : CVE-2014-4049 It was discovered that PHP, a general-purpose scripting language commonly used for web application development, is vulnerable to a heap-based buffer overflow in the DNS TXT record parsing. A malicious server or man-in-the-middle...

5.1CVSS4.4AI score0.1091EPSS
Exploits0
0day.today
0day.today
added 2014/06/27 12:0 a.m.30 views

Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit

Exploit for php platform in category web applications !/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management...

7.1AI score
Exploits0
OSV
OSV
added 2014/06/27 12:0 a.m.28 views

DLA-0010-1 php5 - security update

Bulletin has no description...

5.1CVSS7.4AI score0.1091EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/26 12:0 a.m.28 views

openSUSE Security Update : php5 (openSUSE-SU-2014:0841-1)

php5 was updated to prevent insecure DNS TXT record parsing. This security issue was fixed : - Heap-based buffer overflow in DNS TXT record parsing CVE-2014-4049 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUS...

5.1CVSS7.3AI score0.1091EPSS
Exploits0References3
OSV
OSV
added 2014/06/25 7:31 p.m.6 views

USN-2254-2 php5 updates

USN-2254-1 fixed vulnerabilities in PHP. The fix for CVE-2014-0185 further restricted the permissions on the PHP FastCGI Process Manager FPM UNIX socket. This update grants socket access to the www-data user and group so installations and documentation relying on the previous socket permissions...

6AI score
Exploits0References2
Exploit DB
Exploit DB
added 2014/06/25 12:0 a.m.35 views

Lunar CMS 3.3 - Remote Command Execution

!/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so...

7AI score
Exploits0
0day.today
0day.today
added 2014/06/24 12:0 a.m.21 views

Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability

Exploit for php platform in category web applications CSRF Add Admin =============== inpu...

7.1AI score
Exploits0
Ubuntu
Ubuntu
added 2014/06/23 12:5 p.m.81 views

USN-2254-1: PHP vulnerabilities

Christian Hoffmann discovered that the PHP FastCGI Process Manager FPM set incorrect permissions on the UNIX socket. A local attacker could use this issue to possibly elevate their privileges. This issue only affected Ubuntu 12.04 LTS, Ubuntu 13.10, and Ubuntu 14.04 LTS. CVE-2014-0185 Francisco...

7.2CVSS7.6AI score0.20805EPSS
Exploits1
Packet Storm
Packet Storm
added 2014/06/23 12:0 a.m.16 views

Lunar CMS 3.3 CSRF / Cross Site Scripting

CSRF Add Admin =============== input type="hidden" name="email" v...

Exploits0
exploitpack
exploitpack
added 2014/06/21 12:0 a.m.13 views

Lunar CMS 3.3 - Cross-Site Request Forgery Persistent Cross-Site Scripting

Lunar CMS 3.3 - Cross-Site Request Forgery Persistent Cross-Site Scripting CSRF Add Admin =============== input type="hidden" name="name" value="Hacker"...

7AI score
Exploits0
Rows per page
Query Builder