CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

73 matches found

CVE•added 2007/12/20 12:0 a.m.•53 views

CVE-2007-6453

RaidenHTTPD 2.0.19 contains a directory traversal vulnerability in raidenhttpd-admin/workspace.php (WebAdmin must be enabled) that allows remote unauthenticated attackers to include and execute arbitrary local files via a .. in the ulang parameter. Multiple sources (NVD/NVDCVE, vendor/JVN entries...

10CVSS7.1AI score0.20259EPSS

Exploits1References10Affected Software1

Cvelist•added 2007/12/20 12:0 a.m.•15 views

CVE-2007-6453

Directory traversal vulnerability in raidenhttpd-admin/workspace.php in RaidenHTTPD 2.0.19, when the WebAdmin function is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the ulang parameter...

7.1AI score0.20259EPSS

Exploits1References10

seebug.org•added 2007/12/19 12:0 a.m.•25 views

RaidenHTTPD 2.0.19 (ulang) Remote Command Execution Exploit

No description provided by source. rem raidenhttpdudo.cmd @echo off color 0a rem RaidenHTTPD 2.0.19 ulang cmd exec poc exploit rem WebAdmin one - not enabled by default anymore rem however works regardless of php.ini, because rem "ulang" comes from $GET and some magicquo rem tesgpc disable...

7.1AI score

Exploits0

Tenable Nessus•added 2007/12/19 12:0 a.m.•34 views

RaidenHTTPD workspace.php ulang Parameter Local File Inclusion

The remote host is running RaidenHTTPD, a web server for Windows. The version of RaidenHTTPD installed on the remote host fails to sanitize user-supplied input to the 'ulang' parameter in scripts '/raidenhttpd-admin/workspace.php' and '/raidenhttpd-admin/menu.php' before using it to include PHP...

10CVSS6.2AI score0.20259EPSS

Exploits1References4

Exploit DB•added 2007/12/18 12:0 a.m.•34 views

RaidenHTTPD 2.0.19 - 'ulang' Remote Command Execution

rem raidenhttpdudo.cmd @echo off color 0a rem RaidenHTTPD 2.0.19 ulang cmd exec poc exploit rem WebAdmin one - not enabled by default anymore rem however works regardless of php.ini, because rem "ulang" comes from $GET and some magicquo rem tesgpc disable code,lame divertissement one rem to...

7.4AI score

Exploits0

securityvulns•added 2007/12/18 12:0 a.m.•45 views

RaidenHTTPD 2.0.19 ulang cmd exec poc exploit

0.2AI score

Exploits0

0day.today•added 2007/12/18 12:0 a.m.•23 views

RaidenHTTPD 2.0.19 (ulang) Remote Command Execution Exploit

Exploit for unknown platform in category remote exploits =========================================================== RaidenHTTPD 2.0.19 ulang Remote Command Execution Exploit =========================================================== rem raidenhttpdudo.cmd @echo off color 0a rem RaidenHTTPD 2.0....

7.1AI score

Exploits0

seebug.org•added 2007/12/18 12:0 a.m.•16 views

RaidenHTTPD 'workspace.php'目录遍历漏洞

RaidenHTTPD是一款HTTPD服务程序。 RaidenHTTPD不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB权限查看系统文件内容。问题是由于'workspace.php'脚本对用户提交的"ulang"参数缺少过滤，提交包含多个"../"字符作为参数数据，可绕过WEB ROOT限制，以WEB权限查看系统文件内容。 Raiden Professional Servers RaidenHTTPD 2.0.19 目前没有解决方案提供： http://www.raidenhttpd.com/en/index.html rem raidenhttpdudo.cmd @ec...

7.1AI score

Exploits0

Packet Storm•added 2007/12/18 12:0 a.m.•27 views

raidhttpdudo.txt

7.4AI score

Exploits0

securityvulns•added 2007/12/18 12:0 a.m.•19 views

RaidenHTTPD Web server directory traversal

Directory traversal in web administration script...

1.8AI score

Exploits0References1Affected Software1

exploitpack•added 2007/12/18 12:0 a.m.•16 views

RaidenHTTPD 2.0.19 - ulang Remote Command Execution

RaidenHTTPD 2.0.19 - ulang Remote Command Execution rem raidenhttpdudo.cmd @echo off color 0a rem RaidenHTTPD 2.0.19 ulang cmd exec poc exploit rem WebAdmin one - not enabled by default anymore rem however works regardless of php.ini, because rem "ulang" comes from $GET and some magicquo rem tesg...

0.1AI score

Exploits0

Tenable Nessus•added 2007/12/18 12:0 a.m.•10 views

RaidenHTTPD <= 2.0.19 workspace.php ulang Parameter Directory Traversal Arbitrary File Access

Binary data 4319.prm...

10CVSS7.3AI score0.20259EPSS

Exploits1References2

Tenable Nessus•added 2007/07/28 12:0 a.m.•16 views

RaidenHTTPD workspace.php ulang Parameter Local File Inclusion

Binary data 5103.prm...

10CVSS7.3AI score0.20259EPSS

Exploits1References4

Prion•added 2007/06/22 6:30 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in RaidenHTTPD before 2.0.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.00537EPSS

Exploits0References8Affected Software1

NVD•added 2007/06/22 6:30 p.m.•13 views

CVE-2007-3343

Cross-site scripting XSS vulnerability in RaidenHTTPD before 2.0.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.00537EPSS

Exploits0References8

CVE•added 2007/06/22 6:0 p.m.•48 views

CVE-2007-3343

The CVE-2007-3343 vulnerability affects RaidenHTTPD prior to 2.0.14, described as a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. JVN sources corroborate an XSS issue in RaidenHTTPD and note impact as arbitrary code ex...

4.3CVSS5.7AI score0.00537EPSS

Exploits0References8Affected Software1

Cvelist•added 2007/06/22 6:0 p.m.•13 views

CVE-2007-3343

Cross-site scripting XSS vulnerability in RaidenHTTPD before 2.0.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.00537EPSS

Exploits0References8

Japan Vulnerability Notes•added 2007/06/21 12:0 a.m.•15 views

JVN#90438169 RaidenHTTPD cross-site scripting vulnerability

RaidenHTTPD is a multipurpose web server for Windows provided by TEAM JOHNLONG. RaidenHTTPD contains a cross-site scripting vulnerability. Impact Arbitrary code could be executed on the user's web browser. Solution Update the Software Apply the update provided by the vendor. For more information,...

6.7AI score

Exploits0

seebug.org•added 2006/10/25 12:0 a.m.•14 views

RaidenHTTPD check.php远程文件包含漏洞

RaidenHTTPD Server是Windows 98/Me/2000/XP/2003平台上具有完全特性的Web server软件，用户可以方便的使用和安装。 RaidenHTTPD自带的脚本在处理用户请求时存在输入验证漏洞，远程攻击者可能利用此漏洞在服务器上以Web进程权限执行任意命令。 RaidenHTTPD的raidenhttpd-admin/slice/check.php脚本没有正确验证SoftParserFileXml参数的输入，允许攻击者通过包含本地或外部资源的文件执行任意PHP代码。成功攻击要求启用了WebAdmin功能。 RaidenHTTPD Server 1.1....

7.1AI score

Exploits0

seebug.org•added 2006/10/24 12:0 a.m.•24 views

RaidenHTTPD 1.1.49 (SoftParserFileXml) Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? printr' ----------------------------------------------------------------------------- RaidenHTTPD/1.1.49 remote commands execution exploit by rgod [email protected] site: http://retrogod.altervista.org dork:...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by