Lucene search
K

78 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

wu-ftpd 2.4.2/2.5 .0/2.6 .0/2.6.1/2.6.2 - FTP Conversion Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2240/info Some FTP servers provide a conversion service that pipes a requested file through a program, for example a decompression utility such as tar, before it is passed to the remote user. Under some configurations whe...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/03/10 12:0 a.m.15 views

RoomPHPlanning 1.5 Create User Exploit

!/usr/bin/perl -w use LWP::UserAgent; use HTML::Form; print "\n"; print "+=RoomPHPlanning\n"; print "+=v1.5\n"; print "+=Vul: Remote Create user with all permissions admin\n"; print "+=Author: Jonathan Salwan \n"; print "+=Web: http://www.shell-storm.org\n"; print "+=Mail: submit AT...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2006/11/13 12:0 a.m.26 views

Online Event Registration 2.0 - 'save_profile.asp' Pass Change

User Name Email Phone Fax Password = ID Next Click "Profile" ajann,Turkey ... Im Not Hacker! -- milw0rm.com 2006-11-13...

7.4AI score
Exploits0
0day.today
0day.today
added 2005/05/26 12:0 a.m.53 views

Maxwebportal <= 1.36 password.asp Change Password Exploit (1 - html)

Exploit for unknown platform in category web applications ==================================================================== Maxwebportal -----------------Code Start-----Version 1.35 and older-------------- pass1: pass2: Id: Member Key: -----------------End------------------- Version 1.36, 2.0,...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/02/16 12:0 a.m.24 views

HP-UX PHNE_23949 : s700_800 11.00 ftpd(1M) and ftp(1) patch

s700800 11.00 ftpd1M and ftp1 patch : The remote HP-UX host is affected by multiple vulnerabilities : - A potential vulnerability has been identified with HP-UX running ftpd. The vulnerability could be exploited by a remote unauthenticated user to list directories with the privileges of the root...

10CVSS5.5AI score0.09543EPSS
Exploits1References4
securityvulns
securityvulns
added 2004/11/06 12:0 a.m.48 views

Multiple vulnerabilities in Icewarp Web Mail 5.2.8 : New face of old problems.

TITLE: Multiple vulnerabilities in Icewarp Web Mail 5.2.8 : New face of old problems. BACKGROUND Merak Mail Server, with the revolutionary Merak Mail Server GroupWare Server, cutting-edge Merak Mail Server Instant Antispam and much more, is the fastest, most stable, secure and 100 virus free mail...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.75 views

Debian DSA-048-3 : samba

Marcus Meissner discovered that samba was not creating temporary files safely in two places : - when a remote user queried a printer queue samba would create a temporary file in which the queue data would be written. This was being done using a predictable filename, and insecurely, allowing a loc...

2.1CVSS5.8AI score0.01139EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.33 views

Debian DSA-371-1 : perl - XSS

A cross-site scripting vulnerability exists in the startform function in CGI.pm. This function outputs user-controlled data into the action attribute of a form element without sanitizing it, allowing a remote user to execute arbitrary web script within the context of the generated page. Any progr...

4.3CVSS5.5AI score0.04442EPSS
Exploits0References2
exploitpack
exploitpack
added 2004/08/04 12:0 a.m.88 views

SoX - .wav Local Buffer Overflow

SoX - .wav Local Buffer Overflow //--------------------------------- Begin Code: sox-exploiter.c --------------------------------- / Copyright Rosiello Security 2004 http://www.rosiello.org CVE Reference: CAN-2004-0557 Bug Type: Stack Overflow Date: 01/08/2004 Ulf Harnhammar reported that there a...

10CVSS0.6AI score0.2508EPSS
Exploits7
securityvulns
securityvulns
added 2004/04/19 12:0 a.m.88 views

[NT] Serv-U LIST -l Parameter Buffer Overflow

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2004/02/11 12:0 a.m.27 views

VisualShapers EZContents 1.x/2.0 - &#039;archivednews.php&#039; Arbitrary File Inclusion

source: https://www.securityfocus.com/bid/9638/info It has been reported that ezContents may be prone to a file include vulnerability in multiple modules. The problem reportedly exists because remote users may influence the 'GLOBALSrootdp' and 'GLOBALSlanguagehome' variables in the 'db.php' and...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/01/26 12:0 a.m.215 views

Xoops 2.0.x - &#039;viewtopic.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/9497/info It has been reported that Xoops may be prone to a cross-site scripting vulnerability that may allow a remote user to execute HTML or script code in a user's browser. HTML and script code may be parsed via the 'topicid' and 'forum' URI parameters...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2003/08/08 12:0 a.m.15 views

Sun One 5.1 IPlanet 5.05.1 - Administration Server Directory Traversal

Sun One 5.1 IPlanet 5.05.1 - Administration Server Directory Traversal source: https://www.securityfocus.com/bid/8367/info A problem in the checking of input by the Sun ONE Administration Server may lead to remote users escaping into restricted directories. This may allow an attacker to gain acce...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2003/05/12 12:0 a.m.10 views

GuildFTPd 0.999.8 - CWD Denial of Service

GuildFTPd 0.999.8 - CWD Denial of Service source: https://www.securityfocus.com/bid/7951/info A denial of service condition exists in GuildFTPD that may allow a remote user to deny service to legitimate GuildFTPD users. The denial of service occurs when the server receives several successive...

Exploits0
Packet Storm
Packet Storm
added 2003/05/09 12:0 a.m.47 views

unhappycgi.txt

Advisory URL: http://securitytracker.com/alerts/2003/May/1006707.html Vendor: Happycgi.com Product: Happymall Versions: 4.3, 4.4 Title: Happymall E-Commerce Input Validation Flaw Lets Remote Users Execute Arbitrary Commands Description: Revin Aldi reported an input validation vulnerability in the...

7.5CVSS6.7AI score0.03461EPSS
Exploits1
exploitpack
exploitpack
added 2003/01/23 12:0 a.m.15 views

Rediff Bol 2.0.2 - URL Handling Denial of Service

Rediff Bol 2.0.2 - URL Handling Denial of Service source: https://www.securityfocus.com/bid/6670/info It has been reported that a problem in Rediff Bol may allow remote users to log other users out of the Bol chat client. Due to improper handling of some types of requests, a remote user could sen...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2003/01/11 12:0 a.m.22 views

Xynph FTP Server 1.0 - Directory Traversal

source: https://www.securityfocus.com/bid/6587/info A problem with the handling of input has been reported in Xynph FTP Server. Under some circumstances, it may be possible for a remote user to escape the FTP root directory using relative path notation. This could allow unauthorized access to...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/10/25 12:0 a.m.24 views

SolarWinds TFTP Server Standard Edition 5.0.55 - Directory Traversal

source: https://www.securityfocus.com/bid/6045/info SolarWinds TFTP Server is distributed for the Microsoft Windows platform. The SolarWinds TFTP Server does not properly handle user-supplied input. Due to insufficient handling of user input, it is possible for a remote user to request arbitrary...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2002/01/29 12:0 a.m.14 views

AHG Search Engine 1.0 - search.cgi Arbitrary Command Execution

AHG Search Engine 1.0 - search.cgi Arbitrary Command Execution source: https://www.securityfocus.com/bid/3985/info Search.CGI is a component of the HTMLsearch Search Engine software distributed by AHG. The software is available for the Unix, Linux, and Microsoft platforms. The search.cgi script...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2001/10/18 12:0 a.m.35 views

Microsoft Windows NT/2000 - Terminal Server Service RDP Denial of Service

source: https://www.securityfocus.com/bid/3445/info Due to a flaw in the implementation of RDP in Windows 2000/NT Terminal Server, it is possible for a remote user to cause a host to stop responding. Sending malformed RDP packets to a host could cause a denial of services, potentially impacting t...

7.4AI score
Exploits0
Rows per page
Query Builder