Lucene search
K

9831 matches found

Tenable Nessus
Tenable Nessus
added 2006/05/23 12:0 a.m.21 views

FreeBSD : coppermine -- File Inclusion Vulnerabilities (77cceaef-e9a4-11da-b9f4-00123ffe8333)

Secunia reports : Coppermine Photo Gallery have a vulnerability, which can be exploited by malicious people and by malicious users to compromise a vulnerable system. 1 Input passed to the 'lang' parameter in include/init.inc.php isn't properly verified, before it is used to include files. This ca...

5CVSS6AI score0.02307EPSS
Exploits2References4
Packet Storm
Packet Storm
added 2006/05/21 12:0 a.m.24 views

unb_161p1_incl_xpl.txt

!/usr/bin/php -q -d shortopentag=on ? echo "Unclassified NewsBoard = 1.6.1 patch 1 ABBCConfigsmileset arbitrary\r\n"; echo "local inclusion\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "works with registerglobals = On & magicquotesgpc =...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/05/13 12:0 a.m.9 views

FreeBSD : phpmyadmin -- register_globals emulation 'import_blacklist' manipulation (23afd91f-676b-11da-99f6-00123ffe8333)

Secunia reports : Stefan Esser has reported a vulnerability in phpMyAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, and compromise a vulnerable system. The vulnerability is caused due to an error in the registerglobals...

5.6AI score
Exploits0References3
seebug.org
seebug.org
added 2006/05/11 12:0 a.m.13 views

Unclassified NewsBoard <= 1.6.1 patch 1 Arbitrary Local Inclusion Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "Unclassified NewsBoard = 1.6.1 patch 1 ABBCConfigsmileset arbitrary\r\n"; echo "local inclusion\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "works with...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/05/11 12:0 a.m.74 views

Unclassified NewsBoard <= 1.6.1 patch 1 Arbitrary Local Inclusion Exploit

Exploit for unknown platform in category web applications ========================================================================= Unclassified NewsBoard = 1.6.1 patch 1 Arbitrary Local Inclusion Exploit ========================================================================= !/usr/bin/php -q -...

7.1AI score
Exploits0
FreeBSD
FreeBSD
added 2006/04/19 12:0 a.m.23 views

coppermine -- "file" Local File Inclusion Vulnerability

Secunia reports: Coppermine Photo Gallery have a vulnerability, which can be exploited by malicious people to disclose sensitive information. Input passed to the "file" parameter in "index.php" isn't properly verified, before it is used to include files. This can be exploited to include arbitrary...

5CVSS6.3AI score0.03625EPSS
Exploits1References3
securityvulns
securityvulns
added 2006/03/20 12:0 a.m.38 views

[SA19288] MailEnable Webmail and Unspecified POP Vulnerabilities

TITLE: MailEnable Webmail and Unspecified POP Vulnerabilities SECUNIA ADVISORY ID: SA19288 VERIFY ADVISORY: http://secunia.com/advisories/19288/ CRITICAL: Moderately critical IMPACT: Unknown, DoS WHERE: From remote SOFTWARE: MailEnable Standard 1.x http://secunia.com/product/3882/ MailEnable...

0.3AI score
Exploits0
0day.today
0day.today
added 2006/03/11 12:0 a.m.198 views

GuestBook Script <= 1.7 (include_files) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ===================================================================== GuestBook Script ' . $txt'txtfilenotfound' . ': ' . $val . ''; $tpl-register'guest', $key; ... here is includecontent function: function includecontent$path if isfile$pa...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/02/28 12:0 a.m.23 views

MDaemon IMAP Server Mail Folder Name Format String

The remote host is running Alt-N MDaemon, an SMTP/IMAP server for the Windows operating system family. The IMAP server component of MDaemon is affected by a format string vulnerability involving folders with format string specifiers in their names . An authenticated attacker can leverage this iss...

5CVSS6.2AI score0.03119EPSS
Exploits0References3
Exploit DB
Exploit DB
added 2006/02/27 12:0 a.m.24 views

Alt-N MDaemon 8.1.1 IMAP Server - Remote Format String

source: https://www.securityfocus.com/bid/16854/info Alt-N MDaemon IMAP Server is affected by a remote format-string vulnerability. This issue is due to the application's failure to properly sanitize user-supplied input before using it in the format-specifier argument to a formatted printing...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/02/22 12:0 a.m.11 views

Ipswitch WhatsUp Professional 2006 - Remote Denial of Service

Ipswitch WhatsUp Professional 2006 - Remote Denial of Service source: https://www.securityfocus.com/bid/16771/info Ipswitch WhatsUp Professional 2006 is susceptible to a remote denial-of-service vulnerability. This issue is due to the application's failure to properly handle certain HTTP GET...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2006/02/22 12:0 a.m.21 views

Ipswitch WhatsUp Professional 2006 - Remote Denial of Service

source: https://www.securityfocus.com/bid/16771/info Ipswitch WhatsUp Professional 2006 is susceptible to a remote denial-of-service vulnerability. This issue is due to the application's failure to properly handle certain HTTP GET requests. This issue allows remote attackers to consume excessive...

7.4AI score
Exploits0
Debian
Debian
added 2006/02/09 6:55 a.m.20 views

[SECURITY] [DSA 966-1] New adzapper packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 966-1 [email protected] http://www.debian.org/security/ Martin Schulze February 9th, 2006 http://www.debian.org/security/faq -...

7.8CVSS0.4AI score0.02638EPSS
Exploits0
NVD
NVD
added 2006/01/25 11:7 p.m.12 views

CVE-2006-0432

Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to be created, which prevents the server from properly protecting JNDI resources...

2.1CVSS6.5AI score0.00358EPSS
Exploits0References6
Prion
Prion
added 2006/01/25 11:7 p.m.16 views

Security feature bypass

Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to be created, which prevents the server from properly protecting JNDI resources...

2.1CVSS7.1AI score0.00358EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/01/25 11:0 p.m.16 views

CVE-2006-0432

Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to be created, which prevents the server from properly protecting JNDI resources...

6.5AI score0.00358EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/01/25 11:0 p.m.18 views

CVE-2006-0428

Unspecified vulnerability in BEA WebLogic Portal 8.1 SP3 through SP5, when using Web Services Remote Portlets WSRP, allows remote attackers to access restricted web resources via crafted URLs...

6.8AI score0.02422EPSS
Exploits0References7
CVE
CVE
added 2006/01/25 11:0 p.m.50 views

CVE-2006-0432

CVE-2006-0432 concerns BEA WebLogic Server and WebLogic Express 9.0. The available connected documents indicate that when an Administrator uses the WebLogic Administration Console to add custom security policies, incorrect policies can be created, which prevents the server from properly protectin...

2.1CVSS6.5AI score0.00358EPSS
Exploits0References6Affected Software1
securityvulns
securityvulns
added 2006/01/25 12:0 a.m.37 views

[SA18589] Kerio WinRoute Firewall Web Browsing Denial of Service

TITLE: Kerio WinRoute Firewall Web Browsing Denial of Service SECUNIA ADVISORY ID: SA18589 VERIFY ADVISORY: http://secunia.com/advisories/18589/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: Kerio WinRoute Firewall 6.x http://secunia.com/product/3613/ DESCRIPTION: A vulnerabili...

0.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.37 views

Ubuntu 4.10 : samba vulnerability (USN-22-1)

Karol Wiesek discovered a Denial of Service vulnerability in samba. A flaw in the input validation routines used to match filename strings containing wildcard characters may allow a remote user to consume more than normal amounts of CPU resources, thus impacting the performance and response of th...

5CVSS8.1AI score0.04906EPSS
Exploits1References1
Rows per page
Query Builder