Lucene search
K

98 matches found

n0where
n0where
added 2018/02/03 2:13 a.m.75 views

Automate Network Attacks Against Active Directory: icebreaker

Break the ice with that cute Active Directory environment over there. Automates network attacks against Active Directory to deliver you piping hot plaintext credentials when you’re inside the network but outside of the Active Directory environment. Performs 5 different network attacks for plainte...

7.9AI score
Exploits0References2
seebug
seebug
added 2016/03/10 12:0 a.m.14 views

NITC营销系统 v4.0 index.php 参数rid SQL注入

No description provided by source...

7.1AI score
Exploits0
taosecurity
taosecurity
added 2016/01/09 12:22 a.m.13 views

Why a War Studies PhD?

When I begin receiving multiple questions on a topic, it's a signal that I should write a blog post. Several of you have asked me about my experience as a PhD candidate in the King's College London Department of War Studies. In this post I will try to answer your questions by explaining how I got...

6.6AI score
Exploits0
nvd
nvd
added 2015/02/01 2:59 a.m.16 views

CVE-2014-8267

Cross-site scripting XSS vulnerability in QPR Portal 2014.1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the RID parameter...

4.3CVSS5.7AI score0.01119EPSS
Exploits0References1
prion
prion
added 2015/02/01 2:59 a.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in QPR Portal 2014.1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the RID parameter...

4.3CVSS6.1AI score0.01119EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2015/02/01 2:0 a.m.24 views

CVE-2014-8267

Cross-site scripting XSS vulnerability in QPR Portal 2014.1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the RID parameter...

5.7AI score0.01119EPSS
Exploits0References1
cnvd
cnvd
added 2015/01/27 12:0 a.m.6 views

QPR Portal 'RID' Parameter Cross-Site Scripting Vulnerability

QPR Software Suite is a suite of business management and performance management products from the Finnish company QPR Software.QPR Portal is one of the portal products that provides features such as full-screen mode to introduce integrated navigation options, copy schematic location links and ope...

4.3CVSS6.6AI score0.01119EPSS
Exploits0References1
seebug
seebug
added 2014/12/30 12:0 a.m.24 views

PHPAPP注入第九枚(insert无视过滤)

简要描述: PHPAPP注入第九枚(insert无视过滤) 详细说明: 在wooyun上看到了有人提了PHPAPP的漏洞: http://wooyun.org/bugs/wooyun-2010-055604,然后去官网看了看,前几天刚有更新,就在官网下了PHPAPP最新的v2.6来看看2014-12-11更新的。 PSOT注入点:wwww.xxx.com/member.php?action=1&app=43&cid=2&rid=-1, 存在漏洞的文件在/phpapp/apps/refund/memberphpapp.php...

7AI score
Exploits0
securityvulns
securityvulns
added 2014/05/05 12:0 a.m.73 views

Mybb All Version Denial of Service Vulnerability

Mybb All Version Denial of Service Vulnerability !/usr/bin/perl @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@...

1AI score
Exploits0
securityvulns
securityvulns
added 2012/10/29 12:0 a.m.53 views

Wordpress 3.4 Cross-Site Scripting Vulnerability

a bug in Wordpress 3.4 that allows to us to occur a Cross-Site Scripting on a Remote machin. Exploit Title : Wordpress 3.4 Cross-Site Scripting Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum/ Software Link : http://wordpress.org Security Risk : High Version : Al...

0.5AI score
Exploits0
packetstorm
packetstorm
added 2012/09/10 12:0 a.m.32 views

NewWard CMS SQL Injection

Exploit Title : NewWard Cms Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.newward.com/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork : intext:"Web Site Design by...

0.5AI score
Exploits0
nvd
nvd
added 2009/07/02 10:30 a.m.22 views

CVE-2009-2307

SQL injection vulnerability in the CWGuestBook module 2.1 and earlier for MAXdev MDPro aka MD-Pro allows remote attackers to execute arbitrary SQL commands via the rid parameter in a viewrecords action to modules.php...

7.5CVSS8.4AI score0.00928EPSS
Exploits0References2
openvas
openvas
added 2009/04/09 12:0 a.m.12 views

Mandriva Update for samba MDKA-2007:001 (samba)

Check for the Version of samba OpenVAS Vulnerability Test Mandriva Update for samba MDKA-2007:001 samba Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.4AI score
Exploits0References2
prion
prion
added 2008/02/21 12:44 a.m.13 views

Sql injection

SQL injection vulnerability in the comsalesrep component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the rid parameter in a showrep action to index.php...

7.5CVSS9.1AI score0.00961EPSS
Exploits0References4
prion
prion
added 2008/01/22 8:0 p.m.22 views

Sql injection

Multiple SQL injection vulnerabilities in MyBB 1.2.10 and earlier allow remote moderators and administrators to execute arbitrary SQL commands via 1 the mergepost parameter in a domergeposts action, 2 rid parameter in an allreports action, or 3 threads parameter in a domultimovethreads action to ...

7.5CVSS9.2AI score0.01493EPSS
Exploits1References8Affected Software1
nvd
nvd
added 2008/01/22 8:0 p.m.28 views

CVE-2008-0383

Multiple SQL injection vulnerabilities in MyBB 1.2.10 and earlier allow remote moderators and administrators to execute arbitrary SQL commands via 1 the mergepost parameter in a domergeposts action, 2 rid parameter in an allreports action, or 3 threads parameter in a domultimovethreads action to ...

7.5CVSS8.4AI score0.01493EPSS
Exploits1References8
prion
prion
added 2007/07/03 8:30 p.m.16 views

Sql injection

SQL injection vulnerability in login.php in WebChat 0.78 allows remote attackers to execute arbitrary SQL commands via the rid parameter...

7.5CVSS9.1AI score0.01061EPSS
Exploits0References5Affected Software1
cvelist
cvelist
added 2007/07/03 8:0 p.m.18 views

CVE-2007-3534

SQL injection vulnerability in login.php in WebChat 0.78 allows remote attackers to execute arbitrary SQL commands via the rid parameter...

8.4AI score0.01061EPSS
Exploits0References5
Rows per page
Query Builder