20 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-7653
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code...
VulnCheck KEV: CVE-2021-23263
Unauthenticated remote attackers can read textual content via FreeMarker including files /scripts/, /templates/ and some of the files in /.git/ non-binary...
Command Injection
Overview pyload-ng is a The free and open-source Download Manager written in pure Python Affected versions of this package are vulnerable to Command Injection via the flashgot API and the download process. An attacker can execute arbitrary code by manipulating the download path to target the...
PYSEC-2024-302
pyLoad is a free and open-source Download Manager. The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be...
PYSEC-2024-302
pyLoad is a free and open-source Download Manager. The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be...
PT-2023-30657 · Pyload · Pyload
Name of the Vulnerable Software and Affected Versions: pyLoad version 0.5.0 Description: The issue allows an authenticated user to upload files to arbitrary locations on the server, potentially leading to command execution by abusing scripts. When creating a new package, a subdirectory is created...
DEBIAN-CVE-2019-7653
The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code injection, because "python -m" looks in this directory, as demonstrated by rdf2dot. This issue is specific to use of the debian/scripts...
CVE-2019-7653
The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code injection, because "python -m" looks in this directory, as demonstrated by rdf2dot. This issue is specific to use of the debian/scripts...
CVE-2019-7653
The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code injection, because "python -m" looks in this directory, as demonstrated by rdf2dot. This issue is specific to use of the debian/scripts...
BS Scripts Directory (info.php) SQL Injection Vulnerability
No description provided by source. Exploit Title: BS Script Directory remote SQL injection vulnerability Date: 15th july 2010 Author: D4rk357 Critical:high contact:d4rk357atyahoodotin Price : 24.95 $ Software Link:http://www.brotherscripts.com/productinfo.php?productsid=454 Greetz to :b0nd,...
Online Store PHP Script By Goran Cross Site Scripting
f0und by: kurdish hackers team group: kurd-team c0ntact: [email protected] site: www.kurdteam.org ================================= ==============script=============== ================================= script: Online Store d0rk:Copyrights © 2009 - Online Store. All rights reserved. Powered by:...
CVE-2010-2905
CVE-2010-2905 is a SQL injection vulnerability affecting the ScriptsFeed and BrotherScripts (BS) Scripts Directory, exploitable via the id parameter in info.php and allowing remote execution of arbitrary SQL commands. The CVE has corroborating entries in multiple sources (NVD, CVE list, PRION) de...
CVE-2010-2906
CVE-2010-2906 affects ScriptsFeed and BrotherScripts (BS) Scripts Directory: SQL injection in articlesdetails.php via the id parameter, allowing remote execution of arbitrary SQL commands. This is a separate vector from CVE-2010-2905 (info.php). Documented impact is partial confidentiality/integr...
BS Scripts Directory - articlesdetails.php SQL Injection
BS Scripts Directory - articlesdetails.php SQL Injection Exploit Title: BS Script Directory articlesdetails remote SQL injection vulnerability Date: 16th july 2010 Author: k4k4shi Critical:high contact:lvyatlivedotde Price : 24.95 $ Software Link:http://www.brotherscripts.com/ Shoutz to :...
BS Scripts Directory - 'info.php' SQL Injection
Exploit Title: BS Script Directory remote SQL injection vulnerability Date: 15th july 2010 Author: D4rk357 Critical:high contact:d4rk357atyahoodotin Price : 24.95 $ Software Link:http://www.brotherscripts.com/productinfo.php?productsid=454 Greetz to :b0nd, Fbih2s,Beenu,rockey killer,The empty,...
Bs Scripts_Directory SQL Injection
1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Bs ScriptsDirectory Sqli/Auth Bypass Vulnerability Date : july 5,2010 Critical Level : HIGH vendor URL :http://www.brotherscripts.com/ Price:$24.95 Author :...
Windows2000 under the administrator account really insecure-vulnerability warning-the black bar safety net
If you have an ordinary user account,there is a very simple method to get the NT Administrator account: One of: first c:\winnt\system32 under logon. the scr was renamed as logon. old backup Then put the usrmgr. exe renamed to logon. scr Then restart the logon. the scr is loaded at startup of the...
Teach you to retrieve Windows NT Admin rights on the method-vulnerability warning-the black bar safety net
One, by modifying the registry Those who have logged on NT the machine of the user, for example, IUSRmachine, have to HKEYLOCALMACHINE\SOFTWARE\MICROSOFT\WINDOWS\CurrentVersion\Run item Read and write permissions, the user can remotely access This item. For example, he can create a bat file, the...
ddicgi.exe vulnerability
The file ddicgi.exe exists on this webserver. Some versions of this file are vulnerable to remote exploit. SPDX-FileCopyrightText: 2003 John Lampe Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Microsoft IIS /scripts Directory Browsable (deprecated)
The /scripts directory is browsable. This gives an attacker valuable information about which default scripts you have installed and also whether there are any custom scripts present that may have vulnerabilities. This plugin has been deprecated. Webmirror3 plugin ID 10662 will identify a browsabl...