Lucene search
K

182 matches found

0day.today
0day.today
added 2015/06/11 12:0 a.m.40 views

FiverrScript CSRF Vulnerability (Add New Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: FiverrScript CSRF Vulnerability add New admin Author: Mahmoud Gamal @Zombiehelp54 Google Dork: intext:Powered by FiverrScript Date: 10/06/2015 Exploit Author: Scriptolution Vendor Homepage: http://scriptolution.com Software Link...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2015/06/10 12:0 a.m.37 views

FiverrScript - Cross-Site Request Forgery (Add Admin)

FiverrScript - Cross-Site Request Forgery Add Admin Exploit Title: FiverrScript CSRF Vulnerability add New admin Author: Mahmoud Gamal @Zombiehelp54 Google Dork: intext:Powered by FiverrScript Date: 10/06/2015 Exploit Author: Scriptolution Vendor Homepage: http://scriptolution.com Software Link:...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/06/10 12:0 a.m.40 views

FiverrScript - Cross-Site Request Forgery (Add Admin)

Exploit Title: FiverrScript CSRF Vulnerability add New admin Author: Mahmoud Gamal @Zombiehelp54 Google Dork: intext:Powered by FiverrScript Date: 10/06/2015 Exploit Author: Scriptolution Vendor Homepage: http://scriptolution.com Software Link: http://fiverrscript.com Version: 7.2 Tested on:...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

BSDI BSD/OS 4.0,FreeBSD 3.2,NetBSD 1.4 x86,OpenBSD 2.5 UFS Secure Level 1 Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/510/info In 4.4BSD derivatives there are four secure levels that provide for added filesystem security among other things over and above the regular unix permission systems. Part of the secure levels are the system of fil...

7.1AI score
Exploits0
Atlassian
Atlassian
added 2013/08/20 2:11 a.m.35 views

Regression - "Browse Project" permission for "Reporter" grants users to see projects they are not permitted to.

panel:bgColor=e7f4fa NOTE: This bug report is for JIRA Server. Using JIRA Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/JRACLOUD-34389. panel Regression of JRA-4935 When i add the "Reporter" to the "Browse Project" Permission of one project. This project instantly becom...

1.7AI score
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2013/02/28 12:0 a.m.18 views

Nmap NSE 6.01: smb-security-mode

Returns information about the SMB security level determined by SMB. Here is how to interpret the output: User-level authentication: Each user has a separate username/password that is used to log into the system. This is the default setup of pretty much everything these days. Share-level...

Exploits0
Atlassian
Atlassian
added 2013/02/15 3:28 p.m.367 views

Grant "Browse Project" permission to "Current Assignee" makes project visible to all users

panel:bgColor=e7f4fa NOTE: This bug report is for JIRA Server. Using JIRA Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/JRACLOUD-31720. panel h3. Summary This bug is related to closed bug ticket https://jira.atlassian.com/browse/JRA-8950 When the Current Assignee is giv...

0.1AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/02/15 3:28 p.m.35 views

Grant "Browse Project" permission to "Current Assignee" makes project visible to all users

panel:bgColor=e7f4fa NOTE: This bug report is for JIRA Cloud. Using JIRA Server? See the corresponding bug report|http://jira.atlassian.com/browse/JRASERVER-31720. panel panel:title=Status Update|borderStyle=solid|borderColor=ff7f7f|titleBGColor=ff7f7f|bgColor=e5e5e5 Hi everyone, We have reviewed...

7AI score
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2013/02/04 11:51 p.m.6 views

7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 10 and Update 11, when running on Windows using Internet Explorer, Firefox, Opera, and Google Chrome, allows remote attackers to bypass the "Very High" security level of the Java Control Panel and...

10CVSS7.5AI score0.07641EPSS
Exploits0References5
NVD
NVD
added 2013/01/31 2:55 p.m.38 views

CVE-2013-1489

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 10 and Update 11, when running on Windows using Internet Explorer, Firefox, Opera, and Google Chrome, allows remote attackers to bypass the "Very High" security level of the Java Control Panel and...

10CVSS6.2AI score0.07641EPSS
Exploits0References14
Prion
Prion
added 2013/01/31 2:55 p.m.23 views

Security feature bypass

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 10 and Update 11, when running on Windows using Internet Explorer, Firefox, Opera, and Google Chrome, allows remote attackers to bypass the "Very High" security level of the Java Control Panel and...

10CVSS6.9AI score0.07641EPSS
Exploits0References14Affected Software2
UbuntuCve
UbuntuCve
added 2013/01/31 2:55 p.m.26 views

CVE-2013-1489

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 10 and Update 11, when running on Windows using Internet Explorer, Firefox, Opera, and Google Chrome, allows remote attackers to bypass the "Very High" security level of the Java Control Panel and...

10CVSS7.3AI score0.07641EPSS
Exploits0References7
myhack58
myhack58
added 2010/03/09 12:0 a.m.17 views

sudo default configuration of the hazard and the local mention of the right of use-vulnerability warning-the black bar safety net

Pixel bun sudo allows a regular user to other users permissionsdefault is rootto perform some or all of the commands, it is a control non-Ops the permission of the good scenarios to put the root to the non-operation and maintenance personnel is quite dangerous a thing, and also a avoid ssh direct...

0.3AI score
Exploits0
OpenVAS
OpenVAS
added 2010/03/02 12:0 a.m.19 views

Mandriva Update for msec MDVA-2010:079 (msec)

Check for the Version of msec OpenVAS Vulnerability Test Mandriva Update for msec MDVA-2010:079 msec Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

6.8CVSS7.5AI score0.02876EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/03/02 12:0 a.m.13 views

Mandriva Update for msec MDVA-2010:078 (msec)

Check for the Version of msec OpenVAS Vulnerability Test Mandriva Update for msec MDVA-2010:078 msec Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

7.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/03/02 12:0 a.m.19 views

Mandriva Update for msec MDVA-2010:079 (msec)

Check for the Version of msec OpenVAS Vulnerability Test Mandriva Update for msec MDVA-2010:079 msec Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

6.8CVSS7.5AI score0.02876EPSS
Exploits0References2
Atlassian
Atlassian
added 2009/07/31 6:6 a.m.19 views

JQL not respecting Issue Security Level "Project Lead"

While writing TestIssueSecurityLevel I found the following problem: fred is not a Project Lead HSP-3 has Issue Security Level of "Project Lead" only. empty JQL to show all visible issues doesn't show HSP-3. make fred the Project Lead same query: still no HSP-3 however: fred can browse to HSP-3 an...

1.4AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/07/31 6:6 a.m.30 views

JQL not respecting Issue Security Level "Project Lead"

While writing TestIssueSecurityLevel I found the following problem: fred is not a Project Lead HSP-3 has Issue Security Level of "Project Lead" only. empty JQL to show all visible issues doesn't show HSP-3. make fred the Project Lead same query: still no HSP-3 however: fred can browse to HSP-3 an...

1.4AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/07/28 5:51 a.m.24 views

Allow issue security level to use any custom field that implements UserCFNotificationTypeAware

panel:bgColor=e7f4fa NOTE: This suggestion is for JIRA Cloud. Using JIRA Server? See the corresponding suggestion|http://jira.atlassian.com/browse/JRASERVER-18099. panel It would be useful to be able to set the security level on an issue to include everyone who participated on an issue so if you...

0.8AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/07/28 5:51 a.m.31 views

Allow issue security level to use any custom field that implements UserCFNotificationTypeAware

panel:bgColor=e7f4fa NOTE: This suggestion is for JIRA Server. Using JIRA Cloud? See the corresponding suggestion|http://jira.atlassian.com/browse/JRACLOUD-18099. panel It would be useful to be able to set the security level on an issue to include everyone who participated on an issue so if you h...

0.8AI score
Exploits0Affected Software1
Rows per page
Query Builder