Lucene search
K

11967 matches found

Packet Storm
Packet Storm
added 2014/01/15 12:0 a.m.24 views

XAMPP 3.2.1 Cross Site Scripting

Title : XAMPP 3.2.1 Cross Site Scripting Author : DevilScreaM Date : 15 January 2014 Category : Web Applications Vendor : http://sourceforge.net/projects/xampp Version : 3.2.1 Type : PHP Greetz : 0day-id.com | newbie-security.or.id | Borneo Security | Indonesian Security Indonesian Hacker |...

Exploits0
Exploit DB
Exploit DB
added 2014/01/14 12:0 a.m.29 views

PHPJabbers Event Booking Calendar 2.0 - Multiple Vulnerabilities

Event Booking Calendar V2.0 - Multiple Vulnerabilities ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : www.phpjabbers.com/event-booking-calendar/ .:. Dork :...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2014/01/14 12:0 a.m.29 views

Hotel Booking System 3.0 CSRF / XSS / File Disclosure

Hotel Booking System V3.0 - Multiple Vulnerabilties ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : http://www.phpjabbers.com/hotels-booking-system/ .:. Tested On Demo :...

0.1AI score
Exploits0
Hacker One
Hacker One
added 2014/01/14 12:0 a.m.73 views

Internet Bug Bounty: Handling of jar: URIs bypasses AllowScriptAccess=never

This bug was reported directly to Adobe. http://helpx.adobe.com/security/products/flash-player/apsb14-02.html...

10CVSS6.3AI score0.07117EPSS
Exploits0
Packet Storm
Packet Storm
added 2014/01/08 12:0 a.m.19 views

Built2Go PHP Shopping 1.x Cross Site Request Forgery

Built2Go PHP Shopping v 1.x – CSRF Vulnerabilityadd admin ==================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : [email protected] , [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : http://www.built2go.com/ .:. Dor...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2014/01/06 12:0 a.m.22 views

Seagate Black Armor Root Exploit

Public Release v0.2 abstract class MD5Decryptor abstract public function probe$hash; public static function plain$hash, $class = NULL if $class === NULL $class = getcalledclass; else $class = sprintf"MD5Decryptor%s", $class; $decryptor = new $class; if count$hash 1 foreach $hash as &$one $one =...

0.1AI score
Exploits0
OpenVAS
OpenVAS
added 2014/01/06 12:0 a.m.33 views

Ubuntu Update for linux USN-2064-1

Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN20641.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for linux USN-2064-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

6.9CVSS7AI score0.03181EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2013/12/28 12:0 a.m.24 views

Solaris 9 (sparc) : 127411-16

Message Queue 4.1 Update 4 Patch 6 SunOS 5.9 5.10 Core product. Date this patch was last updated by Sun : Mar/12/12 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

5.7CVSS6.7AI score0.00343EPSS
Exploits0References2
Metasploit
Metasploit
added 2013/12/26 12:0 p.m.17 views

IBM Lotus Sametime Version Enumeration

This module scans an IBM Lotus Sametime web interface to enumerate the application's version and configuration information. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'uri' class MetasploitModule Release...

5CVSS6.9AI score0.13151EPSS
Exploits2
Packet Storm
Packet Storm
added 2013/12/26 12:0 a.m.25 views

RBS Change 3.6.8 Cross Site Scripting

Script Name : RBS Change Version : v3.6.8 Bug Type : XSS vulnerability Found by : Metropolis Home : http://metropolis.fr.cr Discovered : 25/12/2013 Download app : http://www.rbschange.fr/addons/distributions/RBS-Change-Core,51422.html Google search : Propulsé par RBS Change PoC :...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2013/12/25 12:0 a.m.29 views

RealNetworks RealPlayer 16 Buffer Overflow

!/usr/bin/perl ----------------------------------------------------------------------------- Exploit Title: RealNetworks RealPlayer Version Attribute Buffer Overflow Date: Dec 20, 2013 Exploit Author: Gabor Seljan Vendor Homepage: http://www.real.com Software Link:...

9.3CVSS0.6AI score0.11345EPSS
Exploits11
Packet Storm
Packet Storm
added 2013/12/16 12:0 a.m.23 views

Traidnt Upload 3 Add Administrator

!/usr/bin/python import urllib2 import sys print """ +-------------------------------------------+ | Traidnt upload 3 - Admin add Exploit | | By i-Hmx | | sec4ever.com | | [email protected] | +-------------------------------------------+""" target=strrawinput" Enter Target " print "+ Adding new...

Exploits0
0day.today
0day.today
added 2013/12/15 12:0 a.m.64 views

KikChat - (LFI/RCE) Multiple Vulnerability

Exploit for php platform in category web applications KikChat http://127.0.0.1/KikChat/myroom/shell.php?cmd=whoami;id;uname -a;pwd;ls -al makase banyak : tau lo bentor to hulandalo tamongodula'a wau tamohutata, dulo ito momongulipu \\\\\\\\\\\\\\\\\\\\\\\\\ p.s malandingalo...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2013/12/09 6:0 p.m.18 views

CVE-2013-6356

...

Exploits7
securityvulns
securityvulns
added 2013/12/09 12:0 a.m.67 views

D-Link DIR-XXX remote root access exploit.

General info: ============= A lot have been already said about SOHO routers. Thus, without further ado another nail in the coffin. knock knock =========== -- cut !/bin/sh if -z "$1" ; then echo "d-link DIR-300 all, DIR-600 all, DIR-615 fw 4.0"; echo "exploited by AKAT-1,...

7.2AI score
Exploits0
CVE
CVE
added 2013/12/07 8:0 p.m.64 views

CVE-2013-4478

CVE-2013-4478 affects Sup versions prior to 0.13.2.1 and prior to 0.14.1.1, where remote attackers could execute arbitrary commands via shell metacharacters in the filename of an email attachment. The fixed releases are 0.13.2.1 and 0.14.1.1, per the descriptions in the connected records. Practic...

6.8CVSS7.5AI score0.02138EPSS
Exploits1References7Affected Software1
ThreatPost
ThreatPost
added 2013/12/04 10:2 a.m.15 views

Pony Botnet Controller Has 2 Million Stolen, Weak Passwords

So what’s worse: Finding two million passwords harvested by a botnet, or learning that most of the stolen passwords are terribly weak? Researchers at Trustwave found another Pony botnet controller recently that oversees a trove of close to two million website logins, email account credentials, as...

0.6AI score
Exploits0References1
0day.today
0day.today
added 2013/12/02 12:0 a.m.39 views

FlashComs Chat <= 6.5 - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications "@".$options'f'."","fileId" = $options"f"; $result = curlexec$handle; ifstrpos$result,"UPLOADSUCCESS" echo "\n\n"; echo "\t+ Exploitation success!!\n"; echo "\t+ http://$optionsu/files/$optionsf\n"; echo "\n"; else echo "\n- Target is not...

7.1AI score
Exploits0
myhack58
myhack58
added 2013/11/30 12:0 a.m.15 views

Small Zhu in the order management system of an injection-vulnerability warning-the black bar safety net

I didn't stop, too busy with work, time although little, but always there is nothing original out, okay 90SEC can often come up around and back into an internship, really scared a jump. Often engage in a shopping station should have encountered such an order management system, a fee system for. 漏...

7.6AI score
Exploits0
Prion
Prion
added 2013/11/25 3:55 p.m.16 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-4513. Reason: This candidate is a duplicate of CVE-2013-4513. Notes: All CVE users should reference CVE-2013-4513 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.8AI score0.00507EPSS
Exploits0
Rows per page
Query Builder