Lucene search
K

2326 matches found

exploitpack
exploitpack
added 2011/04/19 12:0 a.m.14 views

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeE1Menu_OCL.mafService?e1.namespace Cross-Site Scripting

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeE1MenuOCL.mafService?e1.namespace Cross-Site Scripting source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these...

Exploits0
exploitpack
exploitpack
added 2011/04/19 12:0 a.m.9 views

CRESUS - recette_detail.php SQL Injection

CRESUS - recettedetail.php SQL Injection source: https://www.securityfocus.com/bid/47416/info CRESUS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...

Exploits0
exploitpack
exploitpack
added 2011/04/18 12:0 a.m.14 views

XOOPS 2.5 - imagemanager.php Local File Inclusion

XOOPS 2.5 - imagemanager.php Local File Inclusion source: https://www.securityfocus.com/bid/47418/info XOOPS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view arbitrary local files within th...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/04/08 12:0 a.m.21 views

vTiger CRM 5.2.1 - 'sortfieldsjson.php' Local File Inclusion

source: https://www.securityfocus.com/bid/47263/info vtiger CRM is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in t...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/04/07 12:0 a.m.18 views

eGroupWare 1.8.1 - test.php Cross-Site Scripting

eGroupWare 1.8.1 - test.php Cross-Site Scripting source: https://www.securityfocus.com/bid/47273/info eGroupware is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in t...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2011/04/05 12:0 a.m.13 views

UseBB 1.0.11 - admin.php Local File Inclusion

UseBB 1.0.11 - admin.php Local File Inclusion source: https://www.securityfocus.com/bid/47166/info UseBB is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information...

7.4AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2011/04/05 12:0 a.m.21 views

TutorialMS v1.4 (show) Remote SQL Injection Vulnerability

Summary TutorialMS is a free content management system, developed specifically for tutorial pages. It is written in PHP and uses MySQL as a database. TutorialMS offers all the usual features you need to build quick and easy your own tutorial page, without great programming knowledge. Description...

6AI score
Exploits0
OpenVAS
OpenVAS
added 2011/03/31 12:0 a.m.12 views

pppBLOG 'search.php' Cross Site Scripting Vulnerability

pppBLOG is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

6.9AI score
Exploits0References2
Exploit DB
Exploit DB
added 2011/03/28 12:0 a.m.19 views

webEdition CMS 6.1.0.2 - 'DOCUMENT_ROOT' Local File Inclusion

source: https://www.securityfocus.com/bid/47065/info webEdition CMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local files in the context of the webserver proces...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2011/03/28 12:0 a.m.8 views

OrangeHRM <= 2.6.2 'jobVacancy.php' XSS Vulnerability - Active Check

OrangeHRM is prone to a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyrig...

6.1AI score
Exploits0References1
OpenVAS
OpenVAS
added 2011/03/28 12:0 a.m.15 views

NewsPortal 'post.php' Cross Site Scripting Vulnerability

NewsPortal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright ...

6.5AI score
Exploits0References1
exploitpack
exploitpack
added 2011/03/27 12:0 a.m.35 views

FLVPlayer4Free 2.9 - .fp4f Remote Buffer Overflow

FLVPlayer4Free 2.9 - .fp4f Remote Buffer Overflow source: https://www.securityfocus.com/bid/47045/info FLVPlayer4Free is prone to a remote buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2011/03/27 12:0 a.m.37 views

eXPert PDF Batch Creator 7.0.880.0 - Denial of Service

source: https://www.securityfocus.com/bid/47040/info eXPert PDF is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause the application to crash, denying service to legitimate users. eXPert PDF 7.0.880.0 is vulnerable; other versions may also be affected...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2011/03/25 12:0 a.m.13 views

netjukebox 'skin' Parameter Cross Site Scripting Vulnerability

netjukebox is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

6.9AI score
Exploits0References2
exploitpack
exploitpack
added 2011/03/23 12:0 a.m.13 views

Perl 5.x - Perl_reg_numbered_buff_fetch() Remote Denial of Service

Perl 5.x - Perlregnumberedbufffetch Remote Denial of Service source: https://www.securityfocus.com/bid/47006/info Perl is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause an application implemented with affected perl code to abort, denying service to...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/03/23 12:0 a.m.25 views

Perl 5.x - &#039;Perl_reg_numbered_buff_fetch()&#039; Remote Denial of Service

source: https://www.securityfocus.com/bid/47006/info Perl is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause an application implemented with affected perl code to abort, denying service to legitimate users. !/usr/bin/perl my @x = "A=B","AAAA=/";...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2011/03/21 12:0 a.m.29 views

Nazgul Nostromo nhttpd < 1.9.4 RCE / Directory Traversal Vulnerability - Active Check

Nazgul Nostromo nhttpd is prone to a remote command execution RCE vulnerability because it fails to properly validate user-supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

7.5CVSS9.6AI score0.03664EPSS
Exploits4References3
exploitpack
exploitpack
added 2011/03/15 12:0 a.m.24 views

VideoLAN VLC Media Player 1.0.5 - .ape Denial of Service

VideoLAN VLC Media Player 1.0.5 - .ape Denial of Service source: https://www.securityfocus.com/bid/46868/info VLC Media Player is prone to a denial-of-service vulnerability. Successful exploits may allow attackers to crash the affected application, denying service to legitimate users. VLC Media...

0.2AI score
Exploits0
OpenVAS
OpenVAS
added 2011/03/11 12:0 a.m.29 views

Nagios 'layer' Parameter XSS Vulnerabilities

Nagios is prone to a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

4.3CVSS8AI score0.0293EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2011/03/10 12:0 a.m.17 views

Novatel Wireless MiFi 2352 Password Information Disclosure Vulnerability - Active Check

MiFi 2352 is prone to an information disclosure vulnerability that may expose sensitive information. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

6.8AI score
Exploits0References2
Rows per page
Query Builder