Lucene search
K

426 matches found

0day.today
0day.today
added 2010/12/25 12:0 a.m.23 views

SquareCMS 0.3.1 (post.php) SQL Injection Vulnerability

Exploit for php platform in category web applications SquareCMS 0.3.1 post.php Remote SQL Injection Vulnerability found by cOndemned vendor: http://spoolio.co.cc/ download: http://webscripts.softpedia.com/script/Content-Management/Square-CMS-66303.html prior versions may also be affected source o...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/12/24 12:0 a.m.30 views

SquareCMS 0.3.1 - 'post.php' SQL Injection

SquareCMS 0.3.1 post.php Remote SQL Injection Vulnerability found by cOndemned vendor: http://spoolio.co.cc/ download: http://webscripts.softpedia.com/script/Content-Management/Square-CMS-66303.html prior versions may also be affected source of post.php lines 15 - 31: $token = $GET'id'; // 1 if...

7.4AI score
Exploits0
Prion
Prion
added 2010/10/26 8:0 p.m.17 views

Directory traversal

Directory traversal vulnerability in the FTP client in Serengeti Systems Incorporated Robo-FTP 3.7.3, and probably other versions before 3.7.5, allows remote FTP servers to write arbitrary files via a .. dot dot in a filename in a server response...

9.3CVSS7.2AI score0.01596EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2010/10/26 7:0 p.m.18 views

CVE-2010-4095

Directory traversal vulnerability in the FTP client in Serengeti Systems Incorporated Robo-FTP 3.7.3, and probably other versions before 3.7.5, allows remote FTP servers to write arbitrary files via a .. dot dot in a filename in a server response...

6.7AI score0.01596EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2010/09/21 12:0 a.m.23 views

Basic Web Server 1.0 Denial Of Service

------------------------------------------------------------------------ Software................Basic Web Server 1.0 Vulnerability...........Denial Of Service Download................http://www.bit4free.com/ Release Date............9/16/2010 Tested On...............Windows XP...

Exploits0
securityvulns
securityvulns
added 2010/08/11 12:0 a.m.32 views

Microsoft XML Core Services memory corruption

Memory corruption on server's response pasrsing in XMLHTTP...

9.3CVSS2.4AI score0.24865EPSS
Exploits2References1Affected Software1
securityvulns
securityvulns
added 2010/07/24 12:0 a.m.30 views

iputils ping DoS

Utility may hang on server response parsing...

5CVSS1.7AI score0.03038EPSS
Exploits0References1
securityvulns
securityvulns
added 2009/12/01 12:0 a.m.59 views

Eureka Mail buffer overflow

Buffer overflow on POP3 / SMTP server response parsing...

4.5AI score
Exploits0References2Affected Software1
CVE
CVE
added 2009/03/11 2:0 p.m.81 views

CVE-2009-0234

CVE-2009-0234 concerns the DNS Resolver Cache Service (DNSCache) in Windows DNS Server. The vulnerability arises from the DNS server’s handling of crafted DNS responses, where improper caching could let remote attackers predict transaction IDs and poison caches by sending numerous crafted queries...

6.4CVSS6.3AI score0.34442EPSS
Exploits1References11Affected Software3
0day.today
0day.today
added 2008/12/22 12:0 a.m.101 views

RoundCube Webmail <= 0.2b Remote Code Execution Exploit

Exploit for unknown platform in category web applications ======================================================= RoundCube Webmail echoiniget'disablefunctions'; exec, system PHP passthru"id; uname -a"; uid=666www-data gid=666www-data groups=666www-data Linux mail 2.6.28 0 Sun Jan 01 10:05:33 CET...

7.1AI score0.54003EPSS
Exploits15
OSV
OSV
added 2008/12/17 8:30 p.m.1 views

DEBIAN-CVE-2008-5660

Format string vulnerability in the vinagreutilsshowerror function src/vinagre-utils.c in Vinagre 0.5.x before 0.5.2 and 2.x before 2.24.2 might allow remote attackers to execute arbitrary code via format string specifiers in a crafted URI or VNC server response...

6.8CVSS8AI score0.09121EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2008/12/17 8:30 p.m.15 views

CVE-2008-5660

Format string vulnerability in the vinagreutilsshowerror function src/vinagre-utils.c in Vinagre 0.5.x before 0.5.2 and 2.x before 2.24.2 might allow remote attackers to execute arbitrary code via format string specifiers in a crafted URI or VNC server response...

6.8CVSS6.2AI score0.09121EPSS
Exploits1References2
Cvelist
Cvelist
added 2008/12/17 8:0 p.m.39 views

CVE-2008-5660

Format string vulnerability in the vinagreutilsshowerror function src/vinagre-utils.c in Vinagre 0.5.x before 0.5.2 and 2.x before 2.24.2 might allow remote attackers to execute arbitrary code via format string specifiers in a crafted URI or VNC server response...

7.2AI score0.09121EPSS
Exploits1References12
Debian CVE
Debian CVE
added 2008/12/17 8:0 p.m.45 views

CVE-2008-5660

Format string vulnerability in the vinagreutilsshowerror function src/vinagre-utils.c in Vinagre 0.5.x before 0.5.2 and 2.x before 2.24.2 might allow remote attackers to execute arbitrary code via format string specifiers in a crafted URI or VNC server response...

6.8CVSS7.1AI score0.09121EPSS
Exploits1
securityvulns
securityvulns
added 2008/11/24 12:0 a.m.29 views

Microsoft Windows LDAP users enumeration

Different serverreply on invalid username and invalid password...

3.2AI score
Exploits0References1
securityvulns
securityvulns
added 2008/11/24 12:0 a.m.29 views

[NT] Microsoft Windows Active Directory LDAP Server Information Disclosure Vulnerability

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

0.3AI score
Exploits0
myhack58
myhack58
added 2008/11/20 12:0 a.m.22 views

No-IP DUC <= 2.1.7 Remote Code Execution Exploit-vulnerability warning-the black bar safety net

/ | |/ / / |/ / / / | / / / / /|/ / / / / / / / / / / / / // / / / / // / // // / //|// //// //,//,/ xenomuta arroba phreaker punto net http://xenomuta.tuxfamily.org/ - Methylxantina 256mg Permlink: http://xenomuta.tuxfamily.org/exploits/noIPwn3r.c noIPwn3r Exploit 0-day para el cliente...

Exploits0
Exploit DB
Exploit DB
added 2008/10/05 12:0 a.m.36 views

OpenNMS &lt; 1.5.96 - Multiple Vulnerabilities

OpenNMS Multiple Vulnerabilities -------------------------------- BugSec | Security Advisory Moshe Ben-Abu | Security Expert Advisory URL PDF: http://www.bugsec.com/upfiles/OpenNMSMultipleVulnerabilities.pdf Vendor ------ OpenNMS Group – http://www.opennms.com OpenNMS Project –...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/03/29 12:0 a.m.46 views

Apache Tomcat处理包含MS-DOS设备名请求信息泄漏漏洞

BUGTRAQ ID: 28484 CVE ID: CVE-2005-4703 CNCVE ID:CNCVE-20054703 Tomcat是一款由Apache软件基金会下属的Jakarta项目开发的一个Servlet容器。 Apache Tomcat 4.0.3不正确处理包含MS-DOS设备名的请求,远程攻击者可以利用漏洞获得敏感信息。 当请求的文件匹配MS-DOS文件名时,就会出现错误。服务器会返回包含安装路径等敏感信息。 Apache Software Foundation Tomcat 4.0.3 Apache Software Foundation Tomcat 4.0.3...

5CVSS6.5AI score0.25132EPSS
Exploits2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.21 views

Debian Security Advisory DSA 209-1 (wget)

The remote host is missing an update to wget announced via advisory DSA 209-1. OpenVAS Vulnerability Test $Id: deb2091.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 209-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

5CVSS0.3AI score0.04249EPSS
Exploits0
Rows per page
Query Builder