CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2011/12/16 11:0 a.m.•17 views

CVE-2011-4729

The Server Administration Panel in Parallels Plesk Panel 10.2.0build1011110331.18 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, as demonstrated by...

6.1AI score0.0025EPSS

The Hacker News•added 2011/11/12 8:19 p.m.•14 views

PwnieExpress : Pentesting suite for the Nokia N900

PwnieExpress : Pentesting suite for the Nokia N900 PwnieExpress providing one of the best Pentesting suite for the Nokia N900 .It Includes Aircrack, Metasploit, Kismet, GrimWEPa, SET, Fasttrack, Ettercap, nmap, and more, Custom pentesting screen with shortcuts to macchanger, injection on/off, etc...

7.3AI score

Zero Day Initiative•added 2011/10/26 12:0 a.m.•52 views

Apple QuickTime H264 Stream frame_cropping Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

7.5CVSS4.4AI score0.03571EPSS

Exploits2References1

Exploit DB•added 2011/10/25 12:0 a.m.•42 views

phpLDAPadmin 1.2.1.1 - Remote PHP Code Injection (Metasploit) (2)

$Id: phpldapadminqueryengine.rb 14060 2011-10-25 05:25:39Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.4AI score

myhack58•added 2011/10/02 12:0 a.m.•19 views

On the IIS registry full version leak the user's path and FTP username vulnerability-vulnerability warning-the black bar safety net

This hole by the HE AND Ah di Ming find! And do the test! The title is quite long! Haha This vulnerability seems tasteless, but there are also powerful usefulness. But know how to use him, completely by myself, I just give a little idea. Into the theme! Important the registry:...

Packet Storm•added 2011/09/21 12:0 a.m.•30 views

AVCon Buffer Overflow With DEP Bypass

DEP Bypass for OptIn/OptOut all modules used are not aslr aware script produces a text file, copy the contents paste in the input field next to the call button discovered by Dillon Beresford import sys from struct import pack print "\n=====================" print "AVCon H323 DEP Bypass" print "...

0.8AI score

Exploit DB•added 2011/09/19 12:0 a.m.•24 views

Toko Lite CMS 1.5.2 - 'edit.php' HTTP Response Splitting

Toko Lite CMS 1.5.2 edit.php HTTP Response Splitting Vulnerability Vendor: Toko Product web page: http://toko-contenteditor.pageil.net Affected version: 1.5.2 Summary: Toko Web Content Editor cms is a compact, multi language, open source web editor and content management system CMS. It is advance...

7.4AI score

RedHat Linux•added 2011/09/06 9:31 p.m.•2 views

kernel: nl80211: missing check for valid SSID size in scan operations

Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAPNETADMIN capability during scan operations with a long SSID value...

7.2CVSS7.2AI score0.00115EPSS

Exploits0References4

Metasploit•added 2011/08/21 5:58 a.m.•31 views

Windows Gather Directory Permissions Enumeration

This module enumerates directories and lists the permissions set on found directories. Please note: if the PATH option isn't specified, then the module will start enumerate whatever is in the target machine's %PATH% variable. This module requires Metasploit: https://metasploit.com/download Curren...

OpenVAS•added 2011/08/19 12:0 a.m.•30 views

Google Chrome Secure Cookie Security Bypass Vulnerability - Linux

Google Chrome is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.2AI score0.00315EPSS

OpenVAS•added 2011/08/19 12:0 a.m.•26 views

Google Chrome Secure Cookie Security Bypass Vulnerability - Windows

5.8CVSS6.2AI score0.00315EPSS

OpenVAS•added 2011/08/18 12:0 a.m.•23 views

Microsoft Explorer HTTPS Sessions Multiple Vulnerabilities - Windows

Microsoft Explorer is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS5.2AI score0.17828EPSS

OpenVAS•added 2011/08/18 12:0 a.m.•18 views

Apple Safari Secure Cookie Security Bypass Vulnerability - Windows

Apple Safari web browser is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.8CVSS5.2AI score0.00435EPSS

OpenVAS•added 2011/08/18 12:0 a.m.•25 views

Opera 'HTTPS-Session' Multiple Vulnerabilities (Mac OS X)

The host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperahttpssessionsmultvulnmacosx.nasl 7024 2017-08-30 11:51:43Z teissa $ Opera 'HTTPS-Session' Multiple Vulnerabilities Mac OS X Authors: Madhuri D Copyright: Copyright c 2011 Greenbone...

5.8CVSS0.5AI score0.00435EPSS

OpenVAS•added 2011/08/18 12:0 a.m.•32 views

Opera 'HTTPS-Session' Multiple Vulnerabilities (Windows)

The host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperahttpssessionsmultvulnwin.nasl 7044 2017-09-01 11:50:59Z teissa $ Opera 'HTTPS-Session' Multiple Vulnerabilities Windows Authors: Madhuri D Copyright: Copyright c 2011 Greenbone Networ...

5.8CVSS0.1AI score0.00435EPSS

OpenVAS•added 2011/08/18 12:0 a.m.•20 views

Apple Safari Secure Cookie Security Bypass Vulnerability (Mac OS X)

The host is installed with Apple Safari web browser and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: gbapplesafaricookiesecbypassvulnmacosx.nasl 7015 2017-08-28 11:51:24Z teissa $ Apple Safari Secure Cookie Security Bypass Vulnerability Mac OS X Authors: Sooraj KS...

5.8CVSS0.00435EPSS

OpenVAS•added 2011/08/18 12:0 a.m.•21 views

Opera 'HTTPS-Session' Multiple Vulnerabilities - Mac OS X

Opera is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.6AI score0.00435EPSS

OpenVAS•added 2011/08/18 12:0 a.m.•22 views

Apple Safari Secure Cookie Security Bypass Vulnerability - Mac OS X

5.8CVSS5.2AI score0.00435EPSS