IBM Lotus Notes Sametime User Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'enumerable' class MetasploitModule 'IBM Lotus Notes Sametime User Enumeration', 'Description' = %q This module extracts usernames using the IBM Lotus Notes...

SUSE CVE-2016-5095

Integer overflow in the phpescapehtmlentitiesex function in ext/standard/html.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering a large output string from a FILTERSANITIZEFULLSPECIALCHARS...

Regular Expression Denial Of Service (ReDOS)

Vfsjfilechooser2 is vulnerable to regular expression denial of service. Lack of proper handling of specials chars in passwords and limiting the input length on regex patterns allows an attacker to input malicious URIs to cause an application crash...

IBM Lotus Notes Sametime User Enumeration

This module extracts usernames using the IBM Lotus Notes Sametime web interface using either a dictionary attack which is preferred, or a bruteforce attack trying all usernames of MAXDEPTH length or less. This module requires Metasploit: https://metasploit.com/download Current source:...

CVE-2007-6526

Cross-site scripting XSS vulnerability in tiki-specialchars.php in TikiWiki before 1.9.9 allows remote attackers to inject arbitrary web script or HTML via the areaname parameter...