Lucene search
+L

2930 matches found

0day.today
0day.today
added 2005/01/25 12:0 a.m.74 views

AWStats configdir Remote Command Execution Exploit (perl code)

Exploit for cgi platform in category web applications ============================================================== AWStats configdir Remote Command Execution Exploit perl code ============================================================== !/usr/bin/perl ---GHC---------------------------------...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2005/01/25 12:0 a.m.16 views

AWStats 6.0 6.2 - configdir Remote Command Execution (Perl)

AWStats 6.0 6.2 - configdir Remote Command Execution Perl !/usr/bin/perl ---GHC--------------------------------- Remote command execution exploit Product: Advanced Web Statistics 6.0 - 6.2 URL:http://awstats.sourceforge.net Greets & respects to our friends: 1dt.w0lf and all rst.void.ru Special...

Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/09 12:0 a.m.195 views

SAFE TEAM Regulus Customer Statistics Connection Log Information Disclosure

Binary data 2273.prm...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2004/09/07 12:0 a.m.17 views

SAFE TEAM Regulus 2.2 - Customer Statistics Information Disclosure

SAFE TEAM Regulus 2.2 - Customer Statistics Information Disclosure source: https://www.securityfocus.com/bid/11134/info Regulus is reported prone to an information disclosure vulnerability. It is reported that it is possible to view a target users connection statistics without requiring valid...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2004/09/07 12:0 a.m.21 views

SAFE TEAM Regulus 2.2 - Customer Statistics Information Disclosure

source: https://www.securityfocus.com/bid/11134/info Regulus is reported prone to an information disclosure vulnerability. It is reported that it is possible to view a target users connection statistics without requiring valid credentials. An attacker may employ data that is obtained in this mann...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.10 views

Awstats Web Statistics Server Detection

Binary data 2504.prm...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2004/05/26 12:0 a.m.50 views

Isoqlog-2.2-Beta buffer overflow

+----- Software -----+ Isoqlog is an MTA log analysis program written in C . it designed to scan qmail, postfix, sendmail, exim logfile and produce usage statistics in HTML format. for viewing through a browser. It produces Top domains output according to Incoming , Outgoing , total mails and...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2004/04/22 12:0 a.m.33 views

[Full-Disclosure] pisg XSS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ========================================================================= = pisg XSS ========================================================================= pisg is an IRC channel statics generator written in Perl, it creates statistics from differe...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2004/04/22 12:0 a.m.13 views

PISG 0.54 - IRC Nick HTML Injection

PISG 0.54 - IRC Nick HTML Injection source: https://www.securityfocus.com/bid/10195/info pisg has been reported prone to an input validation vulnerability. The issue will only present itself when pisg is used to monitor an IRC server that does not place limitations on IRC Nick values that can be...

7.6AI score
Exploits0
RedHat Linux
RedHat Linux
added 2004/03/10 2:34 p.m.3 views

Moderate: Red Hat Security Advisory: : Updated sysstat packages fix security vulnerabilities

Updated sysstat packages that fix various bugs and a minor security issue are now available. Sysstat is a tool for gathering system statistics. A bug was found in the Red Hat sysstat package post and trigger scripts, which used insecure temporary file names. A local attacker could overwrite syste...

4.6CVSS5.8AI score0.00392EPSS
Exploits0
securityvulns
securityvulns
added 2003/05/17 12:0 a.m.75 views

PHP-Nuke code injection in Yearly Stats at Statistics module

------- Product: PHP-Nuke Vendor: Francisco Burci Versions Vulnerable: 6.0 without patches , 6.0 with index.php and mainfile.php patches. 5.5 with patches all resting script tags No vulnerable: 6.0 with mainfile.php patch for block url tags inclusions not all . 5.5 with script tags but with the...

0.4AI score
Exploits0
NVD
NVD
added 2002/12/31 5:0 a.m.15 views

CVE-2002-2058

TeeKai Tracking Online 1.0 uses weak encryption of web usage statistics in data/userlog/log.txt, which allows remote attackers to identify IP's visiting the site by dividing each octet by the MD5 hash of '20'...

7.5CVSS7.5AI score0.00859EPSS
Exploits1References3
NVD
NVD
added 2002/12/31 5:0 a.m.16 views

CVE-2002-2057

TeeKai Forum 1.2 uses weak encryption of web usage statistics in data/memberlog.txt, which is stored under the web document root with insufficient access control, which allows remote attackers to identify IP's visiting the site by dividing each octet by the MD5 hash of '20'...

5CVSS6.4AI score0.01649EPSS
Exploits1References4
OSV
OSV
added 2002/12/31 5:0 a.m.4 views

DEBIAN-CVE-2002-1827

Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the 1 alias, 2 map, 3 statistics, and 4 pid files...

2.1CVSS6.4AI score0.00928EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2002/12/31 12:0 a.m.6 views

PT-2002-2779 · Teekai · Teekai Tracking Online

Name of the Vulnerable Software and Affected Versions: TeeKai Tracking Online version 1.0 Description: The issue concerns the weak encryption of web usage statistics stored in the data/userlog/log.txt file. This weakness allows remote attackers to identify the IP addresses of visitors to the site...

7.5CVSS6.5AI score0.00859EPSS
Exploits1References5
exploitpack
exploitpack
added 2002/09/10 12:0 a.m.14 views

UDP Stress Tester - Denial of Service

UDP Stress Tester - Denial of Service include include include include include include include include include define shit "BLEAHD" timet elapsed; long sendcount = 0, kbs; void statsint signum kbs = sendcount6/time0-elapsed/1024; // i dont think this is right but... printf"\npid: %d, ran for %u...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/09/10 12:0 a.m.37 views

UDP Stress Tester - Denial of Service

include include include include include include include include include define shit "BLEAHD" timet elapsed; long sendcount = 0, kbs; void statsint signum kbs = sendcount6/time0-elapsed/1024; // i dont think this is right but... printf"\npid: %d, ran for %u seconds\n",getpid,time0 - elapsed;...

7.4AI score
Exploits0
CVE
CVE
added 2002/03/09 5:0 a.m.48 views

CVE-2000-0776

CVE-2000-0776 affects Mediahouse Statistics Server 5.02x. The vulnerability allows remote attackers to execute arbitrary commands via a long HTTP GET request. We have confirmed references in CVE records and OpenVAS entries describing the same issue, with the NVD CVSSv2 base score of 7.5 (Network ...

7.5CVSS7.6AI score0.03735EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.24 views

CVE-2000-0776

Mediahouse Statistics Server 5.02x allows remote attackers to execute arbitrary commands via a long HTTP GET request...

7.6AI score0.03735EPSS
Exploits1References3
Exploit DB
Exploit DB
added 2001/06/03 12:0 a.m.25 views

WebTrends Enterprise Reporting Server 3.1 c/3.5 - Source Code Disclosure

source: https://www.securityfocus.com/bid/2812/info WebTrends Live is a web-based reporting service which provides interactive tracking of usage statistics and E-commerce revenue. It is possible to view the source code of arbitrary scripts on the WebTrends Live webserver. This is accomplished by...

7AI score
Exploits0
Rows per page
Query Builder