Lucene search
K

4333 matches found

Exploit DB
Exploit DB
added 2005/10/26 12:0 a.m.26 views

Mantis Bug Tracker 0.19.2/1.0 - 'Bug_sponsorship_list_view_inc.php' File Inclusion

source: https://www.securityfocus.com/bid/15212/info Mantis is prone to a remote and local file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary remote and local PHP code on a...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/08/31 12:0 a.m.52 views

vBulletin 3.0.8 - Accessible Database Backup Searcher (3)

/ Needed to pentest a few vBulletin forums so I wrote this junk real quick. Reference: http://securitytracker.com/alerts/2005/Aug/1014805.html Good paths: /forum/ / /forum/archive/ /forum/cpadmin/ Update 1: Code error fixes. /str0ke [email protected] Update 2: Fixed datestring-version for...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/08/31 12:0 a.m.47 views

BNBT EasyTracker Malformed GET Request Remote DoS

The remote host is running BNBT EasyTracker, a packaged BitTorrent Tracker Installer for Windows. The remote version of BNBT EasyTracker fails to properly handle malformed HTTP requests, making it prone to denial of service attacks. An attacker can crash the application by sending a request with ...

5CVSS5.6AI score0.01697EPSS
Exploits1References2
Exploit DB
Exploit DB
added 2005/08/19 12:0 a.m.27 views

Mantis Bug Tracker 0.x/1.0 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/14604/info Mantis is prone to multiple input validation vulnerabilities. These issues involve cross-site scripting, HTML injection and variable poisoning, and are due to a failure in the application to properly sanitize user-supplied input. An attacker ma...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/08/19 12:0 a.m.9 views

Mantis Bug Tracker 0.x1.0 - Multiple Input Validation Vulnerabilities

Mantis Bug Tracker 0.x1.0 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/14604/info Mantis is prone to multiple input validation vulnerabilities. These issues involve cross-site scripting, HTML injection and variable poisoning, and are due to a failure in th...

0.1AI score
Exploits0
CVE
CVE
added 2005/05/10 4:0 a.m.37 views

CVE-2004-2029

BNBT BitTorrent Tracker, Beta 7.5 Release 2 and earlier, is affected by a vulnerability in Util_DecodeHTTPAuth where a remote attacker can trigger a crash (denial of service) by sending a crafted HTTP Basic Authorization header containing the value "A==". No remediation details are provided in th...

5CVSS7AI score0.0384EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2005/05/10 4:0 a.m.42 views

CVE-2004-1860

CVE-2004-1860 concerns a buffer overflow in Check Point SmartDashboard for Check Point NG AI R54/R55. The overflow can be triggered by a large filter on a column when using SmartView Tracker, allowing remote authenticated users to cause a denial of service (server disconnect) and potentially exec...

5CVSS8AI score0.03257EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2005/05/10 4:0 a.m.18 views

CVE-2004-1860

Buffer overflow in Check Point SmartDashboard in Check Point NG AI R54 and R55 allows remote authenticated users to cause a denial of service server disconnect and possibly execute arbitrary code via a large filter on a column when using SmartView Tracker...

7.6AI score0.03257EPSS
Exploits0References5
0day.today
0day.today
added 2005/03/13 12:0 a.m.22 views

Sentinel LM 7.x UDP License Service Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ================================================================== Sentinel LM 7.x UDP License Service Remote Buffer Overflow Exploit ================================================================== / SentinelLM, UDP License Service Stack...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/01 12:0 a.m.52 views

TorrentTrader download.php id Parameter SQL Injection

The remote host is running TorrentTrader, a web-based BitTorrent tracker. The remote version of this software is vulnerable to a SQL injection attack that may allow an attacker to inject arbitrary SQL statements in the remote database. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

6AI score
Exploits0
exploitpack
exploitpack
added 2004/08/21 12:0 a.m.14 views

Mantis Bug Tracker 0.x - New Account Signup Mass Emailing

Mantis Bug Tracker 0.x - New Account Signup Mass Emailing source: https://www.securityfocus.com/bid/10995/info Mantis is reportedly susceptible to a vulnerability in its signup process allowing mass email attacks. When a new user signs up to Mantis, the system automatically sends an email message...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/08/21 12:0 a.m.11 views

Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities

Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/10994/info Mantis is a web-based bug tracking system. It is written in PHP and supported by a MySQL database. It is reported that Mantis is affected by cross-site scripting...

7AI score
Exploits0
exploitpack
exploitpack
added 2004/08/21 12:0 a.m.18 views

Mantis Bug Tracker 0.19 - Remote Server-Side Script Execution

Mantis Bug Tracker 0.19 - Remote Server-Side Script Execution source: https://www.securityfocus.com/bid/10993/info Mantix is reportedly susceptible to a remote server-side script execution vulnerability. This vulnerability only presents itself when PHP is configured on the hosting computer with...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2004/08/21 12:0 a.m.29 views

Mantis Bug Tracker 0.x - New Account Signup Mass Emailing

source: https://www.securityfocus.com/bid/10995/info Mantis is reportedly susceptible to a vulnerability in its signup process allowing mass email attacks. When a new user signs up to Mantis, the system automatically sends an email message to the given email address. This email contains the users...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/08/21 12:0 a.m.31 views

Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/10994/info Mantis is a web-based bug tracking system. It is written in PHP and supported by a MySQL database. It is reported that Mantis is affected by cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/08/21 12:0 a.m.22 views

Mantis Bug Tracker 0.19 - Remote Server-Side Script Execution

source: https://www.securityfocus.com/bid/10993/info Mantix is reportedly susceptible to a remote server-side script execution vulnerability. This vulnerability only presents itself when PHP is configured on the hosting computer with 'registerglobals = on'. When PHP is configured to register glob...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.9 views

RT: Request Tracker 'ShowConfigTab' Security Bypass

Binary data 5078.prm...

7.3AI score
Exploits0References1
Packet Storm
Packet Storm
added 2004/05/24 12:0 a.m.25 views

SP Research Labs Advisory 12

SP Research Labs Advisory x12 ----------------------------- BNBT BitTorrent Tracker Denial Of Service ----------------------------------------- Versions: cbtt7520040515 Beta 7.5 Release 2 and prior versions Vendors: http://bnbt.go-dedicated.com/ http://bnbteasytracker.sourceforge.net/...

7.4AI score
Exploits0
NVD
NVD
added 2004/05/22 4:0 a.m.14 views

CVE-2004-2029

The UtilDecodeHTTPAuth function in BNBT BitTorrent Tracker Beta 7.5 Release 2 and earlier allows remote attackers to cause a denial of service crash via a Basic Authorization HTTP request with a "A==" value...

5CVSS6.7AI score0.0384EPSS
Exploits1References8
securityvulns
securityvulns
added 2004/05/22 12:0 a.m.30 views

[Full-Disclosure] BNBT BitTorrent Tracker Denial Of Service

SP Research Labs Advisory x12 ----------------------------- BNBT BitTorrent Tracker Denial Of Service ----------------------------------------- Versions: cbtt7520040515 Beta 7.5 Release 2 and prior versions Vendors: http://bnbt.go-dedicated.com/ http://bnbteasytracker.sourceforge.net/...

0.5AI score
Exploits0
Rows per page
Query Builder