CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-0258

Malware in sbrugna...

10CVSS6.4AI score0.05117EPSS

Exploits1References4

seebug.org•added 2014/07/01 12:0 a.m.•18 views

Uploadscript 1.0 - Multiple Vulnerabilities

No description provided by source. Exploit Title: Uploadscript v1.0. Multiple Vulnerabilities Date: 13-12-2009 Author: Mr.aFiR Software Link: http://www.phpstudio.hu/?action=verify&categorize=php&subaction=php&context=php&ID=75&verify=0 Version: N/A Tested on: GNU/LINUX CVE : N/A Code : N/A / \ /...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•21 views

UploadImage/UploadScript 1.0 - Remote Change Admin Password Exploit

No description provided by source. ?php / \|/// \ - - // Y! Underground Group @ @ ----oOOo---oOOo--------------------------------------------------- ! Portal : UploadImage v1.0 & UploadScript v1.0 ! Download : http://www.uploadscript.net ! Type : Remote Change Admin Password Exploit ! Home :...

7.1AI score

Exploits0

Packet Storm•added 2009/12/14 12:0 a.m.•23 views

Uploadscript 1.0 Disclosure / Shell Upload

Exploit Title: Uploadscript v1.0. Multiple Vulnerabilities Date: 13-12-2009 Author: Mr.aFiR Software Link: http://www.phpstudio.hu/?action=verify&categorize=php&subaction=php&context=php&ID=75&verify=0 Version: N/A Tested on: GNU/LINUX CVE : N/A Code : N/A / \ / \ / \ | | |/ | | | Y Y | V\ / Y| |...

7.4AI score

Exploits0

Exploit DB•added 2009/12/13 12:0 a.m.•32 views

Uploadscript 1.0 - Multiple Vulnerabilities

7.4AI score

Exploits0

0day.today•added 2009/12/13 12:0 a.m.•19 views

Uploadscript v1.0. Multiple Vulnerabilities

Exploit for unknown platform in category web applications =========================================== Uploadscript v1.0. Multiple Vulnerabilities =========================================== How to use it ? ----------------- Go to : http://site/path/password.txt You will find a Hashmd5 password !...

7.1AI score

Exploits0

Prion•added 2008/01/12 2:46 a.m.•11 views

Design/Logic Flaw

admin.php in UploadScript 1.0 does not check for the original password before making a change to a new password, which allows remote attackers to gain administrator privileges via the pass parameter in a nopass Set Password action...

10CVSS7.7AI score0.05117EPSS

Exploits1References3Affected Software2

NVD•added 2008/01/12 2:46 a.m.•9 views

CVE-2008-0246

10CVSS7.1AI score0.05117EPSS

Exploits1References3

CVE•added 2008/01/12 2:0 a.m.•44 views

CVE-2008-0246

The CVE-2008-0246 entry describes a vulnerability in admin.php of UploadScript 1.0 where the original password is not validated before changing to a new one. This allows remote attackers to gain administrator privileges by supplying the new password via the pass parameter in a nopass (Set Passwor...

10CVSS7.1AI score0.05117EPSS

Exploits1References3Affected Software2

Cvelist•added 2008/01/12 2:0 a.m.•11 views

CVE-2008-0246

7.1AI score0.05117EPSS

Exploits1References3

0day.today•added 2008/01/09 12:0 a.m.•16 views

UploadImage/UploadScript 1.0 Remote Change Admin Password Exploit

Exploit for unknown platform in category web applications ================================================================= UploadImage/UploadScript 1.0 Remote Change Admin Password Exploit ================================================================= 126 $result.=" ."; else $result.=" "...

7.1AI score

Exploits0

exploitpack•added 2008/01/09 12:0 a.m.•21 views

UploadImageUploadScript 1.0 - Remote Change Admin Password

UploadImageUploadScript 1.0 - Remote Change Admin Password 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n"; $exa.="\r\n"; re...

0.4AI score

Exploits0

Exploit DB•added 2008/01/09 12:0 a.m.•52 views

UploadImage/UploadScript 1.0 - Remote Change Admin Password

126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n"; $exa.="\r\n"; r...

7.4AI score

Exploits0

securityvulns•added 2007/01/24 12:0 a.m.•63 views

UploadScript <=- v1.02 (password.txt) Remote Password Disclosure Vulnerability

UploadScript =- v1.02 password.txt Remote Password Disclosure Vulnerability Script: UploadScript Version: v1.02 URL: http://www.uploadscript.net/demo/download.php?file=1478fb6c5c807cdf12dd69410e14d66d Found By : BorN To K!LL Explo!T:. ^^^^^ www.site.com/path/password.txt GreeTz :. Dr.2 , Asbmay ,...

0.4AI score

Exploits0

NVD•added 2006/12/07 5:28 p.m.•9 views

CVE-2006-6377

Uploadscript 1.2 and earlier stores sensitive data under the web root with insufficient access control, which allows remote attackers to obtain the admin password hash via a direct request for /password.txt...

7.5CVSS6.7AI score0.08387EPSS

Exploits1References6

Cvelist•added 2006/12/07 5:0 p.m.•17 views

CVE-2006-6377

6.7AI score0.08387EPSS

Exploits1References6

CVE•added 2006/12/07 5:0 p.m.•45 views

CVE-2006-6377

CVE-2006-6377 contributes a remote-access issue in Uploadscript 1.2 and earlier. The description states that sensitive data is stored under the web root with insufficient access control, enabling remote attackers to obtain the admin password hash by directly requesting /password.txt. The NVD note...

7.5CVSS7.1AI score0.08387EPSS

Exploits1References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by