Lucene search
+L

822 matches found

Packet Storm
Packet Storm
added 2008/09/22 12:0 a.m.49 views

6rbscript33-sql.txt

|| | | 6rbScript V3.3 singerid Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.IQ-ty.CoM | WwW.TrYaG.CC | | email: darkangelg85atYahooDoTcom | | | | | | | | script : www.6rbscript.com | | DorK :...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/08/13 12:0 a.m.41 views

Vim: Netrw: FTP User Name and Password Disclosure

Vim: Netrw: FTP User Name and Password Disclosure 1. SUMMARY Product : Vim -- Vi IMproved Versions : Tested with Vim 7.1.266, 7.2, autoload/netrw.vim v131, v109 Impact : Credentials disclosure Wherefrom: Remote Original : http://www.rdancer.org/vulnerablevim-netrw-credentials-dis.html The Vim Net...

Exploits0
Packet Storm
Packet Storm
added 2008/08/13 12:0 a.m.25 views

vim-ftp.txt

Vim: Netrw: FTP User Name and Password Disclosure 1. SUMMARY Product : Vim -- Vi IMproved Versions : Tested with Vim 7.1.266, 7.2, autoload/netrw.vim v131, v109 Impact : Credentials disclosure Wherefrom: Remote Original : http://www.rdancer.org/vulnerablevim-netrw-credentials-dis.html The Vim Net...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/06/26 12:0 a.m.64 views

PHP-Fusion Mod Kroax 4.42 - 'category' SQL Injection

========================================================== The kroax phpfusion Remote SQL-injection. ========================================================== Author : boom3rang Contact : [email protected] webpage : www.khg-crew.ws --- Remote SQL Injection --- +Google Dork:...

7.4AI score
Exploits0
Saint
Saint
added 2008/05/15 12:0 a.m.44 views

Motorola Timbuktu login request buffer overflow

Added: 05/15/2008 CVE: CVE-2007-4221 BID: 25454 OSVDB: 40124 Background Motorola Timbuktu is remote control software for Windows and Mac. It runs a service which listens for connections on port 407/TCP or 407/UDP. Problem A buffer overflow vulnerability when processing login requests allows remot...

10CVSS7.9AI score0.06264EPSS
Exploits4
Cvelist
Cvelist
added 2008/04/09 7:0 p.m.27 views

CVE-2008-1705

Format string vulnerability in the logging function in IBM solidDB 06.00.1018 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the 1 user name, 2 peer name, and possibly unspecified other fields...

7.7AI score0.03224EPSS
Exploits1References8
Prion
Prion
added 2008/03/14 8:44 p.m.23 views

Input validation

Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, does not perform input validation before logging information fields taken from packets from a remote peer, which allows remote attackers to generate crafted log entries, and possibly avoid detection of attacks, via modified 1 computer...

7.5CVSS7.1AI score0.02937EPSS
Exploits3References7Affected Software1
NVD
NVD
added 2008/03/03 11:44 p.m.14 views

CVE-2008-1127

Format string vulnerability in the cryactio function in Crysis 1.1.1.5879 allows remote authenticated users to execute arbitrary code via format string specifiers in the user name, which is triggered when the game character is killed...

6CVSS7.3AI score0.02986EPSS
Exploits0References4
Cvelist
Cvelist
added 2008/03/03 11:0 p.m.16 views

CVE-2008-1127

Format string vulnerability in the cryactio function in Crysis 1.1.1.5879 allows remote authenticated users to execute arbitrary code via format string specifiers in the user name, which is triggered when the game character is killed...

7.3AI score0.02986EPSS
Exploits0References4
securityvulns
securityvulns
added 2008/01/24 12:0 a.m.90 views

HTTP File Serve multiple security vulnerabilities

Crossite scripting, information disclosure, unauthroized files creation, log manipulation, user name spoofing...

10CVSS0.1AI score0.03568EPSS
Exploits11References3Affected Software1
seebug.org
seebug.org
added 2007/10/31 12:0 a.m.19 views

PHP-AGTC membership system 1.1a Remote Add Admin Exploit

No description provided by source. !-- - Product : AGTC-Membership system - Version : 1.1a - Website : http://www.agtc.co.uk - Author : 0x90 - Homepage: WwW.0x90.CoM.Ar - Contact : Gunsat0x90dotcomdotar - Problem : Admin Added Access. -- form name="form1" method="post"...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/10/08 12:0 a.m.26 views

Softbiz Jobs Recruitment - SQL Injection

Softbiz Jobs Recruitment - SQL Injection Softbiz Jobs & Recruitment Script SQL INJECTION BY IRCRASH AUTHOR : IRCRASH Dr.Crash Script Download : http://www.softbizscripts.com/ DORK: "Powered by SoftbizScripts" "ALL JOBS" Injection Adress : http://site.com/browsecats.php?cid=sql cod Sql code For se...

Exploits0
Prion
Prion
added 2007/08/29 1:17 a.m.15 views

Buffer overflow

Multiple buffer overflows in Motorola Timbuktu Pro before 8.6.5 for Windows allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via 1 a long user name and 2 certain malformed requests; and 3 allow remote Timbuktu servers to have an unknown impact vi...

10CVSS8.8AI score0.06264EPSS
Exploits4References9Affected Software1
exploitpack
exploitpack
added 2007/08/06 12:0 a.m.49 views

Live for Speed S1S2Demo - .spr Local Buffer Overflow

Live for Speed S1S2Demo - .spr Local Buffer Overflow / 0day Live for speed patch x s2 /s1 and demo local .Spr File buffer over flow Spr file's are also exploitable although i had to go about it a different Way,At first it wasn't possible to do a jmp esp,But with a little more buffer i Managed to...

0.1AI score
Exploits0
NVD
NVD
added 2007/08/03 9:17 p.m.30 views

CVE-2007-4159

index.html in the HTTP administration interface in certain daemons in TIBCO Rendezvous RV 7.5.2 allows remote attackers to obtain sensitive information, such as a user name and IP addresses, via a direct request...

5CVSS6.4AI score0.01256EPSS
Exploits0References5
NVD
NVD
added 2007/07/17 12:30 a.m.12 views

CVE-2007-3807

Multiple cross-site scripting XSS vulnerabilities in SiteScape Forum before 7.3 allow remote attackers to inject arbitrary web script or HTML via the user name field in the login procedure, and other unspecified vectors...

2.6CVSS5.8AI score0.01256EPSS
Exploits0References7
Prion
Prion
added 2007/07/17 12:30 a.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in SiteScape Forum before 7.3 allow remote attackers to inject arbitrary web script or HTML via the user name field in the login procedure, and other unspecified vectors...

2.6CVSS6.1AI score0.01256EPSS
Exploits0References7Affected Software1
Atlassian
Atlassian
added 2007/05/18 6:7 p.m.20 views

Assign Groups to Project Role screen allows entry of users as groups

When assigning groups to a project role, the screen allows the user to specify a group that is really a user name...

2.5AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2007/05/18 6:7 p.m.21 views

Assign Groups to Project Role screen allows entry of users as groups

When assigning groups to a project role, the screen allows the user to specify a group that is really a user name...

2.5AI score
Exploits0Affected Software1
NVD
NVD
added 2007/03/02 9:18 p.m.22 views

CVE-2007-1183

WebAPP before 0.9.9.5 allows remote authenticated users to spoof another user's Real Name via whitespace, which has unknown impact and attack vectors...

7.5CVSS6.2AI score0.01402EPSS
Exploits0References5
Rows per page
Query Builder