Lucene search
+L

55 matches found

nvd
nvd
added 2012/10/01 8:55 p.m.20 views

CVE-2012-5223

The procdeutf function in includes/functionsvbseocpabstract.php in vBSEO 3.5.0, 3.5.1, 3.5.2, 3.6.0, and earlier allows remote attackers to insert and execute arbitrary PHP code via "complex curly syntax" in the charrepl parameter, which is inserted into a regular expression that is processed by...

7.5CVSS7.4AI score0.40533EPSS
Exploits3References6
attackerkb
attackerkb
added 2012/10/01 8:55 p.m.4 views

CVE-2012-5223

The procdeutf function in includes/functionsvbseocpabstract.php in vBSEO 3.5.0, 3.5.1, 3.5.2, 3.6.0, and earlier allows remote attackers to insert and execute arbitrary PHP code via "complex curly syntax" in the charrepl parameter, which is inserted into a regular expression that is processed by...

7.5CVSS6.1AI score0.40533EPSS
Exploits3References9
prion
prion
added 2012/10/01 8:55 p.m.12 views

Code injection

The procdeutf function in includes/functionsvbseocpabstract.php in vBSEO 3.5.0, 3.5.1, 3.5.2, 3.6.0, and earlier allows remote attackers to insert and execute arbitrary PHP code via "complex curly syntax" in the charrepl parameter, which is inserted into a regular expression that is processed by...

7.5CVSS8AI score0.40533EPSS
Exploits3References6Affected Software1
cvelist
cvelist
added 2012/10/01 8:0 p.m.29 views

CVE-2012-5223

The procdeutf function in includes/functionsvbseocpabstract.php in vBSEO 3.5.0, 3.5.1, 3.5.2, 3.6.0, and earlier allows remote attackers to insert and execute arbitrary PHP code via "complex curly syntax" in the charrepl parameter, which is inserted into a regular expression that is processed by...

7.4AI score0.40533EPSS
Exploits3References6
cve
cve
added 2012/10/01 8:0 p.m.42 views

CVE-2012-5223

CVE-2012-5223 affects vBSEO: the proc_deutf() function in includes/functions_vbseocp_abstract.php for vBSEO 3.5.0–3.6.0 and earlier allows remote code execution via the char_repl parameter, which is inserted into a regex processed by preg_replace with the eval modifier. Public sightings and explo...

7.5CVSS7.6AI score0.40533EPSS
Exploits3References6Affected Software1
exploitpack
exploitpack
added 2012/06/16 12:0 a.m.10 views

vBSEO - u Cross-Site Scripting

vBSEO - u Cross-Site Scripting source: https://www.securityfocus.com/bid/55908/info vBSEO is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user ...

6.8AI score
Exploits0
exploitdb
exploitdb
added 2012/06/16 12:0 a.m.15 views

vBSEO - 'u' Cross-Site Scripting

source: https://www.securityfocus.com/bid/55908/info vBSEO is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected...

7.4AI score
Exploits0
dsquare
dsquare
added 2012/05/20 12:0 a.m.25 views

VBSEO SQL Injection

VBSEO vbseo.phpaids SQL Injection Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

0.8AI score
Exploits0
packetstorm
packetstorm
added 2012/01/31 12:0 a.m.19 views

vBSEO 3.6.0 PHP Code Injection

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'vBSEO %q This...

0.2AI score
Exploits0
dsquare
dsquare
added 2012/01/31 12:0 a.m.42 views

vBSEO 3.6.0 RCE

Remote command execution vulnerability in vBSEO procdeutf Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

7.5CVSS0.7AI score0.40533EPSS
Exploits3References2
openvas
openvas
added 2012/01/31 12:0 a.m.26 views

vBSEO 'proc_deutf()' Remote Code Execution Vulnerability

vBSEO is prone to a remote code-execution vulnerability. Exploiting this issue will allow attackers to execute arbitrary code within the context of the affected application. vBSEO 3.5.0, 3.5.1, 3.5.2, and 3.6.0.are vulnerable; other versions may also be affected. OpenVAS Vulnerability Test $Id:...

7.5CVSS0.5AI score0.40533EPSS
Exploits3References3
openvas
openvas
added 2012/01/31 12:0 a.m.19 views

vBSEO 'proc_deutf()' RCE Vulnerability - Active Check

vBSEO is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vbulletin:vbulletin"...

7.5CVSS7.3AI score0.40533EPSS
Exploits3References2
metasploit
metasploit
added 2012/01/30 10:15 p.m.41 views

vBSEO proc_deutf() Remote PHP Code Injection

This module exploits a vulnerability in the 'procdeutf' function defined in /includes/functionsvbseocpabstract.php for vBSEO versions 3.6.0 and earlier. User input passed through 'charrepl' POST parameter isn't properly sanitized before being used in a call to pregreplace function which uses the...

7.5CVSS7.8AI score0.40533EPSS
Exploits3
exploitdb
exploitdb
added 2012/01/27 12:0 a.m.28 views

vBSEO 3.6.0 - 'proc_deutf()' Remote PHP Code Injection (Metasploit)

require 'msf/core' class Metasploit3 'vBSEO %q This module exploits a vulnerability in the 'procdeutf' function defined in /includes/functionsvbseocpabstract.php. User input passed through 'charrepl' POST parameter isn't properly sanitized before being used in a call to pregreplace function which...

7AI score
Exploits0
zdt
zdt
added 2012/01/27 12:0 a.m.17 views

vBSEO <= 3.6.0 "proc_deutf()" Remote PHP Code Injection Exploit

Exploit for php platform in category web applications require 'msf/core' class Metasploit3 'vBSEO %q This module exploits a vulnerability in the 'procdeutf' function defined in /includes/functionsvbseocpabstract.php. User input passed through 'charrepl' POST parameter isn't properly sanitized...

7.1AI score
Exploits0
myhack58
myhack58
added 2011/06/28 12:0 a.m.32 views

vBseo(vBSEO remote execution vulnerability-vulnerability warning-the black bar safety net

!/ usr/bin/perl vBseo 3.1.0 vbseo.php vbseourl Remote Command Execution Exploit vendor: http://www.vbseo.com/ Author: Jose Luis Gongora Fernandez a. k. a JosS twitter: @JossGongora mail: joss. xroot0x40gmail0x2ecom site: http://www.hack0wn.com/ This was written for educational purpose. Use it at...

Exploits0
packetstorm
packetstorm
added 2011/06/24 12:0 a.m.22 views

vBseo 3.1.0 Remote Command Execution

!/usr/bin/perl vBseo 3.1.0 vbseo.php vbseourl Remote Command Execution Exploit vendor: http://www.vbseo.com/ Author: Jose Luis Gongora Fernandez a.k.a JosS twitter: @JossGongora mail: joss.xroot0x40gmail0x2ecom site: http://www.hack0wn.com/ This was written for educational purpose. Use it at your...

0.1AI score
Exploits0
zdt
zdt
added 2011/06/23 12:0 a.m.24 views

vBseo 3.1.0 (vbseo.php vbseourl) Remote Command Execution Exploit

Exploit for php platform in category web applications !/usr/bin/perl vBseo 3.1.0 vbseo.php vbseourl Remote Command Execution Exploit vendor: http://www.vbseo.com/ Author: Jose Luis Gongora Fernandez a.k.a JosS twitter: @JossGongora mail: joss.xroot0x40gmail0x2ecom site: http://www.hack0wn.com/ Th...

7.1AI score
Exploits0
zdt
zdt
added 2011/01/31 12:0 a.m.13 views

vBSEO 3.5.2 & 3.2.2 - Persistent XSS via LinkBacks

Exploit for php platform in category web applications Versions Affected: 3.5.2 & 3.2.2 Most likely all versions Info: A proven success record, vBSEO powers the most optimized forums on the Web. The 1 SEO plugin and the only professional, fully supported solution. A full package of SEO enhancement...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2011/01/30 12:0 a.m.21 views

vBSEO 3.2.23.5.2 - Persistent Cross-Site Scripting via LinkBacks

vBSEO 3.2.23.5.2 - Persistent Cross-Site Scripting via LinkBacks vBSEO - Persistent XSS via LinkBacks http://www.exploit-db.com/vbseo-from-xss-to-reverse-php-shell/ Versions Affected: 3.5.2 & 3.2.2 Most likely all versions Info: A proven success record, vBSEO powers the most optimized forums on t...

6.8AI score
Exploits0
Rows per page
Query Builder