CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A command injection vulnerability exists in the axfrget.php script of VegaDNS. A remote, unauthenticated attacker could exploit this vulnerability by sending crafted HTTP requests to the target server. Successful exploitation could allow the attacker to execute arbitrary commands...

2.9AI score

Exploits0

CNVD•added 2016/09/23 12:0 a.m.•1 views

VegaDNS Remote Command Injection Vulnerability

VegaDNS is a tinydns management tool written in PHP to facilitate DNS administration via web browser logging. VegaDNS suffers from a remote command injection vulnerability. As the file axfrget/php allows unauthenticated access, fails to properly apply input to all variables that are being used...

8AI score

Exploits0References1

OpenVAS•added 2016/09/22 12:0 a.m.•8 views

VegaDNS Detection

Detection of VegaDNS The script sends a connection request to the server and attempts to detect the presence of VegaDNS and to extract its version. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

7.2AI score

Exploits0References1

OpenVAS•added 2016/09/22 12:0 a.m.•22 views

VegaDNS RCE Vulnerability

VegaDNS is prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vegadns:vegadns...

7.6AI score

Exploits0References3

0day.today•added 2016/09/20 12:0 a.m.•19 views

VegaDNS 0.13.2 - Remote Command Injection Exploit

Exploit for php platform in category web applications !/usr/bin/perl VegaDNS is a tinydns administration tool written in PHP to allow easy administration of DNS records through a web browser. -- http://www.vegadns.org The file axfrget.php allows unauthenticated access and fails to correctly apply...

7.1AI score

Exploits0

Exploit DB•added 2016/09/20 12:0 a.m.•23 views

VegaDNS 0.13.2 - Remote Command Injection

!/usr/bin/perl $izd= qq ██╗███████╗██╗ ██╗███╗ ██╗ █████╗ ██████╗ ██████╗ ██████╗ ██████╗ ██║╚══███╔╝██║ ██║████╗ ██║██╔══██╗ ██╔══██╗██╔══██╗██╔═══██╗██╔══██╗ ██║ ███╔╝ ██║ ██║██╔██╗ ██║███████║ ██║ ██║██████╔╝██║ ██║██████╔╝ ██║ ███╔╝ ██║ ██║██║╚██╗██║██╔══██║ ██║ ██║██╔══██╗██║ ██║██╔═══╝...

7.4AI score

Exploits0

exploitpack•added 2016/09/20 12:0 a.m.•19 views

VegaDNS 0.13.2 - Remote Command Injection

VegaDNS 0.13.2 - Remote Command Injection !/usr/bin/perl $izd= qq ██╗███████╗██╗ ██╗███╗ ██╗ █████╗ ██████╗ ██████╗ ██████╗ ██████╗ ██║╚══███╔╝██║ ██║████╗ ██║██╔══██╗ ██╔══██╗██╔══██╗██╔═══██╗██╔══██╗ ██║ ███╔╝ ██║ ██║██╔██╗ ██║███████║ ██║ ██║██████╔╝██║ ██║██████╔╝ ██║ ███╔╝ ██║...

0.5AI score

Exploits0

Packet Storm•added 2016/09/20 12:0 a.m.•47 views

VegaDNS 0.13.2 Remote Command Injection

!/usr/bin/perl $izd= qq aaaaaaaaaaaaaa aaaaaaa aaa aaaaaa aaaaaaa aaaaaaa aaaaaaa aaaaaaa aaaaaaaaaaaaaa aaaaaaaa aaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaa aaaaa aaa aaaaaaaaa aaaaaaaaaaa aaa aaaaaaaaaaaaaa aaaaaaaaaaa aaa aaaaa aaa aaaaaaaaaaaaaaaaaaaaa aaa aaaaaaaaaaaaaa aaaaaaaaaa...

0.4AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

VegaDNS 0.8.1/0.9.8/0.9.9 Index.PHP Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14538/info VegaDNS is vulnerable to cross-site scripting attacks. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script co...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

VegaDNS 0.9.9 index.php cid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17433/info VegaDNS is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitiz...

7.1AI score

Exploits0

Prion•added 2006/04/13 1:6 a.m.•12 views

Sql injection

SQL injection vulnerability in index.php in Vegadns 0.99 allows remote attackers to execute arbitrary SQL commands via the cid parameter...

7.5CVSS9.1AI score0.01135EPSS

Exploits1References5Affected Software1

NVD•added 2006/04/13 1:6 a.m.•11 views

CVE-2006-1757

Cross-site scripting XSS vulnerability in index.php in Vegadns 0.99 allows remote attackers to inject arbitrary web script or HTML via the message parameter...

2.6CVSS5.7AI score0.00931EPSS

Exploits1References2

NVD•added 2006/04/13 1:6 a.m.•11 views

CVE-2006-1758

SQL injection vulnerability in index.php in Vegadns 0.99 allows remote attackers to execute arbitrary SQL commands via the cid parameter...

7.5CVSS8.4AI score0.01135EPSS

Exploits1References5

Prion•added 2006/04/13 1:6 a.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Vegadns 0.99 allows remote attackers to inject arbitrary web script or HTML via the message parameter...

2.6CVSS6.1AI score0.00931EPSS

Exploits1References2Affected Software1

CVE•added 2006/04/13 1:0 a.m.•38 views

CVE-2006-1758

CVE-2006-1758 concerns a SQL injection in Vegadns 0.99. The vulnerability is in index.php and allows remote attackers to execute arbitrary SQL commands via the cid parameter. The CVSS v2 base score is 7.5 (HIGH), with network attack vector and no authentication required, causing partial confident...

7.5CVSS8.4AI score0.01135EPSS

Exploits1References5Affected Software1

Cvelist•added 2006/04/13 1:0 a.m.•17 views

CVE-2006-1757

Cross-site scripting XSS vulnerability in index.php in Vegadns 0.99 allows remote attackers to inject arbitrary web script or HTML via the message parameter...

5.7AI score0.00931EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by