Lucene search
K

1697 matches found

Packet Storm News
Packet Storm News
added 2014/11/25 12:0 a.m.3 views

PHP 5.x / Bash Shellshock Proof of Concept

This is a proof of concept that demonstrates how the Bash shellshock vulnerability can be used in PHP to bypass disablefunctions, safemode, etc...

7AI score
Exploits0
exploitpack
exploitpack
added 2014/09/29 12:0 a.m.30 views

Microsoft Internet Explorer 8 - Fixed Col Span ID (Full ASLR + DEP + EMET 5.0 Bypass) (MS12-037)

Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR + DEP + EMET 5.0 Bypass MS12-037 function strtointstr return str.charCodeAt10x10000 + str.charCodeAt0; var free = "EEEE"; while free.length 500 free += free; var string1 = "AAAA"; while string1.length 500 string1 += string1; var string2...

9.3CVSS6.3AI score0.64962EPSS
Exploits27
Packet Storm
Packet Storm
added 2014/09/22 12:0 a.m.27 views

Joomla Mac Gallery 1.5 Arbitrary File Download

Exploit Title : Joomla Mac Gallery = 1.5 Arbitrary File Download Exploit Author : Claudio Viviani Vendor Homepage : https://www.apptha.com Software Link : https://www.apptha.com/downloadable/download/sample/sampleid/18 Dork Google: inurl:option=commacgallery Date : 2014-09-17 Tested on : Windows ...

Exploits0
Circl
Circl
added 2014/09/15 12:0 a.m.16 views

CVE-2014-6437

creationtimestamp| type| source ---|---|--- 2014-09-15 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39314...

9.8CVSS6.9AI score0.15505EPSS
Exploits2References1
Exploit DB
Exploit DB
added 2014/08/28 12:0 a.m.23 views

ActualAnalyzer Lite 2.81 - Command Execution

ActualAnalyzer exploit. Tested on Lite version We load command into a dummy variable as we only have 6 characters to own the eval but load more as first 2 characters get rm'd. We then execute the eval with backticks. 11/05/2011 import urllib import urllib2 import sys import time def banner: print...

7.4AI score
Exploits0
Circl
Circl
added 2014/08/11 12:0 a.m.24 views

CVE-2014-8375

creationtimestamp| type| source ---|---|--- 2014-08-11 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39282...

6.5CVSS6.9AI score0.0323EPSS
Exploits1References1
Circl
Circl
added 2014/08/04 12:0 a.m.20 views

CVE-2014-2595

creationtimestamp| type| source ---|---|--- 2014-08-04 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39278...

9.8CVSS6.9AI score0.16868EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2014/08/01 10:59 a.m.8 views

WebEngage 2.0.0 - resize.php height Parameter XSS

The WebEngage Feedback, Survey and Notification WordPress plugin was affected by a resize.php height Parameter XSS security vulnerability...

0.9AI score
Exploits0Affected Software1
Prion
Prion
added 2014/07/22 2:55 p.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Ajax system in Drupal 7.x before 7.29 allows remote attackers to inject arbitrary web script or HTML via vectors involving forms with an Ajax-enabled textfield and a file field...

4.3CVSS6AI score0.00995EPSS
Exploits0References2Affected Software1
0day.today
0day.today
added 2014/07/18 12:0 a.m.35 views

OL-Commerce 2.1.1 Cross Site Scripting / SQL Injection Vulnerabilities

OL-Commerce version 2.1.1 suffers from cross site scripting and remote SQL injection vulnerabilities. OL-Commerce v2.1.1 - Multiple Vulnerabilties =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : email protected , email protected .:...

7.9AI score
Exploits0
seebug.org
seebug.org
added 2014/07/17 12:0 a.m.126 views

yongyouNC /hrss/ELTextFile.load.d 信息泄漏漏洞

No description provided by source...

7.1AI score
Exploits0
Circl
Circl
added 2014/07/17 12:0 a.m.26 views

CVE-2014-5109

creationtimestamp| type| source ---|---|--- 2014-07-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39347...

7.5CVSS7AI score0.03406EPSS
Exploits1References1
Circl
Circl
added 2014/07/17 12:0 a.m.29 views

CVE-2014-5112

creationtimestamp| type| source ---|---|--- 2014-07-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39352...

7.5CVSS6.9AI score0.09164EPSS
Exploits1References1
Circl
Circl
added 2014/07/16 12:0 a.m.14 views

CVE-2014-9301

creationtimestamp| type| source ---|---|--- 2014-07-16 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39258...

6.4CVSS6.9AI score0.04049EPSS
Exploits1References1
Circl
Circl
added 2014/07/16 12:0 a.m.13 views

CVE-2014-9302

creationtimestamp| type| source ---|---|--- 2014-07-16 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39259...

5CVSS7AI score0.02008EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/07/04 12:0 a.m.18 views

百度浏览器海外版(Spark Browser) v26.5.9999.3511 - Remote Stack Overflow Vulnerability (DoS)

Vendor: Baidu, Inc. Product web page: http://www.baidu.com Affected version: 26.5.9999.3511 Summary: Spark Browser is a free Internet browser with very sharp UIs and cool utilities. It's based on the Chromium technology platform, giving it fast browsing capabilities. Desc: Spark Browser version...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

linux/x86 append "/etc/passwd" & exit() 107 bytes

No description provided by source. / appendpasswd.c Payload: Adds the string: toor::0:0:t00r:/root:/bin/bash to /etc/passwd thereby adding a password-less root account with login name toor Platform: linux/x86 Size: 107 bytes Author: $andman / / 08049054 start: 8049054: eb 38 jmp 804908e callfunc...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Gert Doering mgetty 1.1.19/1.1.20/1.1.21/1.22.8 Symbolic Link Traversal

No description provided by source. source: http://www.securityfocus.com/bid/1612/info A vulnerability exists in a portion of the mgetty package, by Gert Doering. By exploiting a flaw in the faxrunq and faxrunqd programs, it is possible for local users to create arbitrary files, and alter arbitrar...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

JM CMS 1.0 <= 1.0 - (Auth Bypass) SQL Injection Vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

2daybiz Freelance Script SQL Injection Vulnerability Exploit

No description provided by source. ----------------------------Information------------------------------------------------ +Autor : Easy Laster +ICQ : 11-051-551 +Info : http://www.2daybiz.com/freelancescript.html +Discovered by Easy Laster 4004-security-project.com +Security Group...

7.1AI score
Exploits0
Rows per page
Query Builder