Lucene search
K

7576 matches found

Tenable Nessus
Tenable Nessus
added 2005/09/12 12:0 a.m.14 views

punBB < 1.2.7 Multiple SQL Injection Vulnerabilities

Binary data 3220.prm...

4.3CVSS7.3AI score0.02429EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/09/07 12:0 a.m.22 views

Land Down Under < 802 events.php SQL Injection

Binary data 3209.prm...

7.5CVSS7.3AI score0.02411EPSS
Exploits6References13
Tenable Nessus
Tenable Nessus
added 2005/09/06 12:0 a.m.29 views

Debian DSA-798-1 : phpgroupware - several vulnerabilities

Several vulnerabilities have been discovered in phpgroupware, a web-based groupware system written in PHP. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-2498 Stefan Esser discovered another vulnerability in the XML-RPC libraries that allows...

7.5CVSS5.4AI score0.05091EPSS
Exploits0References4
OSV
OSV
added 2005/09/02 12:0 a.m.33 views

DSA-798-1 phpgroupware - several

Bulletin has no description...

7.5CVSS9.4AI score0.05091EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/08/22 12:0 a.m.39 views

w-Agora index.php site Parameter Traversal Arbitrary File Access

The remote host is running w-agora, a web-based forum application written in PHP. The remote version of this software is prone to directory traversal attacks. A remote attacker could request a specially crafted URL to read arbitrary files on the remote system with the privileges of the web server...

5CVSS5.8AI score0.03623EPSS
Exploits1References2
securityvulns
securityvulns
added 2005/08/19 12:0 a.m.38 views

[SECURITY] [DSA 778-1] New mantis packages fix several vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 778-1 [email protected] http://www.debian.org/security/ Martin Schulze August 19th, 2005 http://www.debian.org/security/faq -...

7.5CVSS0.6AI score0.02576EPSS
Exploits1
securityvulns
securityvulns
added 2005/08/19 12:0 a.m.75 views

Zorum 3.5 remote code execution poc exploit

Zorum 3.5 remote code execution poc exploit software: description: Zorum is a freely available, open source Web-based forum application implemented in PHP. It is available for UNIX, Linux, and any other platform that supports PHP script execution. author site: http://zorum.phpoutsourcing.com/ 1...

8.7AI score
Exploits0
CVE
CVE
added 2005/08/16 4:0 a.m.40 views

CVE-2004-2371

Technical details for CVE-2004-2371 are not publicly provided in the connected documents. The initial description lacks vendor/product/version specifics or a remediation. Monitor for updates.

5CVSS7.1AI score0.03342EPSS
Exploits1References5Affected Software3
Tenable Nessus
Tenable Nessus
added 2005/08/08 12:0 a.m.28 views

Gravity Board X <= 1.1 Multiple Vulnerabilities (SQLi, XSS, PD, Cmd Exe)

The remote host is running Gravity Board X, an open source, web-based electronic forum written in PHP. The version of Gravity Board X installed on the remote host suffers from several flaws, including : - Unauthorized Access Vulnerability The 'editcss.php' script does not require authentication...

7.5CVSS6.5AI score0.05091EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2005/07/29 12:0 a.m.24 views

phpList Detection

The remote host is running phpList, a free, web-based mailing list manager that uses PHP and MySQL. C Tenable Network Security, Inc. per phpList maintainer, 'phpList' is official capitalization 12/23/08 include"compat.inc"; if description scriptid19313; scriptversion"1.16";...

5.5AI score
Exploits0References1
OSV
OSV
added 2005/07/14 12:0 a.m.25 views

DSA-746-1 phpgroupware - remote command execution

Bulletin has no description...

7.5CVSS6.3AI score0.79071EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2005/07/13 12:0 a.m.31 views

FreeBSD : ImageMagick -- PSD handler heap overflow vulnerability (597e2bee-68ea-11d9-a9e7-0001020eed82)

An iDEFENSE Security Advisory reports : Remote exploitation of a buffer overflow vulnerability in The ImageMagick's Project's ImageMagick PSD image-decoding module could allow an attacker to execute arbitrary code. Exploitation may allow attackers to run arbitrary code on a victim's computer if t...

7.5CVSS6.6AI score0.04378EPSS
Exploits1References3
Gentoo Linux
Gentoo Linux
added 2005/07/10 12:0 a.m.58 views

phpGroupWare, eGroupWare: PHP script injection vulnerability

Background phpGroupWare and eGroupWare are web based collaboration software suites. Description The XML-RPC implementations of phpGroupWare and eGroupWare fail to sanitize input sent to the XML-RPC server using the "POST" method. Impact A remote attacker could exploit the XML-RPC vulnerability to...

7.5CVSS7.3AI score0.79071EPSS
Exploits5
NVD
NVD
added 2005/07/09 4:0 a.m.18 views

CVE-2005-2175

The web interface for Lotus Notes mail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies...

5CVSS6.5AI score0.05209EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/07/09 4:0 a.m.27 views

CVE-2005-2175

The web interface for Lotus Notes mail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies...

6.5AI score0.05209EPSS
Exploits0References2
CVE
CVE
added 2005/07/09 4:0 a.m.54 views

CVE-2005-2176

Novell NetMail is vulnerable to an issue where HTML in an attachment is processed automatically without prompting the user to save or open it, enabling potential web-based attacks and cookie theft. The provided sources (NVD/CVE record) confirm the description but do not specify affected versions,...

6.4CVSS6.9AI score0.03502EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2005/07/09 4:0 a.m.23 views

CVE-2005-2176

Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies...

6.5AI score0.03502EPSS
Exploits1References8
NVD
NVD
added 2005/07/09 4:0 a.m.18 views

CVE-2005-2176

Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies...

6.4CVSS6.5AI score0.03502EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2005/07/08 12:0 a.m.15 views

punBB < 1.2.6 profile.php $temp Parameter SQL Injection (deprecated)

Binary data 3058.prm...

7.5CVSS7.3AI score0.0123EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/07/06 12:0 a.m.751 views

YaPiG Password Protected Directory Bypass

The remote host is running YaPiG, a web-based image gallery written in PHP. The remote version of this software contains a flaw that can let a malicious user view images in password protected directories. Successful exploitation of this issue may allow an attacker to access unauthorized images on...

5.6AI score
Exploits0References2
Rows per page
Query Builder