Lucene search
+L

260 matches found

exploitpack
exploitpack
added 2016/11/22 12:0 a.m.33 views

EasyPHP Devserver 16.1.1 - Cross-Site Request Forgery Remote Command Execution

EasyPHP Devserver 16.1.1 - Cross-Site Request Forgery Remote Command Execution + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/EASYPHP-DEV-SERVER-REMOTE-CMD-EXECUTION.txt + ISR: ApparitionSec Vendor: ===============...

0.1AI score
Exploits0
myhack58
myhack58
added 2016/11/05 12:0 a.m.29 views

Wix. com there is delay in the repair of the vulnerability millions of websites at risk-vulnerability and early warning-the black bar safety net

Foreword Web hosting cloud service provider Wix. com the presence of the Dom typeXSSvulnerability that can allow an attacker to control in this platform hosted on any one site. Contrast Security's senior security researcher Matt Austin said,“the only need in the Wix create site to add a single...

7.1AI score
Exploits0
CNVD
CNVD
added 2016/09/23 12:0 a.m.3 views

Canoas Web Hosting Administration Page Bypass Vulnerability

A security vulnerability exists in the Canoas web hosting administration page. Due to a failure to filter the Login and Senha parameters in the admin/login.php page. This allows an attacker to bypass login restrictions and perform unauthorized operations...

6.9AI score
Exploits0References1
CNVD
CNVD
added 2016/04/16 12:0 a.m.2 views

Vesta Control Panel Cross-Site Scripting Vulnerability

Vesta Control Panel is an open source web hosting control panel. Vesta Control Panel suffers from a cross-site scripting vulnerability that could be exploited by attackers to conduct cross-site scripting attacks...

6.2AI score
Exploits0References1
Exploit DB
Exploit DB
added 2016/01/28 12:0 a.m.22 views

Ramui Web Hosting Directory Script 4.0 - Remote File Inclusion

Title: Ramui web hosting directory script 4.0 Remote File Include Vulnerability Author: bd0rk Twitter: twitter.com/bd0rk Vendor: http://www.ramui.com Download: http://ramui.com/directory-script/download-v4.html Proof-of-Concept: /gb/include/connection.php lines 6-13 in php-sourcecode class...

7.4AI score
Exploits0
0day.today
0day.today
added 2016/01/28 12:0 a.m.18 views

Ramui Web Hosting Directory Script 4.0 - Remote File Inclusion

Exploit for php platform in category web applications Title: Ramui web hosting directory script 4.0 Remote File Include Vulnerability Author: bd0rk Twitter: twitter.com/bd0rk Vendor: http://www.ramui.com Download: http://ramui.com/directory-script/download-v4.html Proof-of-Concept:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/01/28 12:0 a.m.24 views

Ramui Web Hosting Directory Script 4.0 RFI

Title: Ramui web hosting directory script 4.0 Remote File Include Vulnerability Author: bd0rk Twitter: twitter.com/bd0rk Vendor: http://www.ramui.com Download: http://ramui.com/directory-script/download-v4.html Proof-of-Concept: /gb/include/connection.php lines 6-13 in php-sourcecode class...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2016/01/28 12:0 a.m.15 views

Ramui Web Hosting Directory Script 4.0 - Remote File Inclusion

Ramui Web Hosting Directory Script 4.0 - Remote File Inclusion Title: Ramui web hosting directory script 4.0 Remote File Include Vulnerability Author: bd0rk Twitter: twitter.com/bd0rk Vendor: http://www.ramui.com Download: http://ramui.com/directory-script/download-v4.html Proof-of-Concept:...

0.3AI score
Exploits0
0day.today
0day.today
added 2015/09/09 12:0 a.m.38 views

DirectAdmin Web Control Panel 1.483 - Multiple Vulnerabilities

Exploit for php platform in category web applications ============================================================================= + Exploit Title : DirectAdmin Web Control Panel CSRF/XSS vulnerability + Exploit Author : Ashiyane Digital Security Team + Date : 1.483 + Version : 2015/09/08 + Test...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/09/09 12:0 a.m.23 views

DirectAdmin 1.483 Cross Site Request Forgery / Cross Site Scripting

============================================================================= + Exploit Title : DirectAdmin Web Control Panel CSRF/XSS vulnerability + Exploit Author : Ashiyane Digital Security Team + Date : 1.483 + Version : 2015/09/08 + Tested on : Elementary Os + Vendor Homepage :...

0.3AI score
Exploits0
Fedora
Fedora
added 2015/06/10 7:17 p.m.29 views

[SECURITY] Fedora 22 Update: fusionforge-5.3.2-4.fc22

FusionForge provides many tools to aid collaboration in a development project, such as bug-tracking, task management, mailing-lists, SCM repository, forums, support request helper, web/FTP hosting, release management, etc. All these services are integrated into one web site and managed through a...

10CVSS1.3AI score0.04496EPSS
Exploits0
CNVD
CNVD
added 2015/06/03 12:0 a.m.5 views

Vesta Control Panel Cross-Site Request Forgery Vulnerability

Vesta Control Panel is an open source web hosting control panel. A cross-site request forgery vulnerability exists in Vesta Control Panel. As the program fails to properly validate HTTP requests. An attacker could use this vulnerability to perform unauthorized actions on a user's logged in...

6.8AI score
Exploits0References1
The Hacker News
The Hacker News
added 2015/01/20 10:29 p.m.16 views

GoDaddy Vulnerability Allows Domain Hijacking

An Internet domain registrar and web hosting company GoDaddy has patched a Cross-Site Request Forgery CSRF or XSRF vulnerability that allowed hackers and malicious actors to hijack websites registered with the domain registration company. The vulnerability was reported to GoDaddy on Saturday by...

6.6AI score
Exploits0
ThreatPost
ThreatPost
added 2014/09/25 4:30 p.m.73 views

Bash Vulnerability Exploits Dropping DDoS Bots

A honeypot run by researchers at AlienVault Labs has snared two separate pieces of malware attempting to exploit the Bash vulnerability. One sample is a repurposed IRC bot written in Perl that is trying to build a botnet to be used in distributed denial of service attacks DDoS, said Jaime Blasco,...

10CVSS0.99999EPSS
Exploits132References6
Tenable Nessus
Tenable Nessus
added 2014/08/01 12:0 a.m.59 views

openSUSE Security Update : php5 (openSUSE-2014-471)

php5 was updated to fix security issues : CVE-2014-4670: Use-after-free vulnerability in ext/spl/spldllist.c in the SPL component in PHP allowed context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted iterator usage within applications in...

4.6CVSS8.2AI score0.05868EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2014/07/31 12:0 a.m.59 views

openSUSE Security Update : openSUSE-2014- (openSUSE-2014--1)

php5 was updated to fix security issues : CVE-2014-4670: Use-after-free vulnerability in ext/spl/spldllist.c in the SPL component in PHP allowed context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted iterator usage within applications in...

4.6CVSS0.5AI score0.05868EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2014/07/31 12:0 a.m.34 views

openSUSE Security Update : openSUSE-2014- (openSUSE-2014--1)

php5 was updated to fix security issues : CVE-2014-4670: Use-after-free vulnerability in ext/spl/spldllist.c in the SPL component in PHP allowed context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted iterator usage within applications in...

4.6CVSS0.5AI score0.05868EPSS
Exploits1References6
NVD
NVD
added 2014/07/10 11:6 a.m.17 views

CVE-2014-4698

Use-after-free vulnerability in ext/spl/splarray.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted ArrayIterator usage within applications in certain web-hosting environments...

4.6CVSS7.7AI score0.00681EPSS
Exploits0References13
NVD
NVD
added 2014/07/10 11:6 a.m.20 views

CVE-2014-4670

Use-after-free vulnerability in ext/spl/spldllist.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted iterator usage within applications in certain web-hosting environments...

4.6CVSS7.6AI score0.0071EPSS
Exploits0References15
Prion
Prion
added 2014/07/10 11:6 a.m.31 views

Design/Logic Flaw

Use-after-free vulnerability in ext/spl/spldllist.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted iterator usage within applications in certain web-hosting environments...

4.6CVSS7.7AI score0.0071EPSS
Exploits0References15Affected Software1
Rows per page
Query Builder