Lucene search
K

1178 matches found

0day.today
0day.today
added 2018/02/17 12:0 a.m.22 views

PHIMS - Hospital Management Information System - Password SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: PHIMS - Hospital Management Information System - 'Password' SQL Injection Exploit Author: Borna nematzadeh L0RD or email protected Vendor Homepage: https://codecanyon.net/item/phims/14974225?srank=1566 Version: All version...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2018/02/17 12:0 a.m.37 views

Joomla! Google Map Landkarten 4.2.3 SQL Injection

Exploit Title: Joomla! Component Google Map Landkarten cmslitedoct' http://localhost/Joomla375/index.php?option=comgmap&view=gmmarkers&tm...

9.2AI score0.23973EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/02/17 12:0 a.m.81 views

Joomla! Gallery WD 1.3.6 SQL Injection

Exploit Title: Joomla! Component Gallery WD 1.3.6 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: https://web-dorado.com/ Software Link: https://extensions.joomla.org/extensions/extension/photos-a-images/galleries/gallery-wd/ Software Download:...

9.2AI score0.02703EPSS
Exploits5
exploitpack
exploitpack
added 2018/02/16 12:0 a.m.8 views

PSNews Website 1.0.0 - Keywords SQL Injection

PSNews Website 1.0.0 - Keywords SQL Injection Exploit Title: PSNews Website Same Backend with Mobile Apps 1.0.0 - 'Keywords' SQL Injection Dork: N/A Date: 2018-02-16 Exploit Author: Borna nematzadeh L0RD or [email protected] Vendor Homepage:...

8.6AI score
Exploits0
Exploit DB
Exploit DB
added 2018/02/16 12:0 a.m.20 views

PHIMS - Hospital Management Information System - 'Password' SQL Injection

Exploit Title: PHIMS - Hospital Management Information System - 'Password' SQL Injection Dork: N/A Date: 2018-02-16 Exploit Author: Borna nematzadeh L0RD or [email protected] Vendor Homepage: https://codecanyon.net/item/phims/14974225?srank=1566 Version: All version Category: Webapps...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2018/02/16 12:0 a.m.49 views

Joomla! Component Saxum Picker 3.2.10 - SQL Injection

Exploit Title: Joomla! Component Saxum Picker 3.2.10 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: http://www.saxum2003.hu/ Software Link: https://extensions.joomla.org/extensions/extension/sports-a-games/games/saxumpicker/ Software Download:...

9.8CVSS9.8AI score0.03953EPSS
Exploits5
Fedora
Fedora
added 2018/02/14 5:11 p.m.53 views

[SECURITY] Fedora 26 Update: libxml2-2.9.7-1.fc26

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

10CVSS0.5AI score0.08628EPSS
Exploits4
0day.today
0day.today
added 2018/02/14 12:0 a.m.46 views

SOA School Management - access_login SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: SOA - School Management Software with Integrated Parents/Students Portal & Mobile App - 'accesslogin' SQL Injection Dork: N/A Date: 2018-02-14 Exploit Author: Borna nematzadeh L0RD or email protected Vendor Homepage:...

7.1AI score
Exploits0
Fedora
Fedora
added 2018/01/30 6:12 p.m.42 views

[SECURITY] Fedora 27 Update: libxml2-2.9.7-1.fc27

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

10CVSS0.5AI score0.08628EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.38 views

Debian DSA-4086-1 : libxml2 - security update

Nick Wellnhofer discovered that certain function calls inside XPath predicates can lead to use-after-free and double-free errors when executed by libxml2's XPath engine via an XSLT transformation. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

8.8CVSS8AI score0.02963EPSS
Exploits1References6
Debian
Debian
added 2018/01/13 4:46 p.m.35 views

[SECURITY] [DSA 4086-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4086-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 13, 2018 https://www.debian.org/security/faq -...

6.8CVSS2.3AI score0.02963EPSS
Exploits1
Debian
Debian
added 2018/01/13 4:46 p.m.42 views

[SECURITY] [DSA 4086-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4086-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 13, 2018 https://www.debian.org/security/faq -...

8.8CVSS7.5AI score0.02963EPSS
Exploits1
OpenVAS
OpenVAS
added 2018/01/12 12:0 a.m.48 views

Debian: Security Advisory (DSA-4086-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.5AI score0.02963EPSS
Exploits1References4
n0where
n0where
added 2018/01/09 5:6 a.m.164 views

Web Reconnaissance Framework: Recon-ng

Recon-ng is a full-featured Web Reconnaissance framework written in Python. Complete with independent modules, database interaction, built in convenience functions, interactive help, and command completion, Recon-ng provides a powerful environment in which open source web-based reconnaissance can...

7.7AI score
Exploits0References6
Prion
Prion
added 2017/10/27 7:29 p.m.20 views

Xxe

XML external entity XXE vulnerability in Apache ActiveMQ Apollo 1.x before 1.7.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages...

7.5CVSS7.5AI score0.04592EPSS
Exploits0References6Affected Software1
UbuntuCve
UbuntuCve
added 2017/10/27 7:29 p.m.32 views

CVE-2014-3600

XML external entity XXE vulnerability in Apache ActiveMQ 5.x before 5.10.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages...

9.8CVSS7.3AI score0.09851EPSS
Exploits0References2
Prion
Prion
added 2017/10/27 7:29 p.m.26 views

Xxe

XML external entity XXE vulnerability in Apache ActiveMQ 5.x before 5.10.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages...

7.5CVSS7.3AI score0.09851EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2017/10/27 7:29 p.m.10 views

CVE-2014-3600

XML external entity XXE vulnerability in Apache ActiveMQ 5.x before 5.10.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages...

9.8CVSS9.5AI score0.09851EPSS
Exploits0References8
NVD
NVD
added 2017/10/27 7:29 p.m.20 views

CVE-2014-3579

XML external entity XXE vulnerability in Apache ActiveMQ Apollo 1.x before 1.7.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages...

9.8CVSS9.5AI score0.04592EPSS
Exploits0References6
NVD
NVD
added 2017/10/27 7:29 p.m.21 views

CVE-2014-3600

XML external entity XXE vulnerability in Apache ActiveMQ 5.x before 5.10.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages...

9.8CVSS8.7AI score0.09851EPSS
Exploits0References6
Rows per page
Query Builder