Lucene search
K
SecurityvulnsMost viewed

47153 matches found

securityvulns
securityvulns
added 2004/11/09 12:0 a.m.105 views

[Full-Disclosure] [Advisory + Exploit] MiniShare, Minimal HTTP Server for Windows, Remote Buffer Overflow Exploit

Hi List, I found yesterday this bug in the last version of MiniShare. This is a simple buffer overflow in the address link. Vendors are contacted at http://minishare.sourceforge.net 1 hour only before the public advisorie. Actually no fix are available. The exploit is available in attachment for...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2003/12/17 12:0 a.m.105 views

J2EE 1.4 reference implementation: database component allows remote code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Illegalaccess.org security advisory i/12-2003 www.illegalaccess.org J2EE 1.4 reference implementation: database component allows remote code execution Brief ===== Product : J2EE reference implementation java.sun.com/j2ee/download.html Component :...

8.9AI score
Exploits0
securityvulns
securityvulns
added 2003/11/12 12:0 a.m.105 views

Microsoft Security Bulletin MS03-051

Microsoft Security Bulletin MS03-051 Print Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution 813360 Issued: November 11, 2003 Version: 1.0 Summary Who should read this document: Customers using Microsoft® FrontPage Server Extensions ® Impact of vulnerability: Remo...

7.5CVSS0.2AI score0.83075EPSS
Exploits10
securityvulns
securityvulns
added 2001/11/30 12:0 a.m.105 views

Advisory CA-2001-33 Multiple Vulnerabilities in WU-FTPD

CERT Advisory CA-2001-33 Multiple Vulnerabilities in WU-FTPD Original release date: November 29, 2001 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Systems running WU-FTPD and its derivatives Overview WU-FTPD is a widely deploy...

10CVSS0.2AI score0.74762EPSS
Exploits4
securityvulns
securityvulns
added 2000/10/19 12:0 a.m.105 views

Security Bulletin (MS00-079)

Microsoft Security Bulletin MS00-079 - - -------------------------------------- Patch Available for "HyperTerminal Buffer Overflow" Vulnerability Originally posted: October 18, 2000 Summary ======= Microsoft has released a patch that eliminates a security vulnerability in the HyperTerminal...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/06/07 12:0 a.m.105 views

ICQ2000A ICQmail temparary internet link vulnearbility

============================================== Vulnerability : ICQ2000A ICQwebmail temparary internet link vulnearbility Name : Gert Fokkema. Email : [email protected] Function : SecurityManager. Organization : ISAAN. http://www.fokkema.8k.com Organization : Noorderpoortcollege...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2000/04/17 12:0 a.m.105 views

XFree86 server overflow

XFree86 3.3.6 and probably 4.0.0 as well ; - by running X server no matter it's setuid, or called from setuid Xwrapper - works in both cases, seems to me Xwrapper in default RH 6.x distro is rather dumb ; with -xkbmap parameter and over 2100 of 'A's or shellcode, again, it's rather trivial to...

1AI score
Exploits0
securityvulns
securityvulns
added 2000/04/13 12:0 a.m.105 views

Linux news 13.04.00

Linux Kernel 2.2.15pre18 Сегодня вышел очередной, восемнадцатый по счету, пререлиз нового стабильного ядра Linux - Linux Kernel 2.2.15. Подробнее: http://kernelnotes.org/lnxlists/linux-kernel/lk000402/ Linux Kernel 2.3.99-pre5 Сегодня выпустили очередной пререлиз нового ядра Linux - Linux Kernel...

7.9AI score
Exploits0
securityvulns
securityvulns
added 2015/10/05 12:0 a.m.104 views

APPLE-SA-2015-09-30-2 Safari 9

APPLE-SA-2015-09-30-2 Safari 9 Safari 9 is now available and addresses the following: Safari Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5 and OS X El Capitan v10.11 Impact: Visiting a malicious website may lead to user interface spoofing Description: Multiple user interface...

10CVSS7.6AI score0.02795EPSS
Exploits0
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.104 views

[SECURITY] [DSA 3330-1] activemq security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3330-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 07, 2015 https://www.debian.org/security/faq -...

7.5CVSS2.3AI score0.12794EPSS
Exploits1
securityvulns
securityvulns
added 2015/07/27 12:0 a.m.104 views

NetCracker Resource Management 8.0 - SQL Injection Vulnerability

Vulnerability type: SQL Injection Vendor: http://www.netcracker.com/ Product: NetCracker Resource Management System Affected version: = 8.0 Patched version: 8.2 Credit: Foo Jong Meng, Chia Junyuan, Benjamin Tan CVE ID: CVE-2015-3423 PROOF OF CONCEPT SQLi SQL Injection SQLi vulnerability in multip...

1.2AI score0.02378EPSS
Exploits3
securityvulns
securityvulns
added 2015/06/08 12:0 a.m.104 views

Freebox OS Web interface 3.0.2 XSS, CSRF

Hello list, Here are two CVEs I reported to Freebox, a french ISP: - CVE-2014-9382 - CSRF in VPN user account creation - CVE-2014-9405 - XSS Vulnerable product: Freebox OS Web interface 3.0.2. CVE-2014-9382 - CSRF in Freebox OS Web interface 3.0.2 allowing VPN user account creation...

5.6AI score0.01505EPSS
Exploits3
securityvulns
securityvulns
added 2015/05/05 12:0 a.m.104 views

[ MDVSA-2015:209 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:209 http://www.mandriva.com/en/support/security/ Package : php Date : April 27, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated php packages fix security vulnerabilities:...

7.5CVSS8.5AI score0.38434EPSS
Exploits3
securityvulns
securityvulns
added 2015/05/04 12:0 a.m.104 views

[USN-2592-1] XML::LibXML vulnerability

========================================================================== Ubuntu Security Notice USN-2592-1 May 04, 2015 libxml-libxml-perl vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

5CVSS0.5AI score0.04013EPSS
Exploits0
securityvulns
securityvulns
added 2015/04/17 12:0 a.m.104 views

APPLE-SA-2015-04-08-3 iOS 8.3

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2015-04-08-3 iOS 8.3 iOS 8.3 is now available and addresses the following: AppleKeyStore Available for: iPhone 4s and later, iPod touch 5th generation and later, iPad 2 and later Impact: A malicious application may be able to guess the user's...

7.5CVSS0.6AI score0.09964EPSS
Exploits5
securityvulns
securityvulns
added 2014/11/24 12:0 a.m.104 views

APPLE-SA-2014-11-17-1 iOS 8.1.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-11-17-1 iOS 8.1.1 iOS 8.1.1 is now available and addresses the following: CFNetwork Available for: iPhone 4s and later, iPod touch 5th generation and later, iPad 2 and later Impact: Website cache may not be fully cleared after leaving...

9.3CVSS0.2AI score0.03404EPSS
Exploits0
securityvulns
securityvulns
added 2014/08/24 12:0 a.m.104 views

[USN-2324-1] OpenStack Keystone vulnerabilities

========================================================================== Ubuntu Security Notice USN-2324-1 August 21, 2014 keystone vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6CVSS0.7AI score0.02308EPSS
Exploits2
securityvulns
securityvulns
added 2014/06/14 12:0 a.m.104 views

[RT-SA-2014-006] Directory Traversal in DevExpress ASP.NET File Manager

Advisory: Directory Traversal in DevExpress ASP.NET File Manager During a penetration test RedTeam Pentesting discovered a directory traversal vulnerability in DevExpress' ASP.NET File Manager and File Upload. Attackers are able to read arbitrary files by specifying a relative path. Details =====...

6.5CVSS5.8AI score0.08917EPSS
Exploits6
securityvulns
securityvulns
added 2014/03/24 12:0 a.m.104 views

[SECURITY] [DSA 2877-1] lighttpd security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2877-1 [email protected] http://www.debian.org/security/ Michael Gilbert March 12, 2014 http://www.debian.org/security/faq -...

7.5CVSS2.5AI score0.61665EPSS
Exploits4
securityvulns
securityvulns
added 2014/03/13 12:0 a.m.104 views

APPLE-SA-2014-03-10-2 Apple TV 6.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-03-10-2 Apple TV 6.1 Apple TV 6.1 is now available and addresses the following: Apple TV Available for: Apple TV 2nd generation and later Impact: An attacker with access to an Apple TV may access sensitive user information from logs...

7.8CVSS8.2AI score0.10117EPSS
Exploits9
securityvulns
securityvulns
added 2014/01/09 12:0 a.m.104 views

[SECURITY] [DSA 2829-1] hplip security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2829-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 28, 2013 http://www.debian.org/security/faq -...

6.9CVSS1.2AI score0.03945EPSS
Exploits1
securityvulns
securityvulns
added 2013/12/09 12:0 a.m.104 views

CSRF Horde Groupware Web mail Edition

Exploit Title : CSRF Horde Groupware Web mail Edition Author:Marcela Benetrix Date: 10/28/13 version: 5.1.2 software link:http://www.horde.org/apps/webmail GroupWare Web mail Edition Horde Groupware Webmail Edition is a free, enterprise ready, browser based communication suite. Users can read, se...

0.01072EPSS
Exploits5
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.104 views

ESA-2013-057: RSA Archer(r) GRC Multiple Vulnerabilities

ESA-2013-057.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-057: RSA Archer® GRC Multiple Vulnerabilities EMC Identifier: ESA-2013-057 CVE Identifier: CVE-2013-3276, CVE-2013-3277 Severity Rating: CVSS v2 Base Score: See below for individual scores Affected Products: RSA Archer versio...

6CVSS0.3AI score0.01057EPSS
Exploits0
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.104 views

Multiple XSS Vulnerabilities in Jahia xCM

Advisory ID: HTB23159 Product: Jahia xCM Vendor: Jahia Solutions Group SA Vulnerable Versions: 6.6.1.0 r43343 and probably prior Tested Version: 6.6.1.0 r43343 Vendor Notification: June 5, 2013 Vendor Patch: July 17, 2013 Public Disclosure: July 31, 2013 Vulnerability Type: Cross-Site Scripting...

4.3CVSS0.9AI score0.0144EPSS
Exploits2
securityvulns
securityvulns
added 2013/04/01 12:0 a.m.104 views

ESA-2013-016: EMC Smarts Network Configuration Manager

ESA-2013-016.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-016: EMC Smarts Network Configuration Manager Improper Authentication Vulnerability EMC Identifier: ESA-2013-016 CVE Identifier: CVE-2013-0935 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected...

9.3CVSS0.3AI score0.04147EPSS
Exploits0
securityvulns
securityvulns
added 2013/03/11 12:0 a.m.104 views

[security bulletin] HPSBGN02854 SSRT100881 rev.1 - HP Intelligent Management Center (iMC), iMC TACACS+ Authentication Manager (TAM), and iMC User Access Manager (UAM), Cross Site Scripting (XSS), Remote Code Execution,

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03689276 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03689276 Version: 1 HPSBGN02854...

10CVSS0.6AI score0.63744EPSS
Exploits15
securityvulns
securityvulns
added 2013/01/10 12:0 a.m.104 views

Chrome for Android - Android APIs exposed to JavaScript

CVE Number: CVE-2012-4907 Title: Chrome for Android - Android APIs exposed to JavaScript Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: By abusing Java objects exposed to...

9.3CVSS0.4AI score0.01012EPSS
Exploits1
securityvulns
securityvulns
added 2012/10/01 12:0 a.m.104 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

4.3CVSS1.6AI score0.10456EPSS
Exploits9References10Affected Software6
securityvulns
securityvulns
added 2012/09/07 12:0 a.m.104 views

[CVE-2012-3373] Apache Wicket XSS vulnerability via manipulated URL parameter

Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache Wicket 1.4.x and 1.5.x Description: https://wicket.apache.org/2012/09/06/cve-2012-3373.html It is possible to inject JavaScript statements into an ajax link by adding an encoded null byte to a URL pointing to a...

4.3CVSS0.03279EPSS
Exploits0
securityvulns
securityvulns
added 2012/08/27 12:0 a.m.104 views

[USN-1542-1] PostgreSQL vulnerabilities

========================================================================== Ubuntu Security Notice USN-1542-1 August 21, 2012 postgresql-8.3, postgresql-8.4, postgresql-9.1 vulnerabilities ========================================================================== A security issue affects these...

4.9CVSS0.03297EPSS
Exploits2
securityvulns
securityvulns
added 2012/06/24 12:0 a.m.104 views

ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-100 June 21, 2012 - -- CVE ID: CVE-2012-0127 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected...

10CVSS0.7AI score0.23279EPSS
Exploits2
securityvulns
securityvulns
added 2012/04/23 12:0 a.m.104 views

[CVE-2012-1621] Apache OFBiz information disclosure vulnerability

CVE-2012-1621: Apache OFBiz information disclosure vulnerability Severity: Important Vendor: The Apache Software Foundation - Apache OFBiz ======Versions Affected====== Apache OFBiz 10.04 also known as 10.04.01 ======Description====== Multiple XSS: XSS 1: Error messages containing user input...

4.3CVSS0.9AI score0.09795EPSS
Exploits0
securityvulns
securityvulns
added 2011/08/17 12:0 a.m.104 views

[SECURITY] CVE-2011-2729: Commons Daemon fails to drop capabilities (Apache Tomcat)

CVE-2011-2729: Commons Daemon fails to drop capabilities Apache Tomcat Severity: Important Vendor: The Apache Software Foundation Versions Affected: Tomcat 7.0.0 to 7.0.19 Tomcat 6.0.30 to 6.0.32 Tomcat 5.5.32 to 5.5.33 Description: Due to a bug in the capabilities code, jsvc the service wrapper...

5CVSS1.8AI score0.07243EPSS
Exploits0
securityvulns
securityvulns
added 2011/08/01 12:0 a.m.104 views

Web Fusion Nepal (find.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Web Fusion Nepal find.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://webfusion.com.np/ Persian Gulf 4 Ever! Dork : "Powered by: Web Fusion Nepal" "inurl:find.php?id="...

2.9AI score
Exploits0
securityvulns
securityvulns
added 2011/07/22 12:0 a.m.104 views

Microsoft Internet Explorer 'toStaticHTML' HTML Sanitizing Information Disclosure

Name: Microsoft Internet Explorer 'toStaticHTML' HTML Sanitizing Information Disclosure Vulnerability Author: Adi Cohen of IBM Rational Application Security [email protected] Date: June 14, 2011 Risk: Medium CVE: CVE-2011-1252 Introduction ------------- The JavaScript function toStaticHTML, which i...

4.3CVSS5.8AI score0.13973EPSS
Exploits3
securityvulns
securityvulns
added 2011/02/26 12:0 a.m.104 views

Linux pertiotions handling multiple security vulnerabilities

Memory corruptions, information leaks, DoS...

4.9CVSS1.1AI score0.00534EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
added 2010/06/08 12:0 a.m.104 views

Microsoft Security Bulletin MS10-035 - Critical Cumulative Security Update for Internet Explorer (982381)

Microsoft Security Bulletin MS10-035 - Critical Cumulative Security Update for Internet Explorer 982381 Published: June 08, 2010 Version: 1.0 General Information Executive Summary This security update resolves five privately reported vulnerabilities and one publicly disclosed vulnerability in...

9.3CVSS1.2AI score0.3703EPSS
Exploits10
securityvulns
securityvulns
added 2010/04/05 12:0 a.m.104 views

PHP-fusion dsmsf (module downloads) SQL Inj3ct0r Exploit

======================================================== PHP-fusion dsmsf module downloads SQL Inj3ct0r Exploit ======================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' ...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2009/08/11 12:0 a.m.104 views

Microsoft Security Bulletin MS09-043 - Critical Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (957638)

Microsoft Security Bulletin MS09-043 - Critical Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution 957638 Published: August 11, 2009 Version: 1.0 General Information Executive Summary This security update resolves several privately reported vulnerabilities in...

9.3CVSS0.7AI score0.6202EPSS
Exploits27
securityvulns
securityvulns
added 2009/05/19 12:0 a.m.104 views

[security bulletin] HPSBMA02417 SSRT090031 rev.1 - HP Data Protector Express and HP Data Protector Express Single Server Edition (SSE), Local Denial of Service (DoS), Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01697543 Version: 1 HPSBMA02417 SSRT090031 rev.1 - HP Data Protector Express and HP Data Protector Express Single Server Edition SSE, Local Denial of Service DoS, Execution of Arbitrary Code...

7.2CVSS1AI score0.51612EPSS
Exploits8
securityvulns
securityvulns
added 2009/04/23 12:0 a.m.104 views

Mozilla Foundation Security Advisory 2009-19

Mozilla Foundation Security Advisory 2009-19 Title: Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString Impact: High Announced: April 21, 2009 Reporter: mozbugra4 Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.0.9 Description Mozilla security researcher mozbugra4...

4.3CVSS0.1AI score0.01351EPSS
Exploits0
securityvulns
securityvulns
added 2009/02/23 12:0 a.m.104 views

E107 CMS (e107_plugins/guestbook) stored XSS

Фильтрация отсутствует в поле "Email", POST запрос: POSTDATA=name=1&email='/"scriptalert'xss'/script&url=http3A2F2F&comment=4&guestbooksubmit=SiC5B3sti Далее следует редактирование сообщения. http://Target/e107plugins/guestbook/guestbook.php?edit.номер вашего сообщения Example:...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2008/11/24 12:0 a.m.104 views

OpenSSH security advisory: cbc.adv

OpenSSH Security Advisory: cbc.adv Regarding the "Plaintext Recovery Attack Against SSH" reported as CPNI-9570371: The OpenSSH team has been made aware of an attack against the SSH protocol version 2 by researchers at the University of London. Unfortunately, due to the report lacking any detailed...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2008/08/04 12:0 a.m.104 views

NeBoard Sql Injection Vulnerability

Discovered by : AleminKrali NeBoard Sql Injection Vulnerability Post Sql Dork :inurl:show.asp?id= ref= step= level= page= 2 html form 1.Form:It takes it:ID NAME 2.Form:Admin Password and later HTTP://SITE.COM/admin/boardedit.asp?id=IDNAME we are entering and 2.form Admin Password ile Login we are...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2007/12/20 12:0 a.m.104 views

xeCMS 1.x.x Remote File Disclosure Vulnerability.

-------------------------------------------------------------- xeCMS 1.x.x Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://xecms.sunsite.dk/ author : p4imi0 contact : [email protected] exploit : view.php?list=..2F..2F...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2007/10/20 12:0 a.m.104 views

Serious holes affecting SiteBar 3.3.8

All, As a result of a short security audit of SiteBar, a number of security holes were found. The holes included code execution, a malicious redirect and multiple cases of Javascript injection. After liasing with the developers, the holes have been patched. Attached are the advisory and patch...

9CVSS0.1AI score0.02341EPSS
Exploits2
securityvulns
securityvulns
added 2007/05/14 12:0 a.m.104 views

Webspeed OpenEdge Dos exploit

Webspeed OpenEdge Dos exploit Bug Discovered By :Eelko Neven Exploit Coded By spyMASter eklimizide koyalm : www.ulpow.net The Eliminators of the Web First you have to find the messenger execution url. For example: http://target/scripts/cgiip.exe/WService=wsbroker1...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2007/04/19 12:0 a.m.104 views

audioCMS arash 0.1.4(arashlib_dir)Remote File Inclusion Vulnerabilities

audioCMS arash 0.1.4arashlibdirRemote File Inclusion Vulnerabilities D.Script: http://sourceforge.net/projects/arash/ Discovered by: GolDM = Mahmoodali Homepage: http://Www.Tryag.Com/cc Exploit:Path/arashlib/include/edit.inc.php?arashlibdir=Shell...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2007/04/12 12:0 a.m.104 views

iDefense Security Advisory 04.11.07: Apache HTTPD suEXEC Multiple Vulnerabilities

Apache HTTPD suEXEC Multiple Vulnerabilities iDefense Security Advisory 04.11.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 11, 2007 I. BACKGROUND The suexec binary is a helper application which is part of the Apache HTTP server package. It is designed to allow a script to run wit...

6.2CVSS0.2AI score0.00516EPSS
Exploits0
securityvulns
securityvulns
added 2007/02/23 12:0 a.m.104 views

Hasadya Raed

Remote Incluude File : By Hasadya Raed Contact : [email protected] Author : Hasadya Raed Script : arabhost Download : http://delmaa.com/upfile/users/arabHost.zip B.File : function.php V.Code : include$adminfloder"; Expl : http://www.victim.com/path/function.php?adminfolder=Shell-Attack...

0.5AI score
Exploits0
Total number of security vulnerabilities5000