Lucene search
K
SeebugMost viewed

56796 matches found

seebug.org
seebug.org
added 2007/12/04 12:0 a.m.255 views

wpQuiz Viewimage.PHP SQL注入漏洞

wpQuiz是一款基于PHP的WEB应用程序。 wpQuiz不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL注入攻击,可获得敏感信息或操作数据库。 问题是由于'Viewimage.PHP'脚本对用户提交的'id'参数缺少过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或可能操作数据库。 Wire Plastik Design wpQuiz 2.7 目前没有解决方案提供: http://www.wireplastik.com/projects.php http://www.sebug.net/exploit/2622.html...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/04/10 12:0 a.m.255 views

Apache Mod_Rewrite Off-by-one Remote Overflow Exploit (win32)

No description provided by source. !/bin/sh Exploit for Apache modrewrite off-by-oneWin32. by axis axis@ph4nt0m http://www.ph4nt0m.org 2007-04-06 Tested on Apache 2.0.58 Win32 Windows2003 CN SP1 Vulnerable Apache Versions: 1.3 branch: 1.3.28 and 1.3.37 2.0 branch: 2.0.46 and 2.0.59...

7.6CVSS9.5AI score0.96436EPSS
Exploits20
seebug.org
seebug.org
added 2017/04/17 12:0 a.m.254 views

Jackson enableDefaultTyping method of deserialization code execution vulnerability(CVE-2017-7525)

Earlier this year, a vulnerability was discovered in the Jackson data-binding library, a library for Java that allows developers to easily serialize Java objects to JSON and vice versa, that allowed an attacker to exploit deserialization to achieve Remote Code Execution on the server. This...

10.2AI score0.37925EPSS
Exploits7
seebug.org
seebug.org
added 2016/12/26 12:0 a.m.254 views

PHPMailer < 5.2.18 Remote Code Execution(CVE-2016-10033) (PwnScriptum)

来源:https://blog.chaitin.cn/phpmailer-cve-2016-10033/ 作者:phithon@长亭科技 对比一下新老版本: https://github.com/PHPMailer/PHPMailer/compare/v5.2.17...master 其实答案呼之欲出了——和Roundcube的RCE类似,mail函数的第五个参数,传命令参数的地方没有进行转义。...

7.5CVSS9.5AI score0.99714EPSS
Exploits58
seebug.org
seebug.org
added 2016/01/15 12:0 a.m.254 views

泛微oa /iWebOffice/OfficeServer.php /iWebOffice/OfficeServer2.php 任意文件读取漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2013/08/05 12:0 a.m.254 views

Xheditor 1.1.12 /demos/upload.php 文件上传漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/06/30 12:0 a.m.254 views

TFM MMPlayer 2.0 (m3u/ppl) Universal Buffer Overflow Exploit (SEH)

No description provided by source. !/usr/bin/perl + Bug : TFM MMPlayer 2.0 m3u/ppl Universal Buffer Overflow Exploit SEH + Author : ThE g0bL!N Greetz to all my friends Tested on: Windows XP Pro SP2 Fr Big Thnx :His0k4 Download:http://www.tfm.ro/mmplayer/download/mmplayer.zip win32exec -...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/03/23 12:0 a.m.253 views

某校园建站系统同一文件多处sql注入漏洞

简要描述: sql 详细说明: 使用量非常多 http://www.dlwsxx.com/ws2004/model/login1.asp http://www.fzjcxx.cn/ws2004/model/login1.asp http://www.nxyancgjzx.com/ws2004/model/login1.asp http://www.sgtjb.com/ws2004/model/login1.asp http://www.sdwhys.com/ws2004/model/login1.asp...

7.8AI score
Exploits0
seebug.org
seebug.org
added 2014/12/24 12:0 a.m.253 views

Turbomail邮件系统XSS-1

简要描述: Turbomail邮件系统最新版某处存在xss漏洞,可以用来钓鱼,获取cookie等 详细说明: 版本:windows server下搭建的最新版5.2.0 漏洞文件为 C:\turbomail\web\webapps\ROOT\enterprise\swfupload\swfupload.swf 此版本存在xss缺陷,参考CVE-2012-3414...

4.3CVSS6.5AI score0.09088EPSS
Exploits10
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.253 views

Esoftpro Online Guestbook Pro Multiple Vulnerabilities

No description provided by source. Exploit Title: Esoftpro Online Guestbook Pro Multiple Vulnerability Vendor url:http://www.esoftpro.com/ Version:5.1 Author: L0rd CrusAd3r aka VSN [email protected] Published: 2010-07-4 Greetz to:r0073r inj3ct0r.com, Sid3^effects, MaYur, MA1201, Sonic Bluehat...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/10/05 12:0 a.m.253 views

Microsoft Windows远程桌面协议服务程序密钥泄露漏洞

BUGTRAQ ID: 13818 CVECAN ID: CVE-2005-1794 Microsoft Windows远程桌面协议(RDP)服务允许客户端访问MS的终端服务。 Microsoft Windows远程桌面协议的实现在处理密钥的交换时存在漏洞,远程攻击者可能利用此漏洞窃取服务器的加密密钥。 起因是尽管通过网络传输的信息已经过加密,但在建立会话的加密密钥时没有核实服务器的身份,导致攻击者可以获得密钥,计算出有效的签名,然后发动中间人攻击。成功利用这个漏洞的攻击者可以完全控制连接在服务器上的客户端。 Microsoft RDP 5.2 Microsoft RDP 5.1...

6.4CVSS9AI score0.16191EPSS
Exploits1
seebug.org
seebug.org
added 2006/12/06 12:0 a.m.253 views

Mambo a6mambocredits Component 1.0.0 File Include Vulnerability

No description provided by source. Title : Mambo a6mambocredits component v1.0.0 == mosConfiglivesite Remote File Include Vulnerabilities Affected Application: Mambo a6mambocredits component v1.0.0 Mambo CMS Component . . : contact :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2021/07/07 12:0 a.m.253 views

Jspxcms 后台RCE漏洞

...

0.7AI score
Exploits0
seebug.org
seebug.org
added 2013/07/17 12:0 a.m.252 views

Oracle MySQL Server远程安全漏洞(CVE-2013-3783)

BUGTRAQ ID: 61210 CVECAN ID: CVE-2013-3783 Oracle MySQL Server是一个轻量的关系型数据库系统。 Oracle MySQL Server 5.5.31之前版本存在远程安全漏洞,此漏洞可通过MySQL协议利用,Server Parser子组件受到影响。远程攻击者可利用此漏洞造成拒绝服务。 0 MySQL Server = 5.5.31 厂商补丁: Oracle ------ Oracle已经为此发布了一个安全公告(cpujuly2013-1899826)以及相应补丁: cpujuly2013-1899826:Oracle...

4CVSS1.9AI score0.0309EPSS
Exploits1
seebug.org
seebug.org
added 2006/11/26 12:0 a.m.252 views

PHP Poll Creator Relativer_PFAD远程文件包含漏洞

PHP Poll Creator是一款基于php的WEB应用程序。 PHP Poll Creator不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于多个脚本对用户提交的'RelativerPFAD'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 php PC PHP Polling Creator 1.03 php PC PHP Poll Creator 1.0.1 php PC PHP Poll Creator 1.04 目前没有解决方案提供:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/20 12:0 a.m.251 views

用友FE协作办公系统 /common/codeMoreWidget.jsp SQL注入漏洞

0x01 框架介绍 用友用友FE协作办公系统是一款OA办公自动化软件,算是一款平台型的办公自动化软件。通过整合多种网络化、低成本营销手段和沟通方式,帮助企业建立与客户之间通畅的交流平台,全方位管理客户资源、提升客户价值、制定科学销售指标、监控项目进程、评估业务员绩效,以增强内部协同,合理调配企业资源。 官方主页:http://www.yonyou.com/ 0x02 漏洞细节 用友FE协作办公系统某处过滤不严,导致SQL注入漏洞 注入链接: /common/codeMoreWidget.jsp?code= 案例:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/07/29 12:0 a.m.251 views

ISC BIND 9远程动态更新消息拒绝服务漏洞

Bugraq ID: 35848 CVE ID:CVE-2009-0696 ISC BIND是一款DNS协议的实现。 ISC BIND 9服务器处理特殊构建的动态更新报文存在问题,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 当动态更新消息基本段包含“ANY”类型记录,并且至少一条FQDN的RRset存在在服务器上,会触发dnsdbfindrdataset失败: db.c:659: REQUIREtype != dnsrdatatypetdnsrdatatypeany failed exiting due to assertion failure...

4.3CVSS6.3AI score0.12649EPSS
Exploits1
seebug.org
seebug.org
added 2008/03/19 12:0 a.m.251 views

Joomla Component Acajoom (com_acajoom) SQL Injection Vulnerability

No description provided by source. Joomla Component comacajoom SQL Injection Author: fataku Mail : [email protected] Dorks 1 : inurl:"comacajoom" mailingid Sploit:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/02/17 12:0 a.m.250 views

glibc getaddrinfo 栈缓冲区溢出漏洞(CVE-2015-7547)

漏洞概要 Glibc是GNU发布的LIBC库的C运行库,Glibc是Linux系统中最底层的API,基本其它任何运行库都会依赖于Glibc。Glibc除了封装Linux操作系统所提供的系统服务外,还提供了其它的必要服务的实现。由于 Glibc 几乎包含所有的 UNIX 通行的标准,可以说是操作系统重要支撑库。 Glibc中的 DNS...

6.8CVSS8.3AI score0.89557EPSS
Exploits17
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.250 views

AWStats 5.7 - 6.2 - Multiple Remote Exploit (extra)

No description provided by source. / Awstats exploit shell code by omin0us omin0us208 at gmail dot com dtors security group .: http://dtors.ath.cx :. Vulnerability reported by iDEFENSE pluginmode bug has been found by GHC team. The awstats exploit that was discovered allows a user to execute...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.250 views

Easy Message Board Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13555/info Easy Message Board is prone to a remote command execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2010/04/29 12:0 a.m.250 views

JBoss企业应用平台多个非授权访问漏洞

BUGTRAQ ID: 39710 CVE ID: CVE-2010-0738,CVE-2010-1428,CVE-2010-1429 JBoss企业应用平台(EAP)是J2EE应用的中间件平台。 JBoss企业应用平台中存在多个非授权访问漏洞,远程用户可以绕过认证执行非授权操作或读取敏感信息。 1 JMX控制台配置仅对使用GET和POST HTTP命令的请求指定了认证要求,远程攻击者可以创建没有指定GET或POST的HTTP请求,导致无需认证便被默认的GET处理器执行。 2...

5CVSS1.1AI score0.79415EPSS
Exploits35
seebug.org
seebug.org
added 2008/01/06 12:0 a.m.250 views

SNETWORKS PHP CLASSIFIEDS 5.0 Remote File Inclusion Vulnerability

No description provided by source. +By CrackersChild+ Script.......: SNETWORKS PHP CLASSIFIEDS Page.........: http://www.snetworks.biz/ Author.......: CrackersChild | [email protected] & [email protected] Class........: Remote File nclude Vulnerability Demo.........:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/06/18 12:0 a.m.250 views

Apache Tomcat JSP样例WEB应用程序跨站脚本漏洞

Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。 Apache Tomcat不正确过滤用户提交的输入,远程攻击者可以利用漏洞进行跨站脚本攻击,获得敏感信息。 Apache Tomcat的文档样例WEB应用程序包含的'snoop.jsp'脚本对参数缺少过滤,提交恶意脚本代码作为参数数据,并诱使用户访问,可导致获得目标用户敏感信息。 Apache Tomcat 6.0.13 Apache Tomcat 6.0.12 Apache Tomcat 6.0.11 Apache Tomcat 6.0.10 Apache Tomcat 6.0.1 Apache Tomcat...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/06/02 12:0 a.m.250 views

Microsoft IIS &lt;= 5.1 Hit Highlighting Authentication Bypass Exploit

No description provided by source. NTLM BASIC AUTH BYPASS : sha0atbadchecksum.net Based on my adv: http://www.securityfocus.com/bid/24105/info CVE-2007-2815 if $ != 2 then printf "USAGE:\t\t$0 Site Protected Object\nExample:\t$0 http://www.microsoft.com /en/us/default.aspx\n\n";...

10CVSS6.5AI score0.7335EPSS
Exploits6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.249 views

Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit

No description provided by source. !/bin/bash $Id: raptorsshtime,v 1.1 2007/02/13 16:38:57 raptor Exp $ raptorsshtime - OpenSSH remote timing attack exploit Copyright c 2006 Marco Ivaldi [email protected] OpenSSH-portable 3.6.1p1 and earlier with PAM support enabled immediately sends an erro...

5CVSS7AI score0.76751EPSS
Exploits10
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.249 views

webSPELL 4.1.2 - 'index.php' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28294/info webSPELL is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.249 views

webcamxp and webcam 7 - Directory Traversal vulnerability

No description provided by source. Exploit Title: WebcamXP and Webcam7 Directory Traversal Vulnerability Google Dork: powered by webcamxp xhtml css Google Dork: powered by webcam 7 Date: 2/22/2012 Author: Silent Dream Software Link: http://dl.filekicker.com/send/file/230775-FQAC/wlite550.exe...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2011/06/16 12:0 a.m.249 views

Microsoft XML外部实体分解CVE-2011-1280信息泄露漏洞

Bugtraq ID: 48196 CVE ID:CVE-2011-1280 Microsoft XML Editor是一款”基于Microsoft Visual Studio"文本编辑器,并增加了对XML语言的支持。 在解析Web服务发现文件".disco"中的XML外部实体时存在错误,攻击者可以利用漏洞获得任意文件的敏感内容。 Microsoft Visual Studio 2010 0 Microsoft Visual Studio 2008 SP1 Microsoft Visual Studio 2005 SP1 Microsoft SQL Server Management...

4.3CVSS6.9AI score0.15254EPSS
Exploits1
seebug.org
seebug.org
added 2008/08/20 12:0 a.m.249 views

Openwsman多个远程安全漏洞

BUGTRAQ ID: 30694 CVECAN ID: CVE-2008-2234,CVE-2008-2233 Openwsman是开放源代码的WEB服务管理规范的实现。 Openwsman在解码HTTP基础认证头时存在两个缓冲区溢出漏洞,其客户端受SSL会话中继攻击影响,如果远程攻击者向有漏洞的系统发送了畸形报文的话,就可以触发这些漏洞,导致执行任意指令。 Openwsman Openwsman 2.0 Openwsman Openwsman 1.2 Openwsman --------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.5CVSS6.4AI score0.04318EPSS
Exploits5
seebug.org
seebug.org
added 2016/05/24 12:0 a.m.248 views

泛微OA系统 /meeting/Maint/MeetingTypeCheck.jsp 参数id 时间盲注

版本:6.0,7.0,7.100 存在漏洞的文件: /meeting/Maint/MeetingTypeCheck.jsp 该文件接收2个参数:typename、id 测试发现如果数据库是oracle,则两个参数均可注入,如果数据库是mssql,则只有参数id可注入。 代码: 可以看到参数typename和id都未进行额外的处理,直接拼接到sql语句中执行了。 google关键字: intitle:泛微协同商务系统 inurl:login 等关键字可搜出不少来。...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/10/05 12:0 a.m.248 views

泛微 e-Weaver系统自定义SQL语句执行

名称:e-cology 泛微协同商务系统 === --- 测试发现,该商务系统邮件附件下载处存在: ①未授权访问漏洞(无需登录即可遍历下载内部邮件附件) ②SQL注入漏洞 问题链接:http://www.target.com//weaver/weaver.email.FileDownloadLocation?fileid=附件ID&download=1 0x01: 未授权访问 说明:访问问题链接,显示为空白页;遍历附件ID值,如存在附件可直接下载导致内部信息泄露。该漏洞不是重点,SO 简单带过就 OK。...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/12/21 12:0 a.m.248 views

TLS Renegotiation Vulnerability PoC Exploit

No description provided by source. !/usr/bin/env python RedTeam Pentesting GmbH [email protected] http://www.redteam-pentesting.de PoC exploit for the TLS renegotiation vulnerability CVE-2009-3555 License ------- CC-BY-SA http://creativecommons.org/licenses/by-sa/3.0/ Timeline -------...

5.8CVSS0.1AI score0.87264EPSS
Exploits14
seebug.org
seebug.org
added 2005/11/13 12:0 a.m.248 views

os-x/PPC/x86 execve(&quot;&quot;/bin/sh&quot;&quot; {&quot;&quot;/bin/sh&quot;&quot; NULL} NULL) 121 bytes

No description provided by source. / - dual.c - by [email protected] execve"/bin/sh","/bin/sh",NULL,NULL shellcode for osx both the ppc and x86 version. Sample output: -nemo@squee:/shellcode$ file dual-ppc dual-ppc: Mach-O executable ppc -nemo@squee:/shellcode$ ./dual-ppc sh-2.05b$ exit...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2017/10/09 12:0 a.m.247 views

Dnsmasq DoS Vulnerability(CVE-2017-14495)

No description provided by source. !/usr/bin/python Copyright 2017 Google Inc Licensed under the Apache License, Version 2.0 the "License"; you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless...

5CVSS8.9AI score0.84323EPSS
Exploits5
seebug.org
seebug.org
added 2007/12/04 12:0 a.m.247 views

Apache HTTP Server 413错误HTTP请求方法跨站脚本漏洞

Apache HTTP Server是一款非常流行的HTTP服务程序。 Apache HTTP Server处理特殊构建的HTP方法存在输入验证问题,远程攻击者可以利用漏洞进行跨站脚本攻击,获得敏感信息。 通过提交一个畸形的HTTP方法其可包含恶意负载如Javascript和表单中非法长度数据,可引起Apache HTTP服务器返回客户端提供的脚本代码: Two 'Content-length:' headers equals to zero. i.e.: Content-Length: 0LFContent-Length: 0 One 'Content-length:' header...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.246 views

Serendipity 0.x Exit.PHP HTTP Response Splitting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11497/info Serendipity is reported prone to an HTTP response splitting vulnerability. A remote attacker may exploit this vulnerability to influence or misrepresent how web content is served, cached or interpreted. This...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/05/13 12:0 a.m.246 views

ASPCMS最新版CSRF添加管理员及GetShell

简要描述: 详细说明: ASPCMS最新版2.5.2 CSRF添加管理员: 后台添加管理员的请求如下: 链接:http://10.65.203.100:90/adminaspcms/user/Admin/AspCmsAdminAdd.asp?action=add POST:GroupID=1&LoginName=111111&Password=111111&AdminDesc=111111&UserStatus=1 可以看到没有防御CSRF 我们构造伪造表单: 管理员组 超级管理员组 lpyuan 普通管理员 管理员名称 管理员密码 管理员描述 状态 漏洞利用之前: img...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/07/31 12:0 a.m.246 views

Mozilla Firefox NULL字符CA SSL证书验证安全绕过漏洞

Bugraq ID: 35888 CVE ID:CVE-2009-2408 Mozilla Firefox是一款开放源代码的WEB浏览器。 Mozilla Firefox不正确验证签名CA证书中的域名,远程攻击者可以利用漏洞通过伪造证书进行中间人攻击。 如果构建的一个恶意证书其公用名包含NULL字符,并能正确获得合法签名被浏览器信任,那么攻击者可以使用这个证书代替合法证书进行中间人攻击,获得敏感信息或进行其他攻击。 Mozilla Network Security Services NSS 3.12.2 Mozilla Network Security Services NSS 3.11...

6.8CVSS1.3AI score0.05741EPSS
Exploits4
seebug.org
seebug.org
added 2016/03/23 12:0 a.m.245 views

resin-doc 会议管理系统任意文件读取漏洞

http://../resin-doc/resource/tutorial/jndi-appconfig/test?inputFile= inputFile参数可任意文件读取 google搜一下还可以搜到很多 比如:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/02 12:0 a.m.245 views

XStream 反序列化漏洞

Xstream 的反序列化漏洞的根源就是 Groovy 组件的问题参考 Apache Groovy MethodClosure 远程代码执行漏洞(CVE-2015-3253),只不过在 Xstream 中进行反序列化时恰好有触发存在缺陷函数的点,也就是 Xstream 在反序列化时调用了 Mapput 函数将构造好的 Expando 实例作为 key 添加到集合中时触发了代码执行,如下图: 这里的 key 就是我们构造的 Expando 的实例对象。 在构造 EXP 时,首先我们要构造一个 Expando 的一个对象实例,同时设置 hashCode 的实现为 MethodClosure...

9CVSS9.4AI score0.82697EPSS
Exploits26
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.246 views

ProFTPD 1.3 'mod_sql' Username SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33722/info ProFTPD is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to manipulate SQL...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/06/25 12:0 a.m.245 views

Samba格式串和安全绕过漏洞

Bugraq ID: 35472 CVE ID:CVE-2009-1888 CVE-2009-1886 CNCVE ID:CNCVE-20091888 CNCVE-20091886 Samba是一款实现SMB协议、跨平台进行文件共享和打印共享服务的程序。 Samba存在格式串和安全绕过问题,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 -Samba 3.0.31 - 3.3.5中的smbd守护程序包含一个未初始化数据值读取问题,可影响访问控制。如果用户尝试修改访问拒绝权限的控制列表时,如果在smb.conf中设置"dos...

9.3CVSS0.1AI score0.12222EPSS
Exploits2
seebug.org
seebug.org
added 2007/05/11 12:0 a.m.245 views

Microsoft IE HTML对象脚本错误远程代码执行漏洞(MS07-027)

Internet Explorer是微软发布的非常流行的操作系统。 IE在处理内存访问的方式上存在漏洞,远程攻击者可能利用此漏洞控制用户机器。 Internet Explorer尝试访问未初始化的内存。因此,内存可能以一种攻击者可以在登录用户的上下文中执行任意代码的方式受到破坏。攻击者者可以通过构建特制的网页来利用这些漏洞。 如果用户查看网页,这些漏洞可能允许远程执行代码。成功利用这些漏洞的攻击者可以完全控制受影响的系统。 Microsoft Internet Explorer 7.0 - Microsoft Windows XP SP2 - Microsoft Windows Vist...

7AI score
Exploits0
seebug.org
seebug.org
added 2003/08/22 12:0 a.m.245 views

Gopherd &lt;= 3.0.5 FTP Gateway Remote Overflow Exploit

No description provided by source. / UMN gopherd2.x.x/3.x.x: remote "ftp gateway" buffer overflow. by: vade79/v9 v9 at fakehalo.deadpig.org fakehalo/realhalo three years since last audit, code is a little more secure. but, still found a few potentially exploitable situations. this exploits the "f...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/18 12:0 a.m.244 views

AspCMS V2.5.2 /aspcms252.asp 数据库泄露漏洞

0x01 框架介绍 ASPCMS是基于ASP+Accesssql2000开发的网站内容管理系统,提供了简介类模块,新闻类模块,产品类模块,图片类模块,下载类模块。 官方主页: http://www.aspcms.com/forum.php 0x02 漏洞细节 ASPCMS最新版2.5.2以及ASPCMS2.3.x都存在这个问题,应该是通杀 在ASPCMS2.3.x中,ASPCMS的数据库在/data/目录下,为了防止数据库被下载,把数据库文件data.mdb重新命名为data.asp,由于设置不当,使用%23编码即可绕过访问,导致信息泄漏:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/11/10 12:0 a.m.244 views

Cisco Security Advisory: Transport Layer Security Renegotiation Vulnerability

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Transport Layer Security Renegotiation Vulnerability Advisory ID: cisco-sa-20091109-tls http://www.cisco.com/warp/public/707/cisco-sa-20091109-tls.shtml Revision 1.0 For Public Release 2009...

5.8CVSS7.9AI score0.87264EPSS
Exploits14
seebug.org
seebug.org
added 2006/12/11 12:0 a.m.244 views

Mambo A6MamboCredits远程文件包含漏洞

Mambo A6MamboCredits是一款基于Mambo的应用模块。 Mambo A6MamboCredits不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是'admin.a6mambocredits.php'脚本对用户提交的'mosConfiglivesite'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 active6 a6MamboCredits 1.0...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2017/04/12 12:0 a.m.243 views

Microsoft Office OLE2Link vulnerability (CVE-2017-0199)

Vulnerability details references: Office OLE2Link zero-day from NCCGroup) CVE-2017-0199: In the Wild Attacks Leveraging the HTA Handler From FireEye) HTAsThe Microsoft OLE2Link object contains a vulnerability in the way that it processes remotely-linked content. The remote content is opened based...

9.3CVSS8.4AI score0.99933EPSS
Exploits29
seebug.org
seebug.org
added 2017/02/28 12:0 a.m.243 views

Remote Code Execution as Root via ESET Endpoint Antivirus 6(CVE-2016-9892)

Introduction ============ Per ESET's online material, "ESET Endpoint Antivirus for OS X delivers award- winning cross-platform protection for multi-platform environments. It protects against malware and spyware and shields end users from fake websites phishing for sensitive information such as...

7.5CVSS9AI score0.13335EPSS
Exploits4
Total number of security vulnerabilities5000