Lucene search
+L
SeebugRecent

56796 matches found

seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

Linux Kernel 2.4.22 "do_brk()" local Root Exploit (PoC)

No description provided by source. ; Christophe Devine devine at cr0.net and Julien Tinnes julien at cr0.org ; ; This exploit uses sysbrk directly to expand his break and doesn't rely ; on the ELF loader to do it. ; ; To bypass a check in sysbrk against available memory, we use a high ; virtual...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

GetSolutions GetInternet Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/11150/info getInternet is vulnerable to multiple remote SQL injection vulnerabilities in the 'welcome.asp', 'checklogin.asp', and 'lostpassword.asp' scripts. These issues are due to a failure of the application to properl...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

Free Realty 3.1-0.6 - Multiple Vulnerabilities

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

Compaq Web-Based Management Agent Access Violation Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8015/info Compaq Web-Based Management Agent has been reported prone to a remote denial of service vulnerability when handling malformed GET requests. The resulting error reports an access violation, effectively causing th...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•27 views

Pine <= 4.56 Remote Buffer Overflow Exploit

No description provided by source. / Mon Sep 15 09:35:01 CEST 2003 remote? Pine = 4.56 exploit by sorbo sorbox yahoo com darkirco Ok won't talk much about the bug since as usual idefense advisories are proper advisories and explain everything... exploiting the bug is trivial after reading the adv...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

Faq-O-Matic 2.711 Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/16251/info Faq-O-Matic is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to hav...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•19 views

Softbiz Classifieds Script gallery.php radio Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/32569/info Softbiz Classifieds Script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary scri...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

OpenDocMan 1.2.5 view_file.php XSS

No description provided by source. source: http://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•27 views

Bitrix Site Manager 6/7 Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/33689/info Bitrix Site Manager is prone to multiple input-validation vulnerabilities: - An authentication-bypass vulnerability - A cross-site scripting vulnerability An attacker may leverage these issues to gain...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•10 views

Alt-N MDaemon 2-8 Remote Pre-Authentication IMAP Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18129/info Alt-N MDaemon IMAP Server is susceptible to a remote buffer-overflow vulnerability. This issue is due to the application's failure to properly bounds-check user-supplied input before copying it to an...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•38 views

ownCloud 6.0.0a - Multiple Vulnerabilities

No description provided by source. Exploit Title: ownCloud 6.0.0a File Deletion XSS and CSRF Protection Bypass Vendor Homepage: www.ownCloud.org OwnCloud Version: 6.0.0a Browsers tested: Iceweasel 22.0; Internet Explorer 11; Server: Debian. Default LAMP set-up. Exploit Author: James Sibley absane...

3.7CVSS5.8AI score0.03148EPSS
Exploits6
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

Linux Kernel <= 2.6.3 (setsockopt) Local Denial of Service Exploit

No description provided by source. / setsockopt proof of concept code by Julien TINNES julien a.t cr0.org vulnerability found as always by Paul Starzetz This is only a lame POC which will crash the machine, no root shell here. Maybe later, when everybody will have an updated box. It should work o...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•24 views

Joomla Tags (index.php, tag parameter) SQL Injection

No description provided by source. Exploit Title: Joomla tag Remote Sql Exploit dork: inurl:index.php?option=comtag Date: 18-10-2012 Author: Daniel Barragan D4NB4R Twitter: @D4NB4R Vendor: http://www.joomlatags.org Version: all License: Non-Commercial Download:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•30 views

SZUserMgnt 1.4 Username Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16454/info SZUserMgnt is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•10 views

Skype Technologies Skype 1.5 NSRunAlertPanel Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20218/info Skype is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied input before using it in the format-specification argument of a formatted-printing functio...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

Wordpress Dimension Theme - CSRF Vulnerability

No description provided by source. Title : Wordpress Dimension Themes CSRF File Upload Vulnerability Author : DevilScreaM Date : 11/17/2013 - 17 November 2013 Category : Web Applications Type : PHP Vendor : http://themeforest.net Download :...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

Netcut 2.0 - Denial of Service Vulnerability

No description provided by source. !/usr/bin/env python Exploit Title: Netcut Denial of Service Vulnerability Author: MaYaSeVeN Blog: http://mayaseven.blogspot.com PoC: Video http://www.youtube.com/user/mayaseven Picture...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

MySmartBB 1.7 Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38385/info MySmartBB is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

Home FTP Server 1.11.1.149 - Post-Auth Directory Traversal

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

PunBBAnnuaire <= 0.4 - Blind SQL Injection Vulnerability

No description provided by source. PunBBAnnuaire =0.4 Blind SQL Injection Vulnerability ======================================================== .:. Author : Metropolis .:. Home : http://xrayoptics.by.ru/ .:. Script : PunBBAnnuaire .:. Version : 0.4 .:. Download Script:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•19 views

symphony cms 2.3 - Multiple Vulnerabilities

No description provided by source. Symphony cms 2.3 multiple vulnerabilities -------------------------------------------------------------------------------------------- 20121017 - Justanotherhacker.com : Symphony cms - Multiple vulnerabilities JAHx122 -...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

PostNuke 0.76 RC2 Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18319/info PostNuke is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection vulnerabilities, because the application fails to properly sanitize user-supplied input. A...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

IBM Rational ClearQuest 7.0 - Multiple Parameters Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/28296/info IBM Rational ClearQuest is prone to multiple cross-site scripting vulnerabilities because it fails to adequately sanitize user-supplied input. An attacker could exploit these vulnerabilities to execute arbitrar...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

vBulletin 3.0.10 Portal.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18197/info vBulletin is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•9 views

Okyanusmedya Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24285/info Okyanusmedya is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•7 views

Asterisk 1.4 SIP T.38 SDP - Parsing Remote Stack Buffer Overflow Vulnerabilities (2)

No description provided by source. source: http://www.securityfocus.com/bid/23648/info Asterisk is prone to multiple remote stack-based buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data before copying it to insufficiently sized buffers...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

Captaris Infinite WebMail 3.61.5 HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6411/info An HTML injection vulnerability has been discovered in Captaris Infinite WebMail. Due to insufficient sanitization of HTML content, it is possible for an attacker to embed malicious script code into HTML email...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•25 views

Monkey HTTPD 1.1.1 - Crash PoC

No description provided by source. Title: ====== Monkey HTTPD 1.1.1 - Denial of Service Vulnerability Date: ===== 2013-05-28 References: =========== http://bugs.monkey-project.com/ticket/181 Introduction: ============= Monkey is a lightweight and powerful web server for GNU/Linux. It has been...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•9 views

ultrascripts ultraboard 1.6 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1164/info UltraBoard 1.6 and possibly all 1.x versions is vulnerable to a directory traversal attack that will allow any remote browser to download any file that the webserver has read access to. On Windows instalations,...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Absolute News Feed 1.0 - Remote Insecure Cookie Handling Vulnerability

No description provided by source. Discovered by : Hakxer Script : Absolute News Feed http://www.xigla.com/absolutenf/demo.htm Greetz : Allah , All My friend ,www.educ-up.com ------------------------------- Poc : javascript:document.cookie=xlaAFSuser=p=admin; Exploit Go To admin login :...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

SoftBiz Image Gallery 0 insert_rating.php img_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17339/info Softbiz Image Gallery is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

SimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Vulnerability

No description provided by source. SimpleBlog 2.0 = comments.asp SQL Injection Exploit - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Credit by | Chironex Fleckeri Mail | [email protected] Googledork | Powered By SimpleBlog 2.0 - - - - - - - - - - - - - - - - - - -...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•24 views

Traceroute-nanog 6 Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6166/info A vulnerability has been discovered in Traceroute-nanog. It has been reported that Traceroute-nanog contains a buffer overflow condition. The overflow occurs in the 'getorigin' function in the 'traceroute.c' fil...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•23 views

Injader CMS Multiple Vulnerabilities

No description provided by source. Vulnerability ID: HTB22745 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininjadercms1.html Product: Injader CMS Vendor: http://www.injader.com/ http://www.injader.com/ Vulnerable Version: 2.4.4 Vendor Notification: 07 December 2010 Vulnerability...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•23 views

Sami HTTP Server 2.0.1 GET Request Denial of Service Exploit

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

Acrobat Reader 9.4 - Memory Corruption Vulnerability

No description provided by source. http://www.exploit-db.com/sploits/xplpdf.bin http://extraexploit.blogspot.com/2010/11/full-disclosure-xplpdf-adober-reader-94.html...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Adobe U3D CLODProgressiveMeshDeclaration Array Overrun

No description provided by source. $Id: adobeu3dmeshcont.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms o...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

vqServer 1.9.x CGI Demo Program Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4573/info vqServer is a HTTP server implemented in Java. vqServer is available on any architecture supporting Java, including Linux and Microsoft Windows. Reportedly, numerous default CGI scripts included with vqServer...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

University of Washington - imap LSUB Buffer Overflow

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

VMware Workstation <= 7.1.1 VMkbd.sys Denial of Service Exploit

No description provided by source. !/usr/bin/python Title: VMware Workstation = 7.1.1 VMkbd.sys Denial of Service Exploit Author: Lufeng Li of Neusoft Corporation Vendor: www.vmware.com Platform: Windows Vista Tested: VMware Workstation v7.1.1 build-282343 Vulnerable: VMware Workstation = 7.1.1...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

Linux x86 execve("/usr/bin/wget", "aaaa"); - 42 bytes

No description provided by source. / Title: Linux x86 execve/usr/bin/wget, aaaa; - 42 bytes Author: Jonathan Salwan submit AT shell-storm.org Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Database of Shellcodes http://www.shell-storm.org/shellcode/ 08048054 .text:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

pilot cart 7.3 - Multiple Vulnerabilities

No description provided by source. Title: ASPilot Pilot Cart 7.3 multiple vulnerabilities Date: 07.11.2010 Author: Ariko-Security Software Link: http://www.pilotcart.com Version: 7.3 CVE Reference: CVE-2008-2688 only 1 SQL injection EDB-ID: 5765 only 1 SQL injection Ariko-Security: Security Audit...

7.5CVSS6.5AI score0.02007EPSS
Exploits6
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

IBM Access Support ActiveX Control Buffer Overflow

No description provided by source. $Id: ibmegathgetxmlvalue.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...

6.7AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

HP-UX 11 RWrite Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7489/info HP-UX rwrite utility has been reported prone to a buffer overflow vulnerability. Although unconfirmed code execution with elevated privileges may be possible. The condition presents itself when excessive data is...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

OllyDBG 1.10 and ImpREC 1.7f - (export name) BOF PoC

No description provided by source. ;-------------------------------------------------------------------------; ; OllyDBG v1.10 and ImpREC v1.7f export name buffer overflow vulnerability ; PoC probably older versions affected too, not tested though. ; ; Included shellcode shows a messagebox WinXP...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

ASPilot Pilot Cart 7.3 newsroom.asp SQL Injection Vulnerability

No description provided by source. Title: ASPilot Pilot Cart 7.3 SQL Injection Date: 12.11.2010 Author: Daikin Software Link: http://www.pilotcart.com Version: 7.3 maybe also lower Vendor's Description of Software and demo: http://www.pilotcart.com Dork: Powered by Pilot Cart V.7.3 Application...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Hotfoon Dialer 4.0 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6156/info A buffer overflow vulnerability has been reported for the Hotfoon dialer. The vulnerability exists in a text input field for dialing telephone numbers. Reportedly, Hotfoon4.exe does not adequately perform bounda...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•23 views

PHP 5.2.1 STR_IReplace Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22505/info PHP is prone to a denial-of-service vulnerability because it fails to properly sanitize user-supplied input. An attacker who can run PHP code on a vulnerable computer may exploit this vulnerability to crash PHP...

6.7AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•25 views

PHP 5.2.11/5.3.0 - Multiple Vulnerabilities

No description provided by source. ?php / PHP 5.2.11/5.3.0 symlink openbasedir bypass by Maksymilian Arciemowicz http://securityreason.com/ cxib a.T securityreason d0t com CHUJWAMWMUZG / $fakedir=cx; $fakedep=16; $num=0; // offset of symlink.$num if!empty$GET'file' $file=$GET'file'; else...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

WMNews 0 wmcomments.php ArtID Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17076/info WMNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

7.1AI score
Exploits0
Total number of security vulnerabilities56796