Lucene search
+L
SeebugRecent

56796 matches found

seebug
seebug
added 2014/07/01 12:0 a.m.17 views

Magic Forum Personal view_thread.cfm Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15774/info CFMagic Products are prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. These vulnerabilities allow an attacker to inject malicious SQL co...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.12 views

Netscape 7.0 JavaScript Regular Expression Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6959/info It has been reported that Netscape based browsers may be vulnerable to a denial of service condition when executing certain JavaScript methods. If a malicious page containing a specially crafted JavaScript regul...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.47 views

Groovy Media Player 3.2.0 (.mp3) - Buffer Overflow Vulnerability

No description provided by source. Title: ==== Groovy Media Player 3.2.0 Buffer Overflow Vulnerability Credit: ====== Name: Akshaysinh Vaghela Company/affiliation: Cyberoam Technologies Private Limited Website: www.cyberoam.com CVE: ===== CVE-2013-2760 Reserved Date: ==== 21-03-2013 CL-ID: ====...

6.8CVSS0.4AI score0.03555EPSS
Exploits5
seebug
seebug
added 2014/07/01 12:0 a.m.16 views

axoverzicht.CGI Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17584/info The axoverzicht.cgi script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed ...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.16 views

Shadow Stream Recorder 3.0.1.7 - Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.12 views

Intel Video Codecs 5.0 - Remote Denial of Service Vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.15 views

[Raspberry Pi] Linux/ARM - reverse_shell(tcp,10.1.1.2,0x1337)

No description provided by source. / Title: Linux/ARM - reverseshelltcp,10.1.1.2,0x1337 execve/bin/sh, 0, 0 vars - 72 bytes Date: 2012-09-08 Tested on: ARM1176JZF-S v6l - Raspberry Pi Author: midnitesnake 00008054 start: 8054: e28f1001 add r1, pc, 1 8058: e12fff11 bx r1 805c: 2002 movs r0, 2 805e...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.13 views

PHPEasyData 1.5.4 - last_records.php annuaire Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.10 views

Sights 'N Sounds Streaming Media Server 2.0.3 SWS.EXE Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15809/info Sights 'n Sounds Streaming Media Server is prone to a buffer overflow vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. Successful exploitation will like...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.16 views

Telestream Flip4Mac - 'WMV' File Remote Memory Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22286/info Flip4Mac is prone to a remote memory-corruption vulnerability. Flip4Mac is prone to a remote memory-corruption vulnerability because the application fails to properly handle malformed WMV files. An attacker can...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.17 views

Verylost LostBook 1.1 Message Entry HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10825/info Reportedly Verylost lostBook is affected by an HTML injection vulnerability in its message entry functionality. This issue is due to a failure of the application to properly validate and sanitize user-supplied...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.481 views

WeBid 1.0.6 - SQL Injection Vulnerability

No description provided by source. Exploit Title: WeBid 1.0.6 SQL Injection Vulnerability Google Dork: Powered by WeBid Date: 1/9/13 Exploit Author: Life Wasted Vendor Homepage: http://www.webidsupport.com/ Version: Tested on 1.0.6, but could affect other version Tested On: Linux, Windows...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.17 views

PHP-Coolfile 1.4 Unauthorized Administrative Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9018/info PHP-Coolfile allows unauthorized administrative access due to an error in the way access is evaluated in the action.php file. This could allow a remote user to obtain the administrative username and password for...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.12 views

eCMS 0.4.2 - Multiple Security Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/29304/info eCMS is prone to multiple security vulnerabilities, including a security-bypass issue and an SQL-injection issue. Exploiting these issues may allow an attacker to bypass certain security restrictions and gain...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.9 views

ecms 0.4.2 (sql/pb) Multiple Vulnerabilities

No description provided by source. ...::::eCMS-v0.4.2 SQL/PB Multiple Remote Vulnerabilities ::::... Virangar Security Team www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to ...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.13 views

phpMyAdmin <= 2.11.1 Server_Status.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26301/info phpMyAdmin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.21 views

Wikepage Opus 13 2007.2 - 'index.php' Multiple Directory Traversal Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/28664/info Wikepage Opus is prone to multiple directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues using directory-traversal...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.16 views

methane IRCd 0.1.1 - Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8038/info Behamut IRCd has been reported prone to remotely exploitable format string vulnerability. The issue presents itself when Behamut is compiled with DEBUGMODE defined. Reportedly a remote attacker may send maliciou...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.15 views

Exploit: NCMedia Sound Editor Pro 7.5.1 - SEH & DEP

No description provided by source. !/usr/bin/python --------------------------------------------------------------------------- Exploit: NCMedia Sound Editor Pro v7.5.1 SEH&DEP Author: b33f - http://www.fuzzysecurity.com/ OS: Windows 7 Pro SP1 probably universal across 32-bit POC - Julien Ahrens ...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.25 views

DCP-Portal 3.7/4.x/5.x news.php cid Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/11338/info DCP-Portal is reported prone to multiple cross-site scripting vulnerabilities. It is reported that DCP-Portal does not sufficiently filter URI parameters supplied to several scripts. Because of this deficiency,...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.14 views

Microsoft Clip Art Gallery 5.0 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1034/info A vulnerability exists within the Microsoft Clip Art Gallery, where a remote user can crash the Clip Art application or possibly execute arbitrary code. Clip art can be downloaded from any website and incorporat...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.10 views

Microsoft Internet Explorer 6.0 HREF Save As Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10552/info A vulnerability is reported to exist in Internet Explorer that may allow an attacker to cause the application to crash. The issue presents itself when a user attempts to invoke the Save As option on a malicious...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.16 views

C-Cart 1.0 Path Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8368/info C-Cart is prone to a path disclosure vulnerability. Passing invalid data as a URI parameter to several C-Cart scripts will cause an error message to be displayed, which contains installation path information...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.70 views

Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation

No description provided by source. / american-sign-language.c Linux Kernel 2.6.37-rc2 ACPI custommethod Privilege Escalation Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4347 This custommethod file allows to inject...

6.9CVSS0.2AI score0.02203EPSS
Exploits6
seebug
seebug
added 2014/07/01 12:0 a.m.18 views

Pligg 1.1.4 - SQL Injection Vulnerability

No description provided by source. Exploit Title: Pligg = 1.1.4 SQL injection Date: 03/23/2011 Author: Null-0x00 Software Link: http://pligg.com/ Version: = 1.1.4 Websites: zenk-security.com & hackerzvoice.net Description An SQL Injection has been found on /rsssearch.php in pligg CMS 1.1.4. Prior...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.224 views

Jax PHP Scripts 1.0/1.34/2.14/3.31 jax_guestbook.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An attacker may leverage any of the...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.16 views

MailEnable 1.1/1.7 IMAP Rename Request Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15556/info MailEnable is prone to a remote denial of service vulnerability. The vulnerability presents itself when a user issues a malicious rename request following authentication. Remote attackers can exploit this issue...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.18 views

Social Web CMS 2 'index.php' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38329/info Social Web CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.20 views

Microsoft Windows 95/98/NT 4.0 Help File Trojan Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/868/info The help files for the Windows Help system .cnt, .hlp can be edited so that they run an arbitrary executable when selected by a user. The executable will run at the privelege level of the user. The .cnt files are...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.19 views

Jana Server <= 2.4.4 (http/pna) Denial of Service Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.23 views

Simple Machines Forum (SMF) <= 1.1.8 - (avatar) Remote PHP File Execute PoC

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.30 views

WeBid <= 0.7.3 RC9 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. ----------------------------------------------------------------------------------------- ECHOADV104$2009 WeBid = 0.7.3 RC9 Multiple Remote File Inclution Vulnerabilities -----------------------------------------------------------------------------------------...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.61 views

odlican.net cms 1.5 - Remote File Upload Vulnerability

漏洞分析 upload.php php if isset$POST'pokreni' $targetpath = "files/"; $targetpath = $targetpath . basename $FILES'uploadedfile''name'; ifmoveuploadedfile$FILES'uploadedfile''tmpname', $targetpath echo "Datoteka ". basename $FILES'uploadedfile''name'. " je snimljena na server"; else echo "Došlo je...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.37 views

Tridia DoubleVision 3.0 7.00 Local Root Compromise

No description provided by source. source: http://www.securityfocus.com/bid/1697/info A utility integral to Tridia DoubleVision for SCO UnixWare 7.x has been found to be vulnerable to a buffer overflow attack. dvtermtype, which is setuid root, is run by a user at login time to tell DoubleVision...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.22 views

SmartCode ServerX VNC Server ActiveX 1.1.5.0 (scvncsrvx.dll) DoS Exploit

No description provided by source. Title: SmartCode ServerX VNC Server ActiveX 1.1.5.0 scvncsrvx.dll DoS Exploit Vendor: SmartCode Solutions Product Web Page: htt://www.s-code.com Version Tested: 1.1.5.0 Summary: SmartCode ServerX VNC Server control is a VNC server implemented as an ActiveX...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.37 views

gpsdrive <= 2.09 (friendsd2) Remote Format String Exploit (ppc)

No description provided by source. !/usr/bin/perl -w Heh - Code by KF kflistsatdigitalmunitiondotcom - Shellcode by Charles Stevenson http://www.digitalmunition.com FrSIRT 24/24 & 7/7 - Centre de Recherche on Donkey Testicles. Free 14 day Testicle licking trial available! IIIIIIIIII I::::::::I...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.24 views

Joomla MojoBlog Component 0.15 - Multiple Remote File Include Vulnerabilities

No description provided by source. Joomla Component MojoBlog Multiple Remote File Include vulnerability Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : November 20, 2009 Software Information + Vendor : http://www.joomlify.com/ + Download :...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.15 views

Soft Direct 1.05 - Multiple Vulnerabilities

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.22 views

Microsoft Windows NT 4.0/4.0 SP1/4.0 SP2/4.0 SP3/4.0 SP4/4.0 SP5 RAS Dial-up Networking "Save Password" Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/232/info Windows NT allows users to save their RAS and/or RRAS credentials by using the 'Save Password' checkbox when making a dial-up connection. Credentials saved in this manner are stored in the...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.27 views

iOS iDocManager 1.0.0 - Directory Traversal

No description provided by source. Exploit Title: iDocManager v1.0.0 for iPhone / iPod touch, Directory Traversal Date: 02/24/2011 Author: R3d@l3rt, Sp@2K, Sunlight, H@ckk3y Software Link : http://itunes.apple.com/kr/app/idocmanager/id376421606?mt=8 Version: 1.0.0 Tested on: iPhone, iPod 3GS with...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.315 views

com_extcalendar Mambo Component <= 2.0 Include Vulnerability

No description provided by source. -------------------------------------------------------------------------------- Title : ExtCalendar Mambo Module = v2 Remote File Include Vulnerabilities Discovered By OLiBekaS ----------------------------------------------------------------------------- dork :...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.30 views

TP-Link TL-WA701N / TL-WA701ND - Multiple Vulnerabilities

No description provided by source. Device Name: TL-WA701N / TL-WA701ND Vendor: TP-Link ============ Vulnerable Firmware Releases: ============ Firmware Version: 3.12.6 Build 110210 Rel.37112n Firmware Version: 3.12.16 Build 120228 Rel.37317n - Published Date 2/28/2012 Hardware Version: WA701N v1...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.12 views

Active Calendar 1.2 ShowCode.PHP Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22704/info Active Calendar is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.24 views

CKEditor < 4.1 - Persistent XSS WYSIWYG module Drupal 6.x & 7.x

No description provided by source. Exploit Title: Persistent XSS in wysiwyg CKEditor 4.1 Drupal 6.x & 7.x Date: 15/05/2013 Exploit Author: r0ng Vendor Homepage: http://www.websitesecurityscan.net, http://www.hackers2devnull.blogspot.co.uk Software Links: http://ckeditor.com/release/CKEditor-4.0.3...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.19 views

Joomla Component com_jdrugstopics SQL Injection Vulnerability

No description provided by source. Title: Joomla Component comjdrugstopics SQL Injection Vulnerability Author: SadHaCkEr Data : 2010-04-12 InformatioN AUTHOR: SadHaCkEr Email: [email protected] ANY ONE IF U lucky U will Find Me Website: http://www.sadx.297m.com/ Forum : http://v4-team.net/cc...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.17 views

ListProc 8.2.9 Catmail ULISTPROC_UMASK Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7533/info ListProc catmail has been reported prone to a buffer overflow vulnerability when handling a ULISTPROCUMASK environment variable of excessive length. The issue is likely due to a lack of sufficient bounds checkin...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.10 views

UltraISO <= 9.3.3.2685 CCD/IMG Universal Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl UltraISO = 9.3.3.2685 CCD/IMG Universal Buffer Overflow Exploit ---------------------------------------------------------------- Discovered and Exploited by SkD [email protected] A nice exploit for this software that was just recently patched aft...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.26 views

Nuked-Klan <= 1.7.6 - Multiple Vulnerabilities Exploit

No description provided by source. ?php / Name: Nuked-Klan = 1.7.6 Multiple Vulnerabilities Exploit Credits: Charles real F. charlesfolathotmail.fr URL: http://realn.free.fr/releases/46556 Date: 04-01-08 - Remote Code Execution - Remote File Upload - Admin Hash Extraction Remote Code Exec...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.13 views

Destiny Media Player 1.61 0 (.m3u File) Local Buffer Overflow PoC

No description provided by source. !/usr/bin/perl -w Program : Destiny Media Player Version : 1.61.0 website : http://www.pirateradio.com/downloads/ Download : http://www.pirateradio.com/downloads/destinymp3.exe Type : .m3u File local Stack Overflow PoC EAX 61616161 ECX 00000001 EDX 014377A0 EBX...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.14 views

Aviosoft Digital TV Player Professional 1.x (Direct Retn)

No description provided by source. Exploit Title: Aviosoft Digital TV Player Professional 1.x Direct Retn Date: 11-25-2012 Exploit Author: Nezim @nezimlufni Vendor Homepage: http://www.aviosoft.com/ Version: Aviosoft Digital TV Player Professional 1.x Tested on: Windows XP SP3 Reference :...

7.1AI score
Exploits0
Total number of security vulnerabilities56796