Lucene search
+L
SeebugRecent

56796 matches found

seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

E-Uploader Pro <= 1.0 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. E-Uploader Pro = 1.0 SQL Injection Vulnerability Author: !DoktOR! Date found: 26.08.08 Product: E-Uploader Pro Version: 1.0 Price: $49 URL: www.scriptsfrenzy.com Download script: http://rapidshare.com/files/18285945/E-UploaderPro.PHP.NULL-DGTlicense.zip...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

PsychoStats 2.x Login Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12089/info PsychoStats is reported prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. The problem presents itself when malicious...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

Microsoft Internet Explorer 6.0 TSUserEX.DLL ActiveX Control Memory Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19570/info Microsoft Internet Explorer is prone to a memory-corruption vulnerability. This is related to the handling of the 'tsuserex.dll' COM object ActiveX control. Attackers may exploit this issue via a malicious web...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•65 views

CUPS 1.1.x HPGL File Processor Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11968/info CUPS is reported prone to a remote buffer overflow vulnerability. The issue is reported to exist in the 'hpgl-input.c' source file and is because of a lack of sufficient boundary checks performed on data...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•33 views

Microsoft Windows XP Self-Executing Folder Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10363/info A vulnerability has been reported in Microsoft Windows XP that may cause malicious code to run in the context of the currently logged-in user. The flaw exists in Windows Explorer and may allow executable conten...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•31 views

DFLabs PTK <= 1.0 - Local Command Execution Vulnerability

No description provided by source. ==================================================== Security Research Advisory Vulnerability name: DFLabs PTK Local Command Execution Vulnerability Advisory number: LC-2008-07 Advisory URL: http://www.ikkisoft.com...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

Apache Web Server 2.0.x MS-DOS Device Name Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6662/info A vulnerability has been reported in Apache Web server for Microsoft Windows. The vulnerability exists in the way some HTTP requests are handled by the Apache Web server. Specifically, HTTP GET requests that...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

VisualPic 0.3.1 Cross-Site Scripting Vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

Polycom ViaVideo 2.2/3.0 - Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5962/info Polycom ViaVideo devices are prone to a denial of service condition upon receipt of numerous incomplete HTTP requests. This may restrict availability of the device for legitimate users. The device may need to be...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

family connection 1.8.1 - Multiple Vulnerabilities

No description provided by source. Salvatore drosophila Fresta + Application: Family Connection + Version: = 1.8.2 + Website: http://www.familycms.com + Bugs: A Blind SQL Injection + Exploitation: Remote + Date: 1 Apr 2009 + Discovered by: Salvatore drosophila Fresta + Author: Salvatore drosophil...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

MPlayer 1.0 AVIHeader.C Heap Based Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25648/info MPlayer is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input data. Attackers can exploit this issue to execute arbitrary code with t...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•49 views

Novell Netware XNFS.NLM NFS Rename Remote Code Execution

No description provided by source. Application: Novell Netware XNFS.NLM NFS Rename Remote Code Execution Vulnerability Platforms: Novell Netware 6.5 SP8 Exploitation: Remote code execution CVE Number: Novell TID: 5117430 ZDI: ZDI-12-06 PRL: 2012-02 Author: Francis Provencher Protek Research Lab's...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

Joomla! and Mambo com_profile Component - 'oid' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27851/info The Joomla! and Mambo 'comprofile' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•39 views

Symantec Web Gateway 5.0.2.8 Arbitrary PHP File Upload Vulnerability

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•19 views

TurboTrafficTrader C 1.0 - Multiple Cross-Site Scripting and HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/10359/info It has been reported that TurboTrafficTrader C does not properly sanitize input received from users. It has been conjectured that this may allow a remote user to launch cross-site scripting and HTML injection...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•27 views

jetAudio 8.0.16.2000 Plus VX - (.wav) - Crash PoC

No description provided by source. Exploit Title: jetAudio Version 8.0.16.2000 Plus VX - .wav - Crash POC Date: 03-09-2013 Exploit Author: ariarat Software Link: http://www.jetaudio.com/download/ Version: 8.0.16.2000 Probably old version of software and the LATEST version too Vendor Homepage:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

EZHomePagePro 1.5 users_calendar.asp page Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17236/info EZHomePagePro is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

Real Networks Helix Universal Server 9.0.x Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10157/info It has been reported that Real Networks Helix Universal Server is affected by a remote denial of service vulnerability. This issue is due to a failure of the application to properly handle malformed RTSP...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

Open Educational System 0.1 beta 'CONF_INCLUDE_PATH' Parameter Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38449/info Open Educational System is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•28 views

Altap Salamander 2.5 PE Viewer Buffer Overflow

No description provided by source. $Id: altapsalamanderpdb.rb 11353 2010-12-16 20:11:01Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...

6.8CVSS0.5AI score0.43408EPSS
Exploits5
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

VBulletin 3.0.14 global.php Encoded URL XSS

No description provided by source. source: http://www.securityfocus.com/bid/19358/info vBulletin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

RealNetwork RealPlayer 10.5 MID File Handling Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22050/info RealNetwork RealPlayer is prone to a remote denial-of-service vulnerability because the application fails to handle specially crafted files. Exploiting this issue allows remote attackers to crash the applicatio...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Enthrallweb eClassifieds dirSub.asp sid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

Orbz Game <= 2.10 Remote Buffer Overflow Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h / Read/Write bits to buffer 0.1.1 by Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org max 32 bits numbers supported from 0 to 4294967295. Probabl...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•10 views

bild flirt system 2.0 - index.php - (id) SQL Injection Vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•35 views

CorelDRAW X3 13.0.0.576 - DLL Hijacking Exploit (crlrib.dll)

No description provided by source. / CorelDRAW X3 v13.0.0.576 crlrib.dll DLL Hijacking Exploit Vendor: Corel Corporation Product Web Page: http://www.corel.com Affected Version: X3 v13.0.0.576 Summary: Graphic design software for striking visual communication. Desc: CorelDRAW X3 suffers from a dl...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Simple Message Board 2.0 beta1 Thread.CFM Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14268/info A cross-site scripting vulnerability affects Simple Message Board. This issue is due to a failure of the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitra...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

WinRAR <= 3.60 beta 6 (SFX Path) Local Stack Overflow Exploit

No description provided by source. WinRAR - Stack Overflows in SelF - eXtracting Archives ====================================================== Tested Versions..: WinRAR 3.60 beta 4 Original Author.............: posidron Shellcode Stuffing .........: muts import os, sys winrar = 'C:\WinRAR.exe'...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

EasyRealtorPRO 2008 'site_search.php' Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/31401/info EasyRealtorPRO is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker t...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

Elecard AVC_HD/MPEG Player 5.7 - Buffer Overflow

No description provided by source. !/usr/bin/env python Software: Elecard AVCHD/MPEG Player 5.7 SEH Author: sickness Download : http://www.elecard.com/en/products/end-user-software/playback/avchd-player.html PoC for Elecard MPEG: http://www.exploit-db.com/exploits/16237/ Tested : Windows XP...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

iScripts CyberMatch 1.0 - Blind SQL Injection Vulnerability

No description provided by source. iScripts CyberMatch 1.0 Blind SQL Injection Vulnerability Name iScripts CyberMatch Vendor http://www.iscripts.com Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•28 views

Coppermine Photo Gallery 1.4.9 - Remote SQL Injection Vulnerability

No description provided by source. !/usr/bin/php ?php / Coppermine Photo Gallery 1.4.9 Remote SQL Injection Vulnerability Note: Requires a valid user account. Usage: php script.php host path table prefix user id username password Usage Example: php script.php domain.com /coppermine/ cpg149 1 john...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

pastelcms 0.8.0 (lfi/sql) Multiple Vulnerabilities

No description provided by source. + PastelCMS 0.8.0 LFI/SQL Multiple Remote Vulnerabilities + Discovered By SirGod + www.mortal-team.net + www.h4cky0u.org + Download : http://pastel.pri.ee/?id=58 + Local File Inclusion PoC : http://127.0.0.1/path/?setlng=../../../../../../BOOTSECT.BAK%00 + SQL...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

Vt-Forum Lite 1.3 vf_newtopic.asp IFRAME Element XSS

No description provided by source. source: http://www.securityfocus.com/bid/21428/info Vt-Forum Lite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•7 views

CMS from Scratch <= 1.1.3 (image.php) Directory Traversal Vulnerability

No description provided by source. ------------------------------------------------------------------------ CMS from Scratch = 1.1.3 image.php Local Directory Traversal Vulnerability ------------------------------------------------------------------------ author...: Stack mail.....: Wanted wanted...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

Mozilla Firefox 2.0.0.3 Href Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23747/info Firefox is prone to a remote denial-of-service vulnerability. An attacker may exploit this issue by enticing victims into opening a maliciously crafted HTML document. Successful exploits can allow attackers to...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•9 views

mplayer <= 4.4.1 NULL pointer dereference exploit PoC

No description provided by source. Exploit Title: mplayer = 4.4.1 NULL pointer dereference exploit poc 0 day Date: 17/03/2010 Author: Pietro Oliva Software Link: Version: = 4.4.1 Tested on: ubuntu 9.10 but should work in windows too CVE : Program received signal SIGSEGV, Segmentation fault...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

Clipster Video Persistent XSS Vulnerability

No description provided by source. Exploit Title: Clipster Video Persistent XSS Vulnerability Date: 04/09/2012 Author: DaOne Software Link: http://www.clipsterscript.com/ Google Dork: Powered by ClipsterScript.com How to exploit: 1-go to : http://site.com/login.php?action=Register 2-Put in the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

ClipShare 1.5.3 ADODB-Connection.Inc.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22928/info ClipShare is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlyi...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

Apache Tomcat 4.0.3 Servlet Mapping Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5193/info A vulnerability has been reported for Apache Tomcat 4.0.3 on Microsoft Windows and Linux platforms. Reportedly, it is possible for an attacker to launch a cross site scripting attack. When servlet mapping is...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•68 views

GeekLog <= 1.4.0sr3 (_CONF[path]) Remote File Include Vulnerabilities

No description provided by source. --------------------------------------------------------------------------- GeekLog = 1.4.0 CONFpath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Google d0rk: powered by geeklog Discovered By...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

OSCommerce 2.2 Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7357/info osCommerce has been reported prone to authentication bypass vulnerability. It has been reported that osCommerce uses HTTP header information as a part of its authentication mechanism. Reportedly an attacker may...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

ENet Multiple Denial of Service Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/17087/info ENet is prone to multiple denial-of-service vulnerabilities. A remote attacker can send specifically crafted data to trigger these flaws, leading to a denial-of-service condition. / by Luigi Auriemma / include...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

DirectAdmin 1.292 CMD_USER_STATS Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22996/info DirectAdmin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

BlueFace Falcon Web Server 2.0 Error Message Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5435/info Falcon Webserver does not sufficiently sanitize HTML tags from error message output. In particular, attackers may inject HTML into 301 and 404 error pages. It is possible to create a malicious link to the server...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

PAFileDB 3.1 Error Message Path Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11817/info paFileDB is prone to an installation path disclosure. If invalid requests are made to certain scripts, the installation path is included in the returned error message...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

Baby FTP Server 1.24 - Denial of Service

No description provided by source. !/usr/bin/perl Note from Exploit-DB thanks @wireghoul: This PoC only crashes the GUI for the application, not the server itself. Exploit Title: Baby FTP Server Version 1.24 Denial Of Service Date: 2013/6/25 Exploit Author: Chako Vendor Homepage:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

MovieLibrary 1.4.401 - Local DoS (.dmv)

No description provided by source. Exploit Title: MovieLibrary Local Dos .dmv file Date: April 14, 2010 Software Link: http://wensoftware.com/ Version: v1.4.401 Tested on: Windows XP SP3 Author: anonymous Site: www.setfreesecurity.com At the top: Click - New - Open Open the newly created dmv file...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•10 views

Magic Photo Storage Website user/add_news.php _config[site_path] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

EZ Publish 2.2.7/3.0 - Multiple Path Disclosure Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/7349/info Several path disclosure vulnerabilities have been reported for eZ Publish. An attacker can exploit this vulnerability by making a HTTP request for any of the affected pages. This may result in a condition where...

7.1AI score
Exploits0
Total number of security vulnerabilities56796