Lucene search
+L
SeebugRecent

56796 matches found

seebug
seebug
•added 2014/07/01 12:0 a.m.•28 views

Linux kernel 2.0 Sendmail Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/363/info The 2.0.x kernels have a quirk in the TCP implementation that have to do with the accept call returning after only a syn has been recieved as opposed to the three way handshake having been completed. Sendmail,...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•30 views

Online Rental Property Script <= 4.5 (pid) SQL Injection Vulnerability

No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV91$2008 ----------------------------------------------------------------------------------------- ECHOADV91$2008 Online Rental Property Script = 4.5 pid Blind Sql Injection...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•12 views

AN HTTPD 1.42 Arbitrary Log Content Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13069/info AN HTTPD is affected by a vulnerability that may allow remote attacker to inject arbitrary content in to the log file. This issue arises due to a failure of input validation. Corruption of logs may result in...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

SIPfoundry sipXphone 2.6.0.27 CSeq Buffer Overflow

No description provided by source. $Id: sipxphonecseq.rb 9525 2010-06-15 07:18:08Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•37 views

SGI IRIX <= 6.3 cgi-bin webdist.cgi Vulnerabilty

No description provided by source. source: http://www.securityfocus.com/bid/374/info A vulnerability exists in the webdist.cgi program, as shipped by Silicon Grpahics Inc with the Irix operating system. This vulnerability will allow any remote user to execute arbitrary commands on an affected...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

Newbie CMS 0.0.2 Insecure Cookie Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38421/info Newbie CMS is prone to an authentication-bypass vulnerability because it fails to adequately verify user-supplied input used for cookie-based authentication. Attackers can exploit this vulnerability to gain...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•33 views

joomla component flash fun! 1.0 - Remote File Inclusion Vulnerability

No description provided by source. Joomla Flash Fun! Component RFI Bug in : /administrator/components/comjoomlaflashfun/admin.joomlaflashfun.php?mosConfiglivesite= Variable : $mosConfiglivesite Dork: comjoomlaflashfun Example:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

SCO Open Server 5.0.6 lpusers Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2557/info SCO OpenServer 5.0.6 and possibly earlier versions ships with several suid bin executables used in printer administration and related tasks. This includes lpusers, a component used to set the queue priority of...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

Windows 3.11/95/NT 4.0/NT 3.5.1 "Out Of Band" Data Denial of Service (3)

No description provided by source. source: http://www.securityfocus.com/bid/2010/info Older versions of Microsoft Windows 95, Windows for Workgroups 3.11, Windows NT up to and including 4.0, as well as SCO Open Server 5.0, have a vulnerability relating to the way they handle TCP/IP Out of Band...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•15 views

RedHat Linux 4.2/5.2/6.0,S.u.S.E. Linux 6.0/6.1 Cron Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/602/info The version of Vixie cron that ships with RedHat versions 4.2, 5.2 and 6.0 is vulnerable to a local buffer overflow attack. By utilizing the MAILTO environment variable, a buffer can be overflown in the cronpopen...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•19 views

MS IE 4.0/5.0,Outlook 98 0 window.open Redirect Vulnerability

No description provided by source. Microsoft Internet Explorer 4.0 for Windows 95/Windows NT 3/Windows NT 4,Internet Explorer 5.0 for Windows 95/Windows 98/Windows NT 4,Outlook 98 0 window.open Redirect Vulnerability source: http://www.securityfocus.com/bid/766/info If window.open is called with ...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•30 views

Dell PacketTrap PSA 7.1 - Multiple XSS Vulnerabilities

No description provided by source. Title: ====== Dell PacketTrap PSA 7.1 - Multiple Persistent Vulnerabilities Date: ===== 2013-07-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=790 VL-ID: ===== 790 Common Vulnerability Scoring System:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

Autonomy KeyView Lotus 1-2-3 File Multiple Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/26604/info Autonomy KeyView is prone to multiple buffer-overflow vulnerabilities. Successfully exploiting these issues could allow an attacker to execute arbitrary code in the context of the user running the application...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•9 views

httpdx <= 1.4.6b source disclosure

No description provided by source. httpdx = 1.4.6b Remote Source Disclosure Found By: DrIDE Tested On: Windows XPSP3 Download: httpdx.sourceforge.net/downloads/ - Description - httpdx Web Server = 1.4.6b is a Windows based HTTP server. This is the latest version of the application available. http...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

Vivvo Article Manager <= 3.2 (classified_path) File Include Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class VivvoArticleManagerRemoteFileIncludePOCBase: vulID = '63958' version = '1' vulDate = '2006-09-09' author ...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

Super Simple Blog Script 2.5.4 - Local File Inclusion Vulnerability

No description provided by source. ----------exploit Debut Local File Inclusion Vulnerability ----------Script Info Moi : JIKO Site : No-exploit.Com Email : mm : Moghla9 Ferme Closed ----------Script Info Site:http : http://www.supersimple.org/ Download :...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•25 views

Panda ActiveScan 5.53 Ascan_6.ASP ActiveX Control Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19471/info Panda ActiveScan is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

Joomla! VirtueMart Component 2.0.22a - SQL Injection

No description provided by source. ------------------------------------------------------------ Joomla! VirtueMart component = 2.0.22a - SQL Injection ------------------------------------------------------------ == Description == - Software link: http://www.virtuemart.net/ - Affected versions: Al...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

Artiphp CMS 5.5.0 Database Backup Disclosure Exploit

No description provided by source. ?php / Artiphp CMS 5.5.0 Database Backup Disclosure Exploit Vendor: Artiphp Product web page: http://www.artiphp.com Affected version: 5.5.0 Neo r422 Summary: Artiphp is a content management system CMS open and free to create and manage your website. Desc: Artip...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•10 views

Multiple Vendors - RAR Handling Remote Null Pointer Dereference Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24866/info Multiple applications using RAR are prone to a NULL-pointer dereference vulnerability. A successful attack will result in denial-of-service conditions. Attackers may also be able to exploit this issue to execut...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•10 views

XMB Forum 1.8 buddy.php action Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/8013/info XMB Forum has been reported prone to multiple cross-site scripting and HTML-injection vulnerabilities because the application fails to sanitize user-supplied data. An attacker may exploit any one of these...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

MySQL (<= 4.1.18, 5.0.20) Local/Remote Information Leakage Exploit

No description provided by source. / April 21.st 2006 myanondbleak.c MySql Anonimous Login Memory Leak MySql = 5.0.20 MySql = 4.1.x copyright 2006 Stefano Di Paola stefano.dipaolaatwisec.it GPL 2.0 Disclaimer: In no event shall the author be liable for any damages whatsoever arising out of or in...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

ManageEngine OpStor 7.4 - Multiple Vulnerabilities

No description provided by source. Title: ====== ManageEngine OpStor v7.4 - Multiple Web Vulnerabilities Date: ===== 2012-08-17 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=667 VL-ID: ===== 667 Common Vulnerability Scoring System: ====================================...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•29 views

Stake AntiSniff 1.0.1/Researchers Version 1.0 - DNS Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/1207/info Certain versions of @Stake Inc.'s Antisniffer software contain a remotely exploitable buffer overflow. AntiSniff is a program that was released by L0pht Heavy Industries in July of 1999. It attempts, through a...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•42 views

e107 1.0.1 - CSRF Resulting in Arbitrary Javascript Execution

No description provided by source. Exploit Title: e107 v1.0.1 Administrator CSRF Resulting in Arbitrary Javascript Execution Google Dork: intext:This site is powered by e107 Date: 01/01/13 Exploit Author: Joshua Reynolds Vendor Homepage: http://e107.org Software Link:...

6.8CVSS6.6AI score0.01957EPSS
Exploits6
seebug
seebug
•added 2014/07/01 12:0 a.m.•8 views

Simple OS CMS 0.1c_beta 'login.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27589/info Simple OS CMS is prone to an SQL-injection vulnerability because it fails to adequately sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•24 views

Seagate BlackArmor NAS sg2000-2000.1331 - Multiple Persistent Cross Site Scripting Vulnerabilities

No description provided by source. Exploit Title: Seagate BlackArmor NAS - Multiple Persistent Cross Site Scripting Vulnerabilities Google Dork: N/A Date: 04-01-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.seagate.com/ http://www.seagate.com/ Software Link:...

4.3CVSS9.6AI score0.03217EPSS
Exploits7
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

Joomla Component com_comp SQL Injection Vulnerability

No description provided by source. InformatioN Title : Joomla Component comcomp SQL Injection Author : DevilZ TM By D3v1l Homepage : http://www.DEVILZTM.com Email : [email protected] Contact : [email protected] ExploiT Vulnerable File :...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

Confixx 3.0/3.1 Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17984/info Confixx is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

Easy FTP Server 1.7.0.11 - LIST Command Remote BoF Exploit (Post Auth) - (meta)

No description provided by source. EDB-ID: 14400 Date : July 5, 2010 Discovered by : Karn Ganeshen Version : 1.7.0.11 Tested on : Windows XP SP3 Version 2002 MFR & VAS TEAM : just testing howto convert exploits to metasploit modules. require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank ...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•21 views

XOOPS Module resmanager <= 1.21 - Blind SQL Injection Exploit

No description provided by source. html head titleXOOPS Module resmanager = 1.21 editday.php BLIND SQL Injection Exploit/title script type=text/javascript //'=============================================================================================== //'Script Name: XOOPS Module resmanager =...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

SCO OpenServer 5.0.6 lpadmin Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2553/info SCO OpenServer 5.0.6 and possibly earlier versions ships with several suid 'bin' executables used in printer administration and related tasks. This includes lpadmin, a component used to manage and configure prin...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

Stunnel <= 3.24, 4.00 Daemon Hijacking Proof of Concept Exploit

No description provided by source. / By Steve Grubb : The technique is simple. 1 Fork so that stunnel can't find you when it dies. 2 Send stunnel a SIGUSR2. Unhandled signals generally kill programs. Since you are a child of stunnel, the OS will deliver the signal. 3 Select on the leaked descript...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

IBM Business Process Manager - User Account Reconfiguration

No description provided by source. Exploit Title: IBM BMPS BPM User account reconfiguration/Privilege Escalation/Information Disclosure Date: 31.01.14 Exploit Author: 0in Software link: http://www-03.ibm.com/software/products/en/business-process-manager-family/ Version: 8.0.1.1 newest versions ca...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•9 views

Knusperleicht FAQ 1.0 Script Index.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19272/info FAQ Script is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PH...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•18 views

bzexe (bzip2) race condition

No description provided by source. / bzexecPoC.c -- bzip2 bzexe race condition PoC Author: vladz http://vladz.devzero.fr Tested on: Debian 6.0.3 up to date bzip2 version 1.0.5-6 This PoC exploits a race condition in the bzexe script. This tool is rarely used so I wasn't supposed to write an...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•17 views

Apple QuickTime 7.6.6 Invalid SMIL URI Buffer Overflow

No description provided by source. $Id: applequicktimesmildebug.rb 11513 2011-01-08 00:25:44Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•31 views

AlienVault 4.5.0 Authenticated SQL Injection

No description provided by source. The following request is vulnerable to a SQL injection attack from authenticated users. GET /ossim/report/BusinessAndComplianceISOPCI/ISO27001Bar1.php?datefrom=2014-02-28&dateto=2014-03-30 HTTP/1.1 Host: 172.31.16.150 User-Agent: Mozilla/5.0 X11; Ubuntu; Linux...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•29 views

jetVideo 8.1.1 - Basic (.wav) Local Crash PoC

No description provided by source. !/usr/bin/python + Author: TUNISIAN CYBER + Exploit Title: jetVideo 8.1.1 Basic .wav Local Crash PoC + Date: 22-03-2014 + Category: DoS/PoC + Tested on: WinXp/Windows 7 Pro + Vendor: http://www.jetaudio.com/download/jetvideo.html + Friendly Sites:...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•29 views

vBulletin 4.0.1 'misc.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37854/info vBulletin is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•20 views

Linux Kernel 2.4/2.6 Sigqueue Blocking Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10096/info A vulnerability has been reported in the Linux Kernel that may permit a malicious local user to affect a system-wide denial of service condition. This issue may be triggered via the Kernel signal queue struct...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•7 views

Apple Mac OS X 10.4.8 - DMG UFS UFS_LookUp Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22036/info Apple Mac OS X is prone to a remote denial-of-service vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit can allow a remote...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•11 views

Apple Mac OS X 10.4.x Mach-O Binary Loading Integer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21291/info Apple Mac OS X is prone to a local integer-overflow vulnerability. This issue occurs when the operating system fails to handle specially crafted binaries. A successful exploit would allow a local attacker to...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•19 views

Windows XP/2003/Vista Metafile Escape() SetAbortProc Code Execution

No description provided by source. $Id: ms06001wmfsetabortproc.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•9 views

acFTP 1.4 Invalid Password Weak Authentication Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6235/info A vulnerability has been reported for acFTP. Reportedly, acFTP allows users to authenticate without a valid password. An attacker can exploit this vulnerability and log on to the vulnerable FTP server without ne...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•13 views

InterScan Web Security Virtual Appliance 5.0 - Arbitrary File Download

No description provided by source...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•66 views

Microsoft Windows 2000 RegEdit.EXE Registry Key Value Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7411/info A problem has been reported in Microsoft Windows. Due to improper bounds checking by the regedit.exe program, it may be possible for a local attacker to execute arbitrary code as another user. / 09/04/2003...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•16 views

sahitya graphics cms Multiple Vulnerabilities

No description provided by source. Exploit Title:Sahitya Graphics CMS Multiple Remote Vulnerabilities Date: 12.10.2010 Author: Dr.0rYX and Cr3w-DZ Category: webapps/0day . . \ \ /| | \ /|| / / /\ \ | | | | \ \ \ | \ \ |/ \ \ | | \ / \ | /| | | Y \ // / | \ | | / \ \ / \ || /\ /| || || / /...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•14 views

PhpGedView 2.5/2.6 Imageview.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11890/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remo...

7.1AI score
Exploits0
seebug
seebug
•added 2014/07/01 12:0 a.m.•7 views

Comparison Engine Power 1.0 'product.comparision.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34232/info Comparison Engine Power is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

7.1AI score
Exploits0
Total number of security vulnerabilities56796