Lucene search
+L
SeebugRecent

56796 matches found

seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•13 views

ProjectApp 3.3 cat.asp keywords Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/16011/info ProjectApp is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•31 views

Xomol CMS <= 1.2 Login Bypass / LFI Vulnerabilities

No description provided by source. '/ -.- -------------oOO------OOo------------ | Xomol CMS v1 Login Bypass & LFI | | coded by DNX | ---------------------------------------- ! Discovered.: DNX ! Vendor.....: http://www.xomol.net ! Detected...: 12.05.2008 ! Reported...: 13.05.2008 didn't work: hos...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•27 views

TugZip 3.5 Zip File Buffer Overflow

No description provided by source. !/usr/bin/perl Software : TugZip 3.5 .zip Author : Lincoln Assisted by : corelanc0d3r OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH Greetz to : Corelan Security Team http://www.corelan.be:8800/index.php/security/corelan-team-members/ Script...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•20 views

Caedo HTTPd Server 0.5.1 ALPHA - Remote File Download

No description provided by source. !/usr/bin/perl use LWP::Simple; Caedo HTTPd Server v 0.5.1 ALPHA Remote File Download Exploit Author : Zer0 Thunder if @ARGV 3 print\r\n; printCaedo HTTPd Server Remote File Download Exploit\r\n; printVuln Found and Exploited by Zer0 Thunder\r\n; print;...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•22 views

Microsoft SQL Server sp_replwritetovarbin Memory Corruption via SQL Injection

No description provided by source. $Id: ms09004spreplwritetovarbinsqli.rb 11730 2011-02-08 23:31:44Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensi...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•14 views

Sun Solaris 2.5.1/2.6/7.0/8/9 Wall Spoofed Message Origin Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6509/info Solaris is the freely available UNIX Operating System variant distributed by Sun Microsystems. The wall client packaged with Solaris makes assumptions about a user's environment when the client is executed. The...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•15 views

k_shoutbox <= 4.4 - Remote File Inclusion Vulnerability

No description provided by source. Kurdish Security ShoutBox Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : ShoutBox Site : http://www.knusperleicht.at Code : // // INCLUDE PATH define'SBINCLUDEPATH',...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•12 views

AutoIndex PHP Script 2.2.2/2.2.3 Index.PHP Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26410/info AutoIndex PHP Script is prone to a remote denial-of-service vulnerability because the application fails to properly handle unexpected input. Successfully exploiting this issue allows remote attackers to consume...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•16 views

PHP Content Architect 0.9 pre 1.2 MFA_Theme.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23843/info PHP Content Architect is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•23 views

Alt-N MDaemon 2.8.5 0 WebConfig Overflow DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/820/info The Mdaemon mail server for Windows includes a small web server for web-based remote administration. This webserver is vulnerable due to an unchecked buffer that handles incoming GET requests. An abnormally large...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•18 views

Webbler CMS 3.1.3 Mail A Friend Open Email Relay Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25045/info The 'webbler' is prone to an open-email-relay vulnerability. An attacker may leverage the issue to use webservers that are hosting the vulnerable software to send arbitrary unsolicited bulk email. Attackers may...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•24 views

TugZip 3.5 Zip File Parsing Buffer Overflow Vulnerability

No description provided by source. $Id: tugzip.rb 13868 2011-10-11 03:30:14Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•35 views

IPSwitch IMail 6.x/7.0/7.1 Web Messaging HTTP Get Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5323/info IMail is a commercial email server software package distributed and maintained by Ipswitch, Incorporated. IMail is available for Microsoft Operating Systems. The web messaging server is vulnerable to a buffer...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•16 views

Gallarific - Multiple Script Direct Request Authentication Bypass

No description provided by source. source: http://www.securityfocus.com/bid/28163/info Gallarific is prone to a cross-site scripting vulnerability and multiple authentication-bypass vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•35 views

Nokia N97 m3u Playlist Crash PoC

No description provided by source. !/usr/bin/perl Title : Nokia N97 PlayList M3U Crash PoC Author : KedAns-Dz E-mail : [email protected] Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : hardware Impact : Crashs & Reboot Some Times Rebooted Tested on...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•39 views

Thomson Wireless VoIP Cable Modem Auth Bypass

No description provided by source. Exploit Title: Thomson Wireless VoIP Cable Modem Auth Bypass Date: February 22, 2011 Authors: Glafkos Charalambous, George Nicolaou Product: TWG850-4 Wireless VoIP Cable Modem Software Version: ST9A.01.06 Severity: High Other Vulnerabilities: Unauthenticated...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•25 views

Secure Computing e.iD Authenticator for Palm 2.0 PIN Brute-Force Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2105/info Summary: An attacker that obtains access to the sceiddb.pdb file, part of Secure Computing's e.iD Authenticator for Palm, can determine the user's PIN. Problem Description: Secure Computing's SafeWord is a syste...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•21 views

JBS 2.0 / JBSX - Administration panel Bypass and File Upload Vulnerability

No description provided by source. Administration panel bypass and Malicious File Upload Vulnerability JBS v2.0 JBSX and other Jiro's Products Google Dork: inurl:/files/redirect.asp Go to url files/login.asp admin 'or' '=' password 'or' '=' H4ckers may upload malicious files by using upload panel...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•55 views

Adobe Flash Player Object Type Confusion

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

9.3CVSS0.2AI score0.85698EPSS
Exploits10
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•46 views

VWar <= 1.5.0 R15 - (mvcw.php) Remote File Inclusion Vulnerability

No description provided by source. '/ -.- --------------------oOO------OOo-------------------- | VWar = v1.5.0 R15 mvcw.php Remote File Inclusion | | coded by DNX | ------------------------------------------------------- ! Discovered: DNX ! Vendor: http://www.vwar.de ! Detected: 26.02.2007 !...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•18 views

FlashBB <= 1.1.8 (phpbb_root_path) Remote File Include Exploit

No description provided by source. !/usr/bin/perl TUFaT FlashBB = 1.1.5 phpbbrootpath Remote File Include Exploit Bugs found & code By h4ntu aka TeloGanyong base on http://www.securityfocus.com/bid/18456/ http://h4ntu.com c 2006 usage: perl flashBB.pl target cmd shell location cmd shell variable...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•50 views

open auto classifieds <= 1.5.9 - Multiple Vulnerabilities

No description provided by source. MorningStar Security - Advisory http://www.morningstarsecurity.com/ Multiple security issues in Open Auto Classifieds 1. Advisory Information ---------------------------------------------------------------------------------------------- Title: Multiple security...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•20 views

PSO Proxy 0.91 - Stack Buffer Overflow

No description provided by source. $Id: psoproxy91overflow.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•16 views

OpenFAQ 0.4 Validate.PHP HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17860/info OpenFAQ is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script cod...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•17 views

Winace UnAce 1.x ACE Archive Remote Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12628/info A remotely exploitable client-side directory-traversal vulnerability affects Winace unace. The application fails to properly sanitize file and directory names contained within malicious ACE format archives. An...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•14 views

Internet Security Systems Protocol Analysis Module ICQ Parsing Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9913/info It has been reported that the Internet Security Systems ISS Protocol Analysis Module is prone to a remote buffer overflow vulnerability when parsing the ICQ protocol. This issue exists due to insufficient bounds...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•17 views

WinFTP Server 1.6 - Denial of Service Exploit

No description provided by source. !/usr/local/bin/perl -w WinFTP server ver 1.6 D.o.S Exploit Discovered,exploited by KaGra Tested on WinXP SP1 English version Sending 40 times a username and a buffer of 1500 bytes as pass,will crash the server,as soon as is not minimized in Target computer.If h...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•23 views

reos 2.0.5 - Multiple Vulnerabilities

No description provided by source. ===================================== Vulnerability ID: HTB22807 Reference: http://www.htbridge.ch/advisory/sqlinjectioninreos1.html Product: ReOS Vendor: IT ELAZOS S.L. http://reos.elazos.com/ Vulnerable Version: 2.0.5 Vendor Notification: 20 January 2011...

6.7AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•16 views

Windows RSH daemon <= 1.8 - Remote Buffer Overflow Exploit

No description provided by source. Windows RSH daemon = 1.8 Remote Buffer Overflow Exploit Exploit-DB mirror: http://www.exploit-db.com/sploits/2008-prdelka-vs-MS-rshd.tar.gz milw0rm.com 2008-01-21...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•9 views

Yahoo Messenger 5.5 - Remote Exploit (DSR-ducky.c)

No description provided by source. / --- Remote yahoo Messenger V5.5 exploiter on Windows XP --- Dtors Security Research DSR Code by: Rave The buffer looks like this |-----| Fillup x offsetJMP 0x3EIPNOPSSHELLCODE ^^ / include windows.h include stdio.h include stdlib.h include string.h include...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•29 views

Wordpress Plugin Is-human <= 1.4.2- Remote Command Execution Vulnerability

No description provided by source. Exploit Title: is-human 1.4.2 and prior Worpdress plugin. Date: 16.05.2011 Author: neworder www.neworder-ind.net Software Link: http://wordpress.org/extend/plugins/is-human/ Version: 1.4.2 Tested on: Linux Platform The vulnerability exists in /is-human/engine.ph...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•17 views

PHPX 3.x admin/news.php CSRF Arbitrary Command Execution

No description provided by source. source: http://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative command...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•23 views

Fujitsu Chocoa 1.0 beta7R "Topic" Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/573/info The Chocoa IRC client has an unchecked buffer in the code that processes channel topics. If the server returns a topic that overwrites the client's buffer and contains exploit code arbitrary commands can be run o...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•17 views

Radasm 2.2.1.6 - (.rap ) Local Buffer Overflow PoC

No description provided by source. /Radasm .rap file local buffer overflow POC I'll be back in a few hours with the exploit. The vuln is in the filename field. snip Files...1=AVP OVERFLOW... snip / includestdio.h void genrandomchar,const int; void printchar; unsigned int getFsizeFILE,char; void...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•15 views

ESCPUtil 1.15.2 2 Local Printer Name Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6658/info It has been reported that a buffer overflow in escputil exists. When supplied with excessively long arguments, it is possible to overwrite stack memory. escputil is reportedly installed setgid 'sys' on Mandrake...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•19 views

Comdev ECommerce 3.0 Config.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14478/info Comdev eCommerce is prone to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•37 views

Zeroboard 4.1 PHP Include File Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5028/info Zeroboard is a PHP web board package available for the Linux and Unix platforms. Under some circumstances, it may be possible to include arbitrary PHP files. The head.php file does not sufficiently check or...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•11 views

Comdev eCommerce 3.0 WCE.Download.PHP Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14479/info Comdev eCommerce is prone to a directory traversal vulnerability. A remote unauthorized user can disclose the contents of arbitrary local files through the use of directory traversal strings '../' relative to t...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•33 views

Pars4U Videosharing 1.0 - XSS / Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print \n; print VIVA ISLAME VIVA ISLAME \n; print VIVA ISLAME VIVA ISLAME \n; print \n; print Pars4u Videosharing V1 Blind SQL Injection Exploit \n; print \n; print categoriesportal.php catid \n; pri...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•13 views

PHPCommunityCalendar 4.0 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/14763/info phpCommunityCalendar is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before being used in SQL queries. Successful exploitation...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•28 views

ZeroBoard 4.1 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/12596/info ZeroBoard is reported prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user. This may...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•27 views

phpldapadmin 0.9.8 copy_form.php dn Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17643/info PHPLDAPAdmin is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to execute...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•31 views

promise webpam 2.2.0.13 - Multiple Vulnerabilities

No description provided by source. Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use, designed to simplif...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•24 views

My Little Forum <= 1.5 (searchstring) SQL Injection Exploit

No description provided by source. ?php mlfexpl.php My Little Forum 1.5 possibly prior versions SQL Injection / MD5 password hash disclosure poc exploit with proxy support by rgod site: http://rgod.altervista.org make these changes in php.ini if you have troubles to launch this script:...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•19 views

SaralBlog 1.0 - Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/16306/info saralblog is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•18 views

asp talk (sql/css) Multiple Vulnerabilities

No description provided by source. 000000 00000 0000 0000 000 00 000000 0000000 0000 000000 00000 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00000 0 0 0 0 0 0 0 0 00000 0000 0 0 0 0 00000 0 0 0 0 0 0 0 0 0 0 000 0 0 0 ...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•24 views

DESlock+ <= 3.2.6 DLMFENC.sys Local Kernel ring0 link list zero PoC

No description provided by source. / deslock-list-zero.c Copyright c 2008 by [email protected] DESlock+ = 3.2.6 local kernel ring0 link list zero POC by mu-b - Fri 21 Dec 2007 - Tested on: DLMFENC.sys 1.0.0.26 - Private Source Code -DO NOT DISTRIBUTE - http://www.digit-labs.org/ -- Digit-Labs...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•22 views

Invision Power Board 2.1 <= 2.1.6 - Remote SQL Injection Exploit (2)

No description provided by source. !/usr/bin/perl use LWP::UserAgent; $ua = LWP::UserAgent-new; &header; if @ARGV 2 &info; exit; $server = $ARGV0; $dir = $ARGV1; print + SERVER $server\r\n; print + DIR $dir\r\n; Step 1, detecting vulnerability print 1 Testing forum vulnerability...; $q = UNION...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•16 views

Enterpriser16 Load Balancer 7.1 - Multiple XSS Vulnerabilities

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•27 views

php-revista <= 1.1.2 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. php-revista = 1.1.2 Remote SQL Injection Exploit Found by & contact : Cold z3ro , [email protected] script : http://downloads.sourceforge.net/php-revista/revista-1.1.2.tgz?modtime=1025654400&bigmirror=0 Exploits :...

7.1AI score
Exploits0
Total number of security vulnerabilities56796