Rafel Ivgi The-Insider

35 exploits Active since Apr 2004
CVE-2004-2104 EXPLOITDB text WRITEUP
Novell NetWare Enterprise Web Server 5.1-6.0 - Info Disclosure
Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to (1) snoop.jsp, (2) SnoopServlet, (3) env.bas, or (4) lcgitest.nlm.
CVE-2004-2104 EXPLOITDB text WRITEUP
Novell NetWare Enterprise Web Server 5.1-6.0 - Info Disclosure
Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to (1) snoop.jsp, (2) SnoopServlet, (3) env.bas, or (4) lcgitest.nlm.
CVE-2004-2104 EXPLOITDB text WORKING POC
Novell NetWare Enterprise Web Server 5.1-6.0 - Info Disclosure
Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to (1) snoop.jsp, (2) SnoopServlet, (3) env.bas, or (4) lcgitest.nlm.
CVE-2004-2115 EXPLOITDB text WORKING POC
Oracle HTTP Server 1.3.22 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTTP Server 1.3.22, based on Apache, allow remote attackers to execute arbitrary script as other users via the (1) action, (2) username, or (3) password parameters in an isqlplus request.
EIP-2026-104074 EXPLOITDB text WORKING POC
Seyeon Technology FlexWATCH Server 2.2 - Cross-Site Scripting
EIP-2026-104001 EXPLOITDB text WRITEUP
Netbus 2.0 Pro - Directory Listings Disclosure / Arbitrary File Upload
CVE-2004-2094 EXPLOITDB text WRITEUP
WebcamXP 1.06.945 - XSS
Cross-site scripting (XSS) vulnerability in WebcamXP 1.06.945 allows remote attackers to inject arbitrary HTML or web script as other users via a URL that contains the script.
EIP-2026-103841 EXPLOITDB text WRITEUP
aiptek netcam WebServer 0.93.15 - Directory Traversal
CVE-2004-2102 EXPLOITDB text WRITEUP
FREESCO 2.05 - XSS
Cross-site scripting (XSS) vulnerability in FREESCO 2.05, a modified version of thttpd, allows remote attackers to inject arbitrary web script or HTML via the test parameter.
CVE-2004-1813 EXPLOITDB text WRITEUP
VocalTec VGW4/8 Gateway 8.0 - Auth Bypass
VocalTec VGW4/8 Gateway 8.0 allows remote attackers to bypass authentication via an HTTP request to home.asp with a trailing slash (/).