SecPod Research

25 exploits Active since May 1999
CVE-2012-1005 EXPLOITDB text WRITEUP
Sphinx Software Mobile Web Server 3.1.2.47 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Sphinx Software Mobile Web Server 3.1.2.47 allow remote attackers to inject arbitrary web script or HTML via the comment parameter to a blog, as demonstrated using (1) Blog/MyFirstBlog.txt or (2) Blog/AboutSomething.txt.
CVE-2012-1466 EXPLOITDB text WORKING POC
NetMechanica NetDecision < 4.5.1 - Unauthenticated Source Code Exposure via Invalid Version Number
The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from third party information.
CVE-2012-1464 EXPLOITDB python WORKING POC
NetMechanica NetDecision < 4.5.1 - Information Disclosure via Trailing Question Mark
Dashboard Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the installation path via a request with a trailing "?" character, which causes Dashboard to attempt to access a non-existent resource. NOTE: some of these details are obtained from third party information.
CVE-2011-4722 EXPLOITDB text WORKING POC
Ipswitch TFTP Server 1.0.0.24 - Path Traversal via RRQ Filename Field
Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote attackers to read arbitrary files via a .. (dot dot) in the Filename field of an RRQ operation.
CVE-2014-1216 EXPLOITDB ruby WORKING POC
FitNesse Wiki <20140201 - Command Injection
FitNesse Wiki 20131110, 20140201, and earlier allows remote attackers to execute arbitrary commands by defining a COMMAND_PATTERN and TEST_RUNNER in the pageContent parameter when editing a page.
EIP-2026-118361 EXPLOITDB python WORKING POC
CiscoKits 1.0 - TFTP Server Directory Traversal
CVE-1999-1510 EXPLOITDB ruby WORKING POC
Bisonware FTP Server < 4.1 - Buffer Overflow via Long USER LIST or CWD Commands
Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long (1) USER, (2) LIST, or (3) CWD commands.
CVE-2012-1465 EXPLOITDB python WORKING POC
NetMechanica NetDecision < 4.5.1 - Denial of Service via Long URL
Stack-based buffer overflow in the HTTP Server in NetMechanica NetDecision before 4.6.1 allows remote attackers to cause a denial of service (application crash) via a long URL in an HTTP request. NOTE: some of these details are obtained from third party information.
EIP-2026-116028 EXPLOITDB text WRITEUP
Oxide WebServer 2.0.4 - Denial of Service
CVE-2012-1008 EXPLOITDB text WORKING POC
OfficeSIP Server 3.1 - Denial of Service via Crafted SIP INVITE To Header
OfficeSIP Server 3.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted To header in a SIP INVITE message.
CVE-2012-1009 EXPLOITDB text WORKING POC
NetSarang Xlpd and Xmanager Enterprise - Denial of Service via Malformed LPD Request
NetSarang Xlpd 4 Build 0100 and NetSarang Xmanager Enterprise 4 Build 0186 allow remote attackers to cause a denial of service (daemon crash) via a malformed LPD request.
CVE-2011-4720 EXPLOITDB text WORKING POC
Hillstone HS TFTP Server 1.3.2 - Denial of Service via Long Filename in RRQ or WRQ Operation
Hillstone HS TFTP Server 1.3.2 allows remote attackers to cause a denial of service (daemon crash) via a long filename in a (1) RRQ or (2) WRQ operation.
EIP-2026-115055 EXPLOITDB python WORKING POC
CiscoKits 1.0 - TFTP Server 'Write Command' Denial of Service
EIP-2026-114410 EXPLOITDB text WORKING POC
Xataface WebAuction and Xataface Librarian DB - Multiple Vulnerabilities
EIP-2026-110303 EXPLOITDB text WORKING POC
openEngine 2.0 100226 - Local File Inclusion / Cross-Site Scripting
CVE-2011-3394 EXPLOITDB text WRITEUP
MYRE Real Estate Software - SQL Injection
SQL injection vulnerability in findagent.php in MYRE Real Estate Software allows remote attackers to execute arbitrary SQL commands via the page parameter.
EIP-2026-109445 EXPLOITDB text WRITEUP
Micro CMS 1.0 b1 - Persistent Cross-Site Scripting
EIP-2026-109444 EXPLOITDB text WORKING POC
Micro CMS 1.0 - 'name' HTML Injection (2)
EIP-2026-107709 EXPLOITDB text WRITEUP
iBoutique 4.0 - 'key' SQL Injection
EIP-2026-105247 EXPLOITDB text WRITEUP
ArticleSetup - Multiple Persistence Cross-Site Scripting / SQL Injections
EIP-2026-105209 EXPLOITDB text WRITEUP
appRain Quick Start Edition Core Edition Multiple 0.1.4-Alpha - Cross-Site Scripting
CVE-2012-1007 EXPLOITDB text WORKING POC
Apache Struts 1.3.10 - Cross-Site Scripting via Name or Message Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 1.3.10 allow remote attackers to inject arbitrary web script or HTML via (1) the name parameter to struts-examples/upload/upload-submit.do, or the message parameter to (2) struts-cookbook/processSimple.do or (3) struts-cookbook/processDyna.do.
CVE-2016-6515 EXPLOITDB HIGH python WORKING POC
OpenSSH < 7.3 - Denial of Service via Long Password String
The auth_password function in auth-passwd.c in sshd in OpenSSH before 7.3 does not limit password lengths for password authentication, which allows remote attackers to cause a denial of service (crypt CPU consumption) via a long string.
CVSS 7.5
EIP-2026-101167 EXPLOITDB python WORKING POC
Avaya IP Office Manager TFTP Server 8.1 - Directory Traversal
CVE-2013-2299 EXPLOITDB text WRITEUP
Advantech WebAccess < 7.1 - Authenticated Cross-Site Scripting
Cross-site scripting (XSS) vulnerability in Advantech WebAccess (formerly BroadWin WebAccess) before 7.1 2013.05.30 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.