Sense of Security

34 exploits Active since Aug 2009
CVE-2011-0962 EXPLOITDB text WRITEUP
Cisco Unified Operations Manager < 8.6 - Cross-Site Scripting via Tag Parameter
Cross-site scripting (XSS) vulnerability in CSCOnm/servlet/com.cisco.nm.help.ServerHelpEngine in the Common Services Device Center in Cisco Unified Operations Manager (CUOM) before 8.6 allows remote attackers to inject arbitrary web script or HTML via the tag parameter, aka Bug ID CSCto12712.
CVE-2011-0961 EXPLOITDB text WRITEUP
CiscoWorks Common Services < 3.3 - Cross-Site Scripting via Device Parameter
Cross-site scripting (XSS) vulnerability in cwhp/device.center.do in the Help servlet in Cisco CiscoWorks Common Services 3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the device parameter, aka Bug ID CSCto12704.
CVE-2011-0960 EXPLOITDB text WRITEUP
Cisco Unified Operations Manager < 8.6 - SQL Injection via CCMs or ccm Parameter
Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to execute arbitrary SQL commands via (1) the CCMs parameter to iptm/PRTestCreation.do or (2) the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug ID CSCtn61716.
CVE-2011-0959 EXPLOITDB text WRITEUP
Cisco Unified Operations Manager < 8.6 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to inject arbitrary web script or HTML via (1) the extn parameter to iptm/advancedfind.do, (2) the deviceInstanceName parameter to iptm/ddv.do, the (3) cmd or (4) group parameter to iptm/eventmon, the (5) clusterName or (6) deviceName parameter to iptm/faultmon/ui/dojo/Main/eventmon_wrapper.jsp, or the (7) ccmName or (8) clusterName parameter to iptm/logicalTopo.do, aka Bug ID CSCtn61716.
CVE-2011-2544 EXPLOITDB text WRITEUP
Cisco TelePresence System MXP Series < F9.1 - Authenticated Cross-Site Scripting via Call ID
Cross-site scripting (XSS) vulnerability in the web interface in Cisco TelePresence System MXP Series F9.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via a crafted Call ID, as demonstrated by resultant cross-site request forgery (CSRF) attacks that change passwords or cause a denial of service, aka Bug ID CSCtq46488.
CVE-2011-2543 EXPLOITDB text WRITEUP
Cisco Telepresence C Series < TC4.2.0 - Authenticated Buffer Overflow via cuil getxml Location Parameter
Buffer overflow in the cuil component in Cisco Telepresence System Integrator C Series 4.x before TC4.2.0 allows remote authenticated users to cause a denial of service (endpoint reboot or process crash) or possibly execute arbitrary code via a long location parameter to the getxml program, aka Bug ID CSCtq46496.
CVE-2011-0966 EXPLOITDB text WRITEUP
CiscoWorks Common Services < 3.3 - Unauthenticated Path Traversal via Audit Log File Parameter
Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter, aka Bug ID CSCto35577.
CVE-2009-2783 EXPLOITDB text WORKING POC
XOOPS 2.3.3 - Cross-Site Scripting via op Parameter and Query String
Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.3.3 allow remote attackers to inject arbitrary web script or HTML via the (1) op parameter to modules/pm/viewpmsg.php and (2) query string to modules/profile/user.php.
EIP-2026-113585 EXPLOITDB text WORKING POC
WordPress Plugin BackWPUp 2.1.4 - Code Execution
CVE-2011-4342 EXPLOITDB text WORKING POC
BackWPup < 1.7.1 - Remote Code Execution via wpabs Parameter
PHP remote file inclusion vulnerability in wp_xml_export.php in the BackWPup plugin before 1.7.2 for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the wpabs parameter.
EIP-2026-112521 EXPLOITDB text WORKING POC
Symfony2 - Local File Disclosure
EIP-2026-112052 EXPLOITDB text WORKING POC
SilverStripe CMS 3.0.2 - (Multiple Vulnerabilities) Cross-Site Scripting / Cross-Site Request Forgery
CVE-2009-3418 EXPLOITDB text WRITEUP
Plume CMS 1.2.3 - Authenticated SQL Injection via Manager Parameters
Multiple SQL injection vulnerabilities in Plume CMS 1.2.3 allow (1) remote authenticated users to execute arbitrary SQL commands via the m parameter to manager/index.php and (2) remote authenticated administrators to execute arbitrary SQL commands via the id parameter in an edit_link action to manager/tools.php. NOTE: some of these details are obtained from third party information.
EIP-2026-110660 EXPLOITDB text WRITEUP
PHP Captcha / Securimage 2.0.2 - Authentication Bypass
CVE-2013-6618 EXPLOITDB text WRITEUP
Juniper Junos Authenticated RCE via J-Web PHP rsargs Parameter
jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary commands via the rsargs parameter in an exec action.
EIP-2026-106223 EXPLOITDB text WRITEUP
cPassMan 1.82 - Arbitrary File Download
EIP-2026-103776 EXPLOITDB text WRITEUP
Google AD Sync Tool - Exposure of Sensitive Information
CVE-2011-2260 EXPLOITDB text WRITEUP
Oracle Sun Products Suite 2.1.1 - Info Disclosure
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Sun Products Suite 2.1.1 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration.
CVE-2011-0966 EXPLOITDB text WRITEUP
CiscoWorks Common Services < 3.3 - Unauthenticated Path Traversal via Audit Log File Parameter
Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter, aka Bug ID CSCto35577.
EIP-2026-102012 EXPLOITDB text WORKING POC
Snom IP Phone - Privilege Escalation
EIP-2026-101935 EXPLOITDB text WRITEUP
QNAP Turbo NAS 3.6.1 Build 0302T - Multiple Vulnerabilities
EIP-2026-101875 EXPLOITDB text WORKING POC
Netgear Wireless Cable Modem Gateway - Authentication Bypass / Cross-Site Request Forgery
CVE-2011-2577 EXPLOITDB text WRITEUP
Cisco TelePresence C Series, E/EX, MXP < TC 4.0.0/F9.1 - DoS via SIP Packet
Unspecified vulnerability in Cisco TelePresence C Series Endpoints, E/EX Personal Video units, and MXP Series Codecs, when using software versions before TC 4.0.0 or F9.1, allows remote attackers to cause a denial of service (crash) via a crafted SIP packet to port 5060 or 5061, aka Bug ID CSCtq46500.
CVE-2011-0959 EXPLOITDB text WORKING POC
Cisco Unified Operations Manager < 8.6 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to inject arbitrary web script or HTML via (1) the extn parameter to iptm/advancedfind.do, (2) the deviceInstanceName parameter to iptm/ddv.do, the (3) cmd or (4) group parameter to iptm/eventmon, the (5) clusterName or (6) deviceName parameter to iptm/faultmon/ui/dojo/Main/eventmon_wrapper.jsp, or the (7) ccmName or (8) clusterName parameter to iptm/logicalTopo.do, aka Bug ID CSCtn61716.
CVE-2011-0959 EXPLOITDB text WORKING POC
Cisco Unified Operations Manager < 8.6 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to inject arbitrary web script or HTML via (1) the extn parameter to iptm/advancedfind.do, (2) the deviceInstanceName parameter to iptm/ddv.do, the (3) cmd or (4) group parameter to iptm/eventmon, the (5) clusterName or (6) deviceName parameter to iptm/faultmon/ui/dojo/Main/eventmon_wrapper.jsp, or the (7) ccmName or (8) clusterName parameter to iptm/logicalTopo.do, aka Bug ID CSCtn61716.