dr_insane

57 exploits Active since Dec 2004
EIP-2026-119017 EXPLOITDB text WRITEUP
pablo software Solutions baby ftp server 1.2 - Directory Traversal
EIP-2026-118937 EXPLOITDB text WRITEUP
MyServer 0.8 - Cross-Site Scripting
EIP-2026-118958 EXPLOITDB text WRITEUP
NetSuite 1.0/1.2 - HTTP Server Directory Traversal
CVE-2005-1423 EXPLOITDB text WRITEUP
602LAN SUITE 2004.0.05.0413 - Path Traversal
Directory traversal vulnerability in the mail program in 602LAN SUITE 2004.0.05.0413 allows remote attackers to cause a denial of service and determine the presence of arbitrary files via .. sequences in the A parameter.
EIP-2026-119117 EXPLOITDB text WORKING POC
Savant Web Server 3.1 - CGITest.HTML Cross-Site Scripting
CVE-2005-4202 EXPLOITDB text WORKING POC
LogiSphere 0.9.9j - Directory Traversal via URL and Parameter Manipulation
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.
EIP-2026-118732 EXPLOITDB text WORKING POC
Mabry Software HTTPServer/X 1.0 0.047 - File Disclosure
EIP-2026-118908 EXPLOITDB text WORKING POC
MiniHTTPServer Web Forums Server 1.x/2.0 - Directory Traversal
CVE-2005-4202 EXPLOITDB text WRITEUP
LogiSphere 0.9.9j - Directory Traversal via URL and Parameter Manipulation
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.
CVE-2005-4202 EXPLOITDB text WORKING POC
LogiSphere 0.9.9j - Directory Traversal via URL and Parameter Manipulation
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.
CVE-2005-4622 EXPLOITDB text WRITEUP
efilego 3.01 - Directory Traversal and Arbitrary File Upload via Triple Dot in URL
Directory traversal vulnerability in eFileGo 3.01 allows remote attackers to execute arbitrary code, read arbitrary files, and upload arbitrary files via a ... (triple dot) in (1) the URL on port 608 and (2) the argument to upload.exe.
CVE-2004-2310 EXPLOITDB text WRITEUP
IBM Lotus Domino R6 6.5.1 - Cross-Site Scripting via Quick Console Domino Command
Cross-site scripting (XSS) vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows remote attackers to inject arbitrary web script or HTML via a Domino command in the Quick Console.
CVE-2004-2311 EXPLOITDB text WRITEUP
Lotus Domino R6 6.5.1 - Path Traversal
Directory traversal vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows local users to create folders or determine the existence of files via a .. (dot dot) in the new folder dialog.
CVE-2004-2464 EXPLOITDB text WORKING POC
ADA Image Server <0.6.21 - Path Traversal
Directory traversal vulnerability in ADA Image Server (ImgSvr) 0.4 allows remote attackers to read arbitrary files or list directories via hex-encoded "..//" sequences ("%2e%2e%2f%2f"). NOTE: it was later reported that 0.6.21 and earlier is also affected.
CVE-2004-1887 EXPLOITDB text WRITEUP
Ada Image Server 0.4 - Info Disclosure
Ada Image Server (ImgSvr) 0.4 allows remote attackers to view directories or download files via an HTTP request with a trailing %00 (null).
EIP-2026-116288 EXPLOITDB text WORKING POC
Spinworks Application Server 3.0 - Remote Denial of Service
EIP-2026-116220 EXPLOITDB text WRITEUP
Savant Web Server 3.1 - Denial of Service
CVE-2005-4194 EXPLOITDB text WRITEUP
Sights 'n Sounds Streaming Media Server < 2.0.3.a - Denial of Service via Long Query String
Buffer overflow in MediaServerList.exe in Sights 'n Sounds Streaming Media Server 2.0.3.a allows remote attackers to cause a denial of service (application crash) via a long query string.
EIP-2026-116106 EXPLOITDB text WORKING POC
Proxomitron Proxy Server - GET Remote Denial of Service
EIP-2026-115555 EXPLOITDB text WRITEUP
LionMax Software WWW File Share Pro 2.4/2.6 - Remote Denial of Service
EIP-2026-115369 EXPLOITDB text WORKING POC
GuildFTPd 0.999.8 - 'CWD' Denial of Service
CVE-2005-4216 EXPLOITDB c WORKING POC
Macromedia Flash Media Server 2.0 r1145 - Denial of Service via Malformed Request to Port 1111
The Administration Service (FMSAdmin.exe) in Macromedia Flash Media Server 2.0 r1145 allows remote attackers to cause a denial of service (application crash) via a malformed request with a single character to port 1111.
EIP-2026-115032 EXPLOITDB perl WORKING POC
CesarFTP 0.99 g - Remote 'Username' Buffer Overrun
CVE-2005-4209 EXPLOITDB text WRITEUP
WorldClient webmail in Alt-N MDaemon 8.1.3 - Denial of Service via Subject Header Script Injection
WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting (XSS) vulnerability.
EIP-2026-115033 EXPLOITDB perl WORKING POC
CesarFTP 0.99 g - Remote CWD Denial of Service