dr_insane

57 exploits Active since Dec 2004
EIP-2026-119017 EXPLOITDB text WRITEUP
pablo software Solutions baby ftp server 1.2 - Directory Traversal
EIP-2026-118937 EXPLOITDB text WRITEUP
MyServer 0.8 - Cross-Site Scripting
EIP-2026-118958 EXPLOITDB text WRITEUP
NetSuite 1.0/1.2 - HTTP Server Directory Traversal
CVE-2005-1423 EXPLOITDB text WRITEUP
602LAN SUITE 2004.0.05.0413 - Path Traversal
Directory traversal vulnerability in the mail program in 602LAN SUITE 2004.0.05.0413 allows remote attackers to cause a denial of service and determine the presence of arbitrary files via .. sequences in the A parameter.
EIP-2026-119117 EXPLOITDB text WORKING POC
Savant Web Server 3.1 - CGITest.HTML Cross-Site Scripting
CVE-2005-4202 EXPLOITDB text WORKING POC
Logisphere - Path Traversal
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.
EIP-2026-118732 EXPLOITDB text WORKING POC
Mabry Software HTTPServer/X 1.0 0.047 - File Disclosure
EIP-2026-118908 EXPLOITDB text WORKING POC
MiniHTTPServer Web Forums Server 1.x/2.0 - Directory Traversal
CVE-2005-4202 EXPLOITDB text WRITEUP
Logisphere - Path Traversal
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.
CVE-2005-4202 EXPLOITDB text WORKING POC
Logisphere - Path Traversal
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.
CVE-2005-4622 EXPLOITDB text WRITEUP
eFileGo 3.01 - RCE
Directory traversal vulnerability in eFileGo 3.01 allows remote attackers to execute arbitrary code, read arbitrary files, and upload arbitrary files via a ... (triple dot) in (1) the URL on port 608 and (2) the argument to upload.exe.
CVE-2004-2310 EXPLOITDB text WRITEUP
Lotus Domino R6 6.5.1 - XSS
Cross-site scripting (XSS) vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows remote attackers to inject arbitrary web script or HTML via a Domino command in the Quick Console.
CVE-2004-2311 EXPLOITDB text WRITEUP
Lotus Domino R6 6.5.1 - Path Traversal
Directory traversal vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows local users to create folders or determine the existence of files via a .. (dot dot) in the new folder dialog.
CVE-2004-2464 EXPLOITDB text WORKING POC
ADA Image Server <0.6.21 - Path Traversal
Directory traversal vulnerability in ADA Image Server (ImgSvr) 0.4 allows remote attackers to read arbitrary files or list directories via hex-encoded "..//" sequences ("%2e%2e%2f%2f"). NOTE: it was later reported that 0.6.21 and earlier is also affected.
CVE-2004-1887 EXPLOITDB text WRITEUP
Ada Image Server 0.4 - Info Disclosure
Ada Image Server (ImgSvr) 0.4 allows remote attackers to view directories or download files via an HTTP request with a trailing %00 (null).
EIP-2026-116288 EXPLOITDB text WORKING POC
Spinworks Application Server 3.0 - Remote Denial of Service
EIP-2026-116220 EXPLOITDB text WRITEUP
Savant Web Server 3.1 - Denial of Service
CVE-2005-4194 EXPLOITDB text WRITEUP
Innovateware Sights N Sounds Streaming Media Server - Buffer Overflow
Buffer overflow in MediaServerList.exe in Sights 'n Sounds Streaming Media Server 2.0.3.a allows remote attackers to cause a denial of service (application crash) via a long query string.
EIP-2026-116106 EXPLOITDB text WORKING POC
Proxomitron Proxy Server - GET Remote Denial of Service
EIP-2026-115555 EXPLOITDB text WRITEUP
LionMax Software WWW File Share Pro 2.4/2.6 - Remote Denial of Service
EIP-2026-115369 EXPLOITDB text WORKING POC
GuildFTPd 0.999.8 - 'CWD' Denial of Service
CVE-2005-4216 EXPLOITDB c WORKING POC
Macromedia Flash Media Server - Denial of Service
The Administration Service (FMSAdmin.exe) in Macromedia Flash Media Server 2.0 r1145 allows remote attackers to cause a denial of service (application crash) via a malformed request with a single character to port 1111.
EIP-2026-115032 EXPLOITDB perl WORKING POC
CesarFTP 0.99 g - Remote 'Username' Buffer Overrun
CVE-2005-4209 EXPLOITDB text WRITEUP
Alt-n Mdaemon - Code Injection
WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting (XSS) vulnerability.
EIP-2026-115033 EXPLOITDB perl WORKING POC
CesarFTP 0.99 g - Remote CWD Denial of Service