744 matches found
Archangel Weblog 0.90.02 - post_id SQL Injection
Archangel Weblog 0.90.02 - postid SQL Injection !/usr/bin/perl -w Portal : Archangel Weblog 0.90.02 Download : http://www.archangelmgt.com/ArchangelWeblogv09002.zip exploit aported password crypted mgharba :d:d:d:d Founded & Exploited by : Stack-Terrorist v40 Contact: Ev!L = see down Greetz :...
phpwebsitedownload-sql.txt
powered by phpWebSitedownload AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl:"mod.php?mod=download" DORK 2 : allinurl: EXPLOIT :...
phpnukeinhalt-sql.txt
///////////////////////////////////////// Title : Php - Nuke Module Inhalt Sql Author : CrackersChild Mail : [email protected] Exploit : modules.php?name=Inhalt&sop=listpages&cid=-1//union//select//aid,2//from//nukeauthors/where%20admin%20-2...
PHP-Nuke Module Inhalt - 'cid' SQL Injection
///////////////////////////////////////// Title : Php - Nuke Module Inhalt Sql Author : CrackersChild Mail : [email protected] Exploit : modules.php?name=Inhalt&sop=listpages&cid=-1//union//select//aid,2//from//nukeauthors/where%20admin%20-2...
PowerNews (Newsscript) 2.5.6 Local File Inclusion Vulnerabilities
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-014 Application: PowerNews Newsscript Versions Affected: 2.5.6 Vendor URL: http://www.powerscripts.org/ Bug: Multiple Local File Include Exploits: YES Reported: 01.02.2008 Vendor Response: none Solution:...
DSECRG-08-012.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-012 Application: Azucar CMS Versions Affected: 1.3 Vendor URL: http://azucarcms.sourceforge.net/enhome.htm Bug: Multiple Local File Include Exploits: YES Reported: 30.01.2008 Vendor Response: NONE Date of Public Advisory: 05.02.2008 Author...
Debian Security Advisory DSA 1459-1 (gforge)
The remote host is missing an update to gforge announced via advisory DSA 1459-1. OpenVAS Vulnerability Test $Id: deb14591.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1459-1 gforge Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian Security Advisory DSA 944-1 (mantis)
The remote host is missing an update to mantis announced via advisory DSA 944-1. Several security related problems have been discovered in Mantis, a web-based bug tracking system. For details on the issues resolved, please visit the referenced advisories. The old stable distribution woody does no...
Thunder 5 and explosion vulnerability-vulnerability warning-the black bar safety net
According to a reliable tip-off, the thunder 5 and this time how much a word appears serious 0-Day vulnerability, virus authors can exploit the vulnerability to write malicious web pages, when used to browse these pages, you will be infected with the virus, then the virus can theft of user accoun...
ProCheckUp Security Advisory 2007.14
PR07-14: Cross-site Scripting XSS / HTML injection on F5 FirePass 4100 SSL VPN 'my.activation.php3' server-side script Date Found: 19th June 2007 Successfully tested on: version 5.5.2 F5 Networks has confirmed the following versions to be vulnerable: FirePass versions 5.4.1 - 5.5.2 FirePass...
russian-multi.txt
Dear [email protected], Vulnerabilities reported by different Russian speaking authors to http://securityvulns.ru 1. ElektAntichat.ru reports protection bypass vulnerability in PHP 4 and 5. disablefunctions feature can be bypassed by using functions alias. A list of aliases is given in...
Article Directory - 'index.php' Remote File Inclusion
dork:inurl:index.php%"Submit%Articles"%"Member%Login"%"Top%Authors" dork:inurl:index.php?pagedb=rss expl:index.php?page=shell? original post:http://darkcode.ath.cx/f0rum/ind3x.php?action=vthread&forum=12&topic=114 author:[email protected] greetz:d3hydr8, whoami pace milw0rm.com 2007-07-24...
eNdonesia 8.4 (mod.php/friend.php/admin.php) Multiple Vulnerabilities
No description provided by source. bugs for Endonesia8.4 FInd:z1ckXru mail:[email protected] 1 http://localhost/en/mod.php?mod=XSS&op=viewlink&cid=5 2 http://localhost/en/friend.php your Friend:XSS 3 http://localhost/en/admin.php Main Text: XSS 4...
Plume CMS 1.1.3 (dbinstall.php) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ================================================================= Plume CMS 1.1.3 dbinstall.php Remote File Include Vulnerability =================================================================...
Plume CMS 1.1.3 - dbinstall.php Remote File Inclusion
Plume CMS 1.1.3 - dbinstall.php Remote File Inclusion /------------------------------------------------ IHS Public advisory -------------------------------------------------/ Plume CMS Remote File Inclusion It uses PHP and MySql. With a single installation of Plume you can have multiple websites,...
spank.c
Your machine answers to TCP packets that are coming from a multicast address. This is known as the 'spank' denial of service attack. OpenVAS Vulnerability Test $Id: spank.nasl 8145 2017-12-15 13:31:58Z cfischer $ spank.c Authors: Michel Arboi Copyright: Copyright C 2003 Michel Arboi This program ...
CVE-2005-1712
Unknown vulnerability in Serendipity 0.8, when used with multiple authors, allows unprivileged authors to upload arbitrary media files...
CVE-2005-1712
Unknown vulnerability in Serendipity 0.8, when used with multiple authors, allows unprivileged authors to upload arbitrary media files...
CVE-2005-1712
CVE-2005-1712 affects Serendipity 0.8; when used with multiple authors, unprivileged authors can upload arbitrary media files. The provided documents state the vulnerability and affected scenario but do not disclose root cause, exploit details, or a remediation. No explicit patch information is g...
Web_Store.cgi allows Command Execution
WebStore.cgi allows Command Execution: This application was written by Selena Sol and Gunther Birznieks. You can execute shellcommands: http://www.victim.com/cgi-bin/webstore.cgi?page=.html|cat /etc/passwd| Zero X, member of www.Lobnan.de and www.Lostkey.org...