NotFTP 1.3.1 - 'newlang' Local File Inclusion

NotFTP 1.3.1 = Local file include http://sourceforge.net/projects/notftp/ Author: Kacper Email: [email protected] Home: http://devilteam.pl/ DC++ Hub address: bluber-hub.no-ip.biz:2008 Vuln: File config.php: This is where we decide what language to use. Don't mess with this either. if...

NotFTP 1.3.1 (newlang) Local File Inclusion Vulnerability

No description provided by source. NotFTP 1.3.1 = Local file include http://sourceforge.net/projects/notftp/ Author: Kacper Email: [email protected] Home: http://devilteam.pl/ DC++ Hub address: bluber-hub.no-ip.biz:2008 Vuln: File config.php: This is where we decide what language to use. Don't...

NotFTP 1.3.1 Local File Inclusion

NotFTP 1.3.1 = Local file include http://sourceforge.net/projects/notftp/ Author: Kacper Email: [email protected] Home: http://devilteam.pl/ DC++ Hub address: bluber-hub.no-ip.biz:2008 Vuln: File config.php: This is where we decide what language to use. Don't mess with this either. if...

NotFTP 1.3.1 - newlang Local File Inclusion

NotFTP 1.3.1 - newlang Local File Inclusion NotFTP 1.3.1 = Local file include http://sourceforge.net/projects/notftp/ Author: Kacper Email: [email protected] Home: http://devilteam.pl/ DC++ Hub address: bluber-hub.no-ip.biz:2008 Vuln: File config.php: This is where we decide what language to us...

CVE-2009-1278

Gravity Board X (GBX) 2.0 BETA has a static code injection in forms/ajax/configure.php that allows remote attackers to inject arbitrary PHP code into config.php via the configure action to index.php. Affected: GBX 2.0 BETA; vulnerable file: forms/ajax/configure.php. Root cause: configuration work...

CVE-2009-1230

Static code injection vulnerability in index.php in Podcast Generator 1.1 and earlier allows remote authenticated administrators to inject arbitrary PHP code into config.php via the recent parameter in a config change action...

Firepack (admin/ref.php) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ====================================================== Firepack admin/ref.php Remote Code Execution Exploit ====================================================== !/usr/bin/perl Firepack - Remote Command\Code Execution Exploit Firepack is ...

FreeLyrics 1.0 File Disclosure

Piker FreeLyrics Remote Source Code Disclosure Vulnerability Affected software: FreeLyrics Vendor: http://lyrics.sourceforge.net/ Risk: Medium http://target/path/source.php?p=FILE PoC: http://target/path/source.php?p=config.php Found by Piker piker0x90atgmaildotcom D.O.M Labs - Security Researche...

WordPress Plugin Page Flip Image Gallery 0.2.2 - Remote File Disclosure

WordPress Plugin Page Flip Image Gallery 0.2.2 - Remote File Disclosure | | | \ \ \ / / / \ / | / | / | | | | | | \ V / / \ | | | | | | | | | | | / \ | || | | | | | || || \ || // \ | | | Wordpress Plugin Page Flip Image Gallery = 0.2.2 Remote File Disclosure Vulnerability D :...

WordPress Plugin Page Flip Image Gallery 0.2.2 - Remote File Disclosure

| | | \ \ \ / / / \ / | / | / | | | | | | \ V / / \ | | | | | | | | | | | / \ | || | | | | | || || \ || // \ | | | Wordpress Plugin Page Flip Image Gallery = 0.2.2 Remote File Disclosure Vulnerability D : http://downloads.wordpress.org/plugin/page-flip-image-gallery.0.2.2.zip Poc :...

H2O-CMS <= 3.4 Remote Command Execution Exploit (mq = off)

No description provided by source. !/usr/bin/perl ---------------------------------------------------------- H2O-CMS = 3.4 Remote Command Execution Exploit mq = Off Discovered By StAkeRathotmaildotit Download On http://sourceforge.net/projects/h2o-cms...

h2ocms-exec.txt

!/usr/bin/perl ---------------------------------------------------------- H2O-CMS '";""; errorreporting0; echo"//athos"; "', 'dbserver' = '";""; include$REQUEST"i"; "', 'dbname' = '";""; eval$REQUEST"g"; "', 'dbusername' = '";""; echo shellexec$REQUEST"c"; "', 'dbpassword' = '";""; echo...

buzzywall-disclose.txt

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + + + BuzzyWall Remote File Disclosure Vulnerability + + + + Discovered by b3hz4d + + + + WwW.DeltaHacking.Net + + + + + + + ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ AUTHOR : b3hz4d DATE : 25 oct...

mystats-multi.txt

myStats hits.php Multiple Remote Vulnerabilities Exploit url: http://mywebland.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Author will be not responsible for...

Kure 0.6.3 (index.php post doc) Local File Inclusion Vulnerability

No description provided by source. Kure 0.6.3 index.php post,doc Local File Inclusion Vulnerability url: http://code.google.com/p/kure/downloads/list Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational...

kure-lfi.txt

Kure 0.6.3 index.php post,doc Local File Inclusion Vulnerability url: http://code.google.com/p/kure/downloads/list Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk...

Kure 0.6.3 - 'index.php' Local File Inclusion

Kure 0.6.3 index.php post,doc Local File Inclusion Vulnerability url: http://code.google.com/p/kure/downloads/list Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk...

mystats - hits.php Multiple Vulnerabilities

mystats - hits.php Multiple Vulnerabilities myStats hits.php Multiple Remote Vulnerabilities Exploit url: http://mywebland.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your...

LokiCMS 0.3.4 - 'admin.php' Create Local File Inclusion

LokiCMS 0.3.4 admin.php Create Local File Inclusion Exploit url: http://www.lokicms.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Author will be not responsibl...

Pritlog <= 0.4 (filename) Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications ============================================================== Pritlog = 0.4 filename Remote File Disclosure Vulnerability ============================================================== -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...