262 matches found
phpMyFamily - Multiple Vulnerabilities
phpMyFamily - Multiple Vulnerabilities ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-17-phpmyfamily-multiple-remote-vulnerabilities/ ''' - Title : phpmyfamily Multiple Remote...
phpMyFamily - Multiple Vulnerabilities
''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-17-phpmyfamily-multiple-remote-vulnerabilities/ ''' - Title : phpmyfamily Multiple Remote Vulnerabilities. - Affected Version : phpmyfamily =...
Hycus CMS 1.0.1 Cross Site Request Forgery
Date: Thu 26 Aug 2010 07:53:22 PM EEST Vendor: http://www.hycus.com/ Download: http://www.hycus.com/download/hycuscms-1.0.1.zip --- -= CSRF PoC 1 - Change Admin Password =- Hycus CMS 1.0.1 Multiple CSRF Vulnerabilities - Change Admin Password -= CSRF PoC 2 - Create Admin User =- Hycus CMS 1.0.1...
Hycus CMS 1.0.1 - Multiple Cross-Site Request Forgery Vulnerabilities
Date: Thu 26 Aug 2010 07:53:22 PM EEST Vendor: http://www.hycus.com/ Download: http://www.hycus.com/download/hycuscms-1.0.1.zip --- -= CSRF PoC 1 - Change Admin Password =- Hycus CMS 1.0.1 Multiple CSRF Vulnerabilities - Change Admin Password -= CSRF PoC 2 - Create Admin User =- Hycus CMS 1.0.1...
Hycus CMS 1.0.1 Multiple Cross Site Request Forgery Vulnerabilities
Exploit for php platform in category web applications =================================================================== Hycus CMS 1.0.1 Multiple Cross Site Request Forgery Vulnerabilities =================================================================== Date: Thu 26 Aug 2010 07:53:22 PM EEST...
Frog CMS 0.9.5 Multiple CSRF Vulnerabilities
Exploit for php platform in category web applications ============================================ Frog CMS 0.9.5 Multiple CSRF Vulnerabilities ============================================ Date: Sun 11 Jul 2010 10:22:48 AM EEST Vendor: http://www.madebyfrog.com/ Download:...
Frog CMS 0.9.5 - Multiple Cross-Site Request Forgery Vulnerabilities
Date: Sun 11 Jul 2010 10:22:48 AM EEST Vendor: http://www.madebyfrog.com/ Download: http://www.madebyfrog.com/public/download/files/frog095.tar.gz --- -= CSRF PoC 1 - Create Admin User =- Frog CMS 0.9.5 Multiple CSRF Vulnerabilities - Create Admin User -= CSRF PoC 2 - Delete User =- img...
Le tour travel site management system v1. 7. 3 Oday-vulnerability warning-the black bar safety net
Author:Lan3a First: The administrator directory under AdminPassod. asp !-- include file="../Include/conn. asp" - !-- include file="../Include/md5. asp" - % select case request. QueryString"Action" case "ModifyPass" SaveNewPass case else end select set rs = server. createobject"adodb. recordset"...
Dodge ScanWebShell something very simple-vulnerability warning-the black bar safety net
Method of use: Direct access to the xxx. asp? bin=zs will be in the current directory to generate a bin. asp. The connection password for the zs! PS: the file can Dodge ScanWebShell,but the generated bin. asp will be killed,after use please delete the bin. asp! % pass="zs" If request"bin"= pass...
Orbis CMS 1.0 File Manipulation / SQL Injection
Orbis CMS 1.0 AFD/ADF/ASU/SQL Multiple Remote Vulnerabilities + Discovered By SirGod + http://insecurity-ro.org + http://h4cky0u.org + Dork : Powered by Orbis CMS + Download script : http://www.novo-ws.com/orbis-cms/download.shtml + Arbitrary File Download Arbitrary Delete File + - No login...
PunBB Automatic Image Upload 1.3.5 Delete File
!/usr/bin/perl 0-Day PunBB Automatic Image Upload $AllowDelete = "Members"; use LWP::UserAgent; use HTTP::Cookies; my $UserName,$PassWord,$DirectoryFile,$DeleteFile = @ARGV; if@ARGV 'Mozilla/5.0', maxredirect = 0, cookiejar = $Cookies, or die $!; sub Login my $Login =...
GuildFTPd DELE命令目录遍历漏洞
BUGTRAQ ID: 34079 GuildFTPD是一个Windows平台下的免费FTP服务器。 GuildFTPd没有正确地处理FTP DELE请求,如果远程攻击者在向服务器所提交的DELE命令中包含有特制的“..”字符序列的话,就可以通过目录遍历攻击绕过FTP root删除系统上的任意文件。 DrPhibez and Nitro187 Guild FTPD v0.999.14 厂商补丁: DrPhibez and Nitro187 --------------------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
PT-2009-3042 · Max · Max.Blog
Name of the Vulnerable Software and Affected Versions: Max.Blog version 1.0.6 Description: The issue concerns improper access restriction in the delete.php file, allowing remote attackers to delete arbitrary blog posts by making a direct request. Recommendations: For Max.Blog version 1.0.6,...
neutrino-exec.txt
!/usr/bin/perl Neutrino 0.8.4 Atomic Edition Perl exploit discovered & written by Ams [email protected] DESCRIPTION: First exploit destroys "/data/sess.php" file simply strips tags, then we are able to bypass authorization and using admin privelegies our exploit uploads basic shell to...
lightblog-upload.txt
LightBlog 9.5 - REMOTE FILE UPLOAD VULNERABILITY by Omni 1 Infos --------- Date : 2008-01-30 Product : LightBlog Version : v 9.5 Vendor : http://www.publicwarehouse.co.uk/ Vendor Status : 2008-01-31 Informed! 2008-01-31 Patch received from vendor! 2008-02-01 Published! Description : Lightblog...
Quickly remove illegal file name code-vulnerability warning-the black bar safety net
allyesno: we will encounter many so-called illegal file name For example .. con, nul, etc. FlowerCode gives the following method can quickly delete these file names http://hi.baidu.com/flowercode/blog/item/3f68be02a7cfd10d4bfb519f.html References Two lines of code get deleted quickly using illega...
Nessus Vulnerability Scanner 3.0.6 ActiveX Remote Delete File Exploit
No description provided by source. HTML !-- Nessus Vulnerability Scanner 3.0.6 ActiveX deleteReport 0day Remote Delete File Exploit Bug discovered by Krystian Kloskowski h07 [email protected] Tested on Nessus 3.0.6 / IE 6 / XP SP2 Polish Just for fun ; --...
Nessus Vulnerability Scanner 3.0.6 - ActiveX Remote Delete File
Nessus Vulnerability Scanner 3.0.6 - ActiveX Remote Delete File Tested on Nessus 3.0.6 / IE 6 / XP SP2 Polish Just for fun ; -- obj.deleteReport"../../../../../../../test.txt"; //Deleting file: C:\test.txt alert"done"; milw0rm.com 2007-07-26...
Nessus Vulnerability Scanner 3.0.6 - ActiveX Remote Delete File
Tested on Nessus 3.0.6 / IE 6 / XP SP2 Polish Just for fun ; -- obj.deleteReport"../../../../../../../test.txt"; //Deleting file: C:\test.txt alert"done"; milw0rm.com 2007-07-26...
Nessus Vulnerability Scanner 3.0.6 ActiveX Remote Delete File Exploit
Exploit for unknown platform in category remote exploits ===================================================================== Nessus Vulnerability Scanner 3.0.6 ActiveX Remote Delete File Exploit ===================================================================== Tested on Nessus 3.0.6 / IE 6 ...