3751 matches found
Sisplet CMS (index.php id) 2008-01-24 - Remote SQL Injection Vulnerability
No description provided by source. ================================================================= Sisplet CMS index.php id Remote SQL Injection Vulnerability ================================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O...
Prozilla Hosting Index (directory.php cat_id) - SQL Injection Vulnerability
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV88$2008 ----------------------------------------------------------------------------------------- ECHOADV88$2008 Prozilla Hosting Index directory.php catid Blind Sql...
magic-portal 2.1 - SQL Injection Vulnerability
No description provided by source. :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title :magic-portal SQL injection Vulnerability Author: alnjm33 Software Link: Version: 2.1 Tested on: Version 2.1 My home : Sec-war.com...
zKup CMS 2.0 <= 2.3 - Remote Upload Exploit
No description provided by source. !/usr/bin/php ?php / Name: zKup CMS v2.0 = v2.3 0-day exploit upload Credits: Charles real F. charlesfolathotmail.fr Date: 03-08-2008 Conditions: PHP Version, magicquotesgpc=Off This exploit spawn a php uploader in your victim's server. Okay, you may need...
Flash Movie Player 1.5 - File Magic Denial of Service Vulnerability
No description provided by source. Flash Movie Player v1.5 File Magic Crash http://www.eolsoft.com/ http://www.eolsoft.com/freeware/flashmovieplayer/ Author: Matthew Bergin Website: http://berginpentesting.com Date: August 25, 2010 Description: Flash Movie Player is a free stand-alone player for...
Pre Ads Portal <= 2.0 - Remote SQL Injection Vulnerability
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV98$2008 ----------------------------------------------------------------------------------------- ECHOADV98$2008 Pre Ads Portal = 2.0 Sql Injection Vulnerability...
Apple iOS MobileSafari LibTIFF Buffer Overflow
No description provided by source. $Id: safarilibtiff.rb 15950 2012-10-09 18:31:08Z rapid7 $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use...
Magic Photo Storage Website admin/add_templates.php _config[site_path] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
Magic Music Editor - .cda Denial of Service
No description provided by source. !/usr/bin/perl Exploit Title: Magic Music Editor .cda DOS Version : All Version Author : AtT4CKxT3rR0r1ST [email protected] Download : http://www.magic-video-software.com/magicmusiceditor/download.html Sp3C!4L Gr34T$ T0 h1ch4m my $file= DOS.cda; my $junk = \x41 x 8000...
Magic Photo Storage Website user/add_news.php _config[site_path] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
Magic Winmail Server 4.0 (Build 1112) upload.php Traversal Arbitrary File Upload
No description provided by source. source: http://www.securityfocus.com/bid/12388/info Magic Winmail Server is reportedly affected by multiple vulnerabilities. There are two distinct directory traversal vulnerabilities in the Webmail interface allowing both arbitrary file downloads and uploads...
Magic Photo Storage Website user/logout.php _config[site_path] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
PoPToP PPTP <= 1.1.4-b3 Remote Root Exploit
No description provided by source. / exploit for a recently discovered vulnerability in PoPToP PPTP server under Linux. Versions affected are all prior to 1.1.4-b3 and 1.1.3-20030409. The exploit is capable of bruteforcing the RET address to find our buffer in the stack. Upon a successfull run it...
MySQL Quick Admin <= 1.5.5 (COOKIE) Local File Inclusion Vulnerability
No description provided by source. MySQL Quick Admin = 1.5.5 COOKIE Local File Inclusion Vulnerability url: http://www.mysqlquickadmin.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use...
Gallo 0.1.0 - Remote File Include Vulnerability
No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...
webERP <= 4.08.1 - Local/Remote File Inclusion Vulnerability
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ posdubatgmail.com 2012-06-27 webERP = 4.08.1 Local/Remote File Inclusion Vulnerability Script: Accounting & Best...
Online Rental Property Script <= 4.5 (pid) SQL Injection Vulnerability
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV91$2008 ----------------------------------------------------------------------------------------- ECHOADV91$2008 Online Rental Property Script = 4.5 pid Blind Sql Injection...
project alumni <= 1.0.9 - Remote XSS / SQL Injection Vulnerability
No description provided by source. project-alumni sql injection & xss author : tomplixsee [email protected] ------------------------------------------------------------------------------------------------------------- affected software version : project alumni v1.0.9, v1.0.8, or lower??...
PHP Director <= 0.21 (sql into outfile) eval() Injection Exploit
No description provided by source. include stdio.h include stdlib.h include string.h include netinet/in.h include arpa/inet.h include netdb.h / Dork Powered by PHP Director 0.2 | PHP Director 0.2.1 sql into outfile eval Injection Exploit | Exploit-...
joomla component memorybook 1.2 - Multiple Vulnerabilities
No description provided by source. SQL Injection ------------- requires: magic quotes OFF, user account Add this as the description of a new event: ', 63,SELECT CONCATusername,0x20,email FROM users WHERE gid=25 LIMIT 1,1,1,1 -- ' NOTE: 63 MUST be your Joomla user ID. extracted info can be found o...