photokron 1.7 - Remote Database Disclosure

!/usr/bin/perl Script : PhotoKron All Version All Version Author : Pr0metheuS Gr33tz to Gr33tz-Team Gr33tz-Team.ORG Dork : "Powered by photokorn" INFO Works IF /update/ is on server...60% site are vulnerable.... INFO use LWP::UserAgent; if @ARGV!=2 print "-=-=-=-=-=-=-=-=-=-=-=--=\n"; print...

0DayDB 2.3 - id Remote Authentication Bypass

0DayDB 2.3 - id Remote Authentication Bypass !/usr/bin/perl Autor : Pr0metheuS Script : 0DayDB v2.3 Version : v2.3 Dork : "Powered By 0DayDB v2.3" Gr33tz-Team.org use LWP::UserAgent; if@ARGV!=3 print "\n"; print "0DayDB v2.3 Remote Admin Bypass\n"; print "perl $0 \n"; print "downloads ID for...

ClipShare 2.6 - Remote User Password Change

ClipShare 2.6 - Remote User Password Change !/usr/bin/perl -w priv8 Pr0metheuS Exploit Name: Clipshare Remote User Password Change Exploit Version Script: Clipshare 2.6 Dork: "Powered by Clipshare" EnjoY print "-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-"; print "\nClipshare 2.6 Remote User...

webportalcms-sql.txt

!/usr/bin/perl -w WebPortal CMS If we select an inesistent id of a mod, it'll try to include it. So we have a warning error with the hash!. use LWP::UserAgent; if @ARGV new or die "-LWP::UserAgent error.\n"; $b-agent'Mozilla/4.0 compatible; MSIE 7.0; Windows NT 5.1'; print "+Exploiting.\n"; $host...

WebPortal CMS <= 0.6.0 (index.php m) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================= WebPortal CMS If we select an inesistent id of a mod, it'll try to include it. So we have a warning error with the hash!. use LWP::UserAgent; if @ARGV new or die...

CCMS 3.1 Demo Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Found by Pr0metheuS Coded by Pr0metheuS Gr33tz-Team Dork : intitle:"CCMS v3.1 Demo PW" print "\n"; print "-=-=-=-=-=-=+-=-=-=-=-=-=-+-=-=-=-=-=|\n"; print "-=-=-=-=-=-=+CCMS Exploit...+-=-=-=-=|\n"; print "-=-=-=-=-=-=+Remote MD5 Hash+-=-=-=-=|\n"...

CCMS 3.1 Demo - SQL Injection

!/usr/bin/perl Found by Pr0metheuS Coded by Pr0metheuS Gr33tz-Team Dork : intitle:"CCMS v3.1 Demo PW" print "\n"; print "-=-=-=-=-=-=+-=-=-=-=-=-=-+-=-=-=-=-=|\n"; print "-=-=-=-=-=-=+CCMS Exploit...+-=-=-=-=|\n"; print "-=-=-=-=-=-=+Remote MD5 Hash+-=-=-=-=|\n"; print "-=-=-=-=-=-=+By...

CCMS 3.1 Demo - SQL Injection

CCMS 3.1 Demo - SQL Injection !/usr/bin/perl Found by Pr0metheuS Coded by Pr0metheuS Gr33tz-Team Dork : intitle:"CCMS v3.1 Demo PW" print "\n"; print "-=-=-=-=-=-=+-=-=-=-=-=-=-+-=-=-=-=-=|\n"; print "-=-=-=-=-=-=+CCMS Exploit...+-=-=-=-=|\n"; print "-=-=-=-=-=-=+Remote MD5 Hash+-=-=-=-=|\n"; pri...

CustomCMS 3.1 - vars.php SQL Injection

CustomCMS 3.1 - vars.php SQL Injection source: https://www.securityfocus.com/bid/27069/info CustomCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromis...

CustomCMS 3.1 - &#039;vars.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/27069/info CustomCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify dat...

BadBlue 2.72 PassThru Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl -w http://aluigi.altervista.org/adv/badblue-adv.txt http://www.securityfocus.com/bid/26803 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6379 exploit for stack overflow in badblue 2.72 Credit to Luigi Auriemma Jacopo Cervini acaro@jervus....

Cisco IP Phone 7940 (Reboot) Denial of Service Exploit

No description provided by source. !/usr/bin/perl This is made for trashing cisco 7940 ip phones. kokanin made/discovered this. A packetcount of 1000 and a packetdelay of 0.002 sent to port 80 makes my phone reboot - play with the settings and stuff. PRIVATE PRIVATE PRIVATE!!!...

MonAlbum 0.87 - Arbitrary File Upload / Password Grabber

!/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use HTTP::Request::Common; use Getopt::Std; my %args, $user, $password, $sqlhost, $sqluser, $sqlpassword, $cookie, $path, $file, $upload = ; my $tmp = 'cmd1.jpg'; getopts"u:a:f:p:", %args; -a don't retrieve login and passwords, use...

nokia-dos.txt

Nokia N95 cellphone remote DoS using the SIP Stack Severity: High – Denial of Service Hardware: Nokia N95 Firmware: Tested version: Nokia RM-159 V 12.0.013 Notification: Vulnerability found: 11 September 2007 Contact Nokia Support: 12 September 2007 / None reply Contact Nokia Security Support: 19...

[Full-disclosure] Nokia N95 cellphone remote DoS using the SIP Stack

Nokia N95 cellphone remote DoS using the SIP Stack Severity: High – Denial of Service Hardware: Nokia N95 Firmware: Tested version: Nokia RM-159 V 12.0.013 Notification: Vulnerability found: 11 September 2007 Contact Nokia Support: 12 September 2007 / None reply Contact Nokia Security Support: 19...

cisco7940-dos.txt

Cisco 7940 Denial of Service Vulnerability Hardware: Cisco 7940 SIP Phone Severity: High – Denial of Service Software: Affected version: P0S3-08-7-00 Other Versions: May be Notification: Vulnerability found: 30 August 2007 Contact Cisco: 31 August 2007 Tracked issue: 11 September 2007 Vulnerabili...

Cisco Phone 7940 Remote Denial of Service Exploit

Exploit for hardware platform in category dos / poc ================================================= Cisco Phone 7940 Remote Denial of Service Exploit ================================================= !/usr/bin/perl Vulnerabily discovered using KiF Kiph Authors: Humberto J. Abdelnur Ph.D Student...

PHP-Nuke Advertising Module 0.9 - &#039;modules.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/26406/info The PHP-Nuke Advertising Module is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the...

Oracle 10g/11g SYS.LT.FINDRICSET Local SQL Injection Exploit

Exploit for multiple platform in category local exploits ============================================================ Oracle 10g/11g SYS.LT.FINDRICSET Local SQL Injection Exploit ============================================================ !/usr/bin/perl...

DNS Recursion bandwidth amplification Denial of Service PoC

No description provided by source. !/usr/bin/perl Get Net::RawIP at http://search.cpan.org/CPAN/authors/id/S/SZ/SZABGAB/Net-RawIP-0.2101.tar.gz cpan Net::DNS:Resolver seems to work fine on each machine I throw it on, as well. PS: To see if you can spoof, check out the ANA Spoofer project...