1086 matches found
Pserv 2.0 User-Agent HTTP Header Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/6286/info A buffer overflow vulnerability has been reported in Pserv. The buffer overflow condition is due to the way Pserv handles data streams from remote connections. An attacker can exploit this vulnerability by issui...
eStara Softphone <= 3.0.1.46 (SIP) Remote Buffer Overflow Exploit (2)
No description provided by source. !/usr/bin/perl -s damn-hippie.pl by kokanin google estara, it shows sip stuff and a hippie Remote estara softphone exploit, executable version info = 3.0.1.2 kokanin did the research, metasploit.com did the encoded bindshell on tcp/5060 Lets face it, most users...
Juke 4.0.2 DoS Multiple Files
No description provided by source. Exploit Title: Juke 4.0.2 DoS Multiple Files Date: April 6, 2010 Software Link: http://www.wolosoft.com/en/download.html Version: 4.0.2 Tested on: Windows XP SP3 Author: anonymous Juke will Crash when you run this script to make a file with any of the following...
phpBB Links MOD 1.2.2 - Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl print q phpBB = 2.0.22 - Links MOD = v1.2.2 Remote SQL Injection Exploit Bug discovered by Don Dork: allinurl:links.php?t=search or: Links MOD v1.2.2 by phpBB2.de SQL INJECTION: Exploit:...
QuickPHP Web Server Arbitrary (src .php) File Download
No description provided by source. / / / / / // | / // \ | / / / / / /// / / / / / / / // / / / |/ / // / , / / // / / / / / //// //|///||/,/ / /// Live by the byte |// Members: Pr0T3cT10n -=M.o.B.=- TheLeader Sro Debug Contact: [email protected] -----------------------------------...
Fishyshoop <= 0.930b Remote Add Administrator Account Exploit
No description provided by source. !/usr/bin/perl James Gray [email protected] Fishyshoop Security Vulnerability use WWW::Curl::Easy; sub usage print $0 Fishyshoop root URL Desired E-Mail Desired Password\n; exit; $FSURL=shift or usage; $UNAME=shift or usage; $PASS=shift or usage; my $fishyshoop...
3Com SuperStack II PS Hub 40 TelnetD Weak Password Protection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3034/info A vulnerability exists in certain models of 3Com hubs and potentially other 3Com network products. The affected devices fail to properly restrict the allowed number of login attempts to the inbuilt telnet-based...
CompleteFTP 3.3.0 - Remote Memory Consumption DoS
No description provided by source. !/usr/bin/perl Title: CompleteFTP v3.3.0 - Remote Memory Consumption DoS Author: Jonathan Salwan submit!shell-storm.org Web: http://www.shell-storm.org 60 sec for satured 2Go RAM use IO::Socket; print \nxCompleteFTP v3.3.0 - Remote Memory Consumption DoS\n; if...
PunBB <= 1.3.4 & Pun_PM <= 1.2.6 - Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day PunBB = 1.3. Package: PunPM = v1.2.6 Remote Blind SQL Injection Exploit Author/s: Dante90, WaRWolFz Crew Created: 2009.07.30 after 0 days the bug was discovered. Crew Members: 4lasthor, Andryxxx, Cod3, Gho5t, HeRtZ, N.o.3.X, RingZero,...
phpBurningPortal <= 1.0.1 (lang_path) Remote File Include Exploit
No description provided by source. !/usr/bin/perl use LWP::UserAgent; use LWP::Simple; $target = @ARGV0; $shellsite = @ARGV1; $shellcmd = @ARGV2; $fileno = @ARGV3; if!$target || !$shellsite usage; header; if $fileno eq 1 $file = questdelete.php?langpath=; elsif $fileno eq 2 $file =...
Exjune Guestbook 2.0 - Remote Database Disclosure Exploit
No description provided by source. !/usr/bin/perl By AlpHaNiX NullArea.Net alphaathacker.bz Made in Tunisia script : Exjune Guestbook v2 download : http://www.exjune.com/downloads/downloads/exJuneguestbook.asp Vulnerable : database path : /admin/exdb.mdb Real Life Example : OOO OOO OO OO OO OO O ...
Invision Power Board <= 2.1.4 (Register Users) Denial of Service Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; | | | \ | | |/ IPB Register Multiple Users Denial of Service Doesn't Work on forums using Code Confirmation Created By SkOd SED security Team http://www.sed-team.be [email protected] ISRAEL print q Invision Power Board Multiple Use...
BlazeDVD Pro player 6.1 - Stack Based Buffer Overflow (Direct Ret)
No description provided by source. !/usr/bin/perl BlazeDVD Pro player 6.1 Local stack based buffer overflow Author: PuN1sh3r Email: [email protected] Date: Mon Jul 15 03:01:37 EDT 2013 Vendor link: http://www.blazevideo.com/download.htmm Software Link:...
YapBB <= 1.2 (cfgIncludeDirectory) Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl YapBB =1.2 Beta Remote Command Execution Exploit Copyright c 2006 cijfer cijfer@netti!fi All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ to set your PHP shell location: cijfer$...
AWStats < 6.4 (referer) Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl AWStats 6.4 command execution exploit based on http://www.idefense.com/application/poi/display?id=290&type=vulnerabilities coded by 1dt.w0lf 11.08.2005 RST/GHC http://rst.void.ru http://ghc.ru Note Exploitation will not occur until the stats page...
YourArcadeScript 2.0b1 - Blind SQL Injection
No description provided by source. !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwPOST; use Getopt::Long; '/ -.- ------------------oOO------OOo----------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Research...
EasyPublish 3.0 'read' Parameter Multiple SQL Injection and Cross-Site Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/30307/info EasyPublish is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection and cross-site scripting vulnerabilities...
BlogPHP 2 - (id) XSS / Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl BlogPHP V.2 Multiple Remote Vulnerabilities SQL Injection Exploit/XSS AUTHOR : IRCRASH Discovered by : Dr.Crash Exploited By : Dr.Crash IRCRASH Team Members : Dr.Crash - Malc0de - R3d.w0rm Script Download :...
Wikepage Opus 10 <= 2006.2a (lng) - Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl WIKEPAGE = V2006.2a Opus 10 Remote Command Execution Exploit ------------------------------------------------------------- IHST: h4ckerz.com / hackerz.ir AST : Aria-Security.Net Kapda : kapda.ir coded & discovered By Hessam-x Hessamx -at-...
CHETCPASSWD 1.12 Shadow File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6472/info CHETCPASSWD is prone to a vulnerability that may potentially cause the tail end of the local shadow file to be disclosed to a remote attacker. It is possible to exploit this issue by sending an overly long strin...