273 matches found
Joomla! Component Live Ticker 1.0 - Blind SQL Injection
Joomla! Component Live Ticker 1.0 - Blind SQL Injection Joomla Component comlivetickertid Blind SQL-injection Author : boom3rang Greetz : H!tm@N, KHG, chs, redc00de, pr0xy-ki11er, LiTTle-Hack3r, L1RIDON1. Vulnerability : Blind SQL injection Google Dork : inurl:comliveticker...
Joomla! Component Live Ticker 1.0 - Blind SQL Injection
Joomla Component comlivetickertid Blind SQL-injection Author : boom3rang Greetz : H!tm@N, KHG, chs, redc00de, pr0xy-ki11er, LiTTle-Hack3r, L1RIDON1. Vulnerability : Blind SQL injection Google Dork : inurl:comliveticker -------------------------------------------------- ! Name : Live Ticker ! Auth...
linkbid-sql.txt
Link Bid Script 1.5 Multiple Remote SQL Injection + Discovered By SirGod + wWw.MorTal-TeaM.OrG + Greetz : E.M.I.N.E.M,Ras,Puscasmarin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke + Remote SQL Injection - Note : For PoC 2 you need administrative rights. PoC 1 :...
talkback-lfidisclose.txt
Talkback 2.3.6 Multiple Local File Inclusion/PHPInfo Disclosure + Discovered By SirGod + MorTal TeaM + Greetz : E.M.I.N.E.M,Ras,Puscasmarin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke + Local File Inclusion PoC 1 : http://target/path/comments.php?language=Local File%00 Example 1 :...
NukeSentinel 2.5.05 (nukesentinel.php) File Disclosure Exploit
Exploit for unknown platform in category web applications ============================================================== NukeSentinel 2.5.05 nukesentinel.php File Disclosure Exploit ============================================================== !/usr/bin/php File Disclosure Maybe work on other...
NukeSentinel 2.5.05 - 'nukesentinel.php' File Disclosure
!/usr/bin/php File Disclosure Maybe work on other versions. Interesting exploit = if$argc URL: http://www.acid-root.new.fr/ ------------------------------------------------------------------ Usage: $argv0 -url -file Options Example: $argv0 -url http://www.victim.com/ -file config.php Options:...
CVE-2006-2587
Buffer overflow in the WebTool HTTP server component in 1 PunkBuster before 1.229, as used by multiple products including 2 America's Army 1.228 and earlier, 3 Battlefield 1942 1.158 and earlier, 4 Battlefield 2 1.184 and earlier, 5 Battlefield Vietnam 1.150 and earlier, 6 Call of Duty 1.173 and...
Buffer-overflow in the WebTool service of PunkBuster for servers (minor than v1.229)
Luigi Auriemma Application: PunkBuster http://www.punkbuster.com Versions: PunkBuster for servers, versions minor than v1.229: America's Army = v1.228 Battlefield 1942 = v1.158 Battlefield 2 = v1.184 Battlefield Vietnam = v1.150 Call of Duty = v1.173 Call of Duty 2 = v1.108 DOOM 3 = v1.159 Enemy...
PunkBuster 1.229 - WebTool Service Remote Buffer Overflow (Denial of Service) (PoC)
PunkBuster 1.229 - WebTool Service Remote Buffer Overflow Denial of Service PoC Luigi Auriemma Application: PunkBuster http://www.punkbuster.com Versions: PunkBuster for servers, versions minor than v1.229: America's Army = v1.228 Battlefield 1942 = v1.158 Battlefield 2 = v1.184 Battlefield Vietn...
In-game /ignore crash in Soldier of Fortune II 1.03
Luigi Auriemma Application: Soldier of Fortune II http://sof2.ravensoft.com Versions: 1.02x and 1.03 Platforms: Windows, Linux and Mac Bug: bad memory access Exploitation: remote, versus server in-game Date: 29 Jun 2005 Author: unknown, found in the wild and reported to me by two admins Advisory:...
Raven Software Soldier Of Fortune 2 - Ignore Command Remote Denial of Service
Raven Software Soldier Of Fortune 2 - Ignore Command Remote Denial of Service source: https://www.securityfocus.com/bid/14098/info A remote denial of service vulnerability affects Raven Software Soldier Of Fortune 2. The problem presents itself specifically when the affected server application...
Raven Software Soldier Of Fortune 2 - Ignore Command Remote Denial of Service
source: https://www.securityfocus.com/bid/14098/info A remote denial of service vulnerability affects Raven Software Soldier Of Fortune 2. The problem presents itself specifically when the affected server application receives an excessively large value through a '/ignore' command from a malicious...
Sad-Raven GuestBook
Product : Sad-Raven GuestBook Version : 1.1 WebSite : http://www.sad-raven.ru Problem : Admin access rus Description: ------------ Если посмотреть файл admin.php, можно увидеть следующие строки: admin.php ========= ... if fileexists"passwd.dat" && $QUERYSTRING != "": require "passwd.dat";...