Lucene search
+L

1791 matches found

exploitpack
exploitpack
added 2006/05/31 12:0 a.m.15 views

metajour 2.1 - system_path Remote File Inclusion

metajour 2.1 - systempath Remote File Inclusion DEVIL TEAM THE BEST POLISH TEAM metajour 2.1 systempath - Remote File Include Vulnerabilities Script site: http://www.metajour.org Find by Kacper Rahim. Greetings; DragonHeart, Satan, Leito, Leon, Luzak, Adam, DeathSpeed, Drzewko, pepi ;- Special...

Exploits0
securityvulns
securityvulns
added 2006/05/26 12:0 a.m.30 views

tiffsplit (libtiff <= 3.8.2) bss & stack buffer overflow...

Affected product: tiffsplit libtiff = 3.8.2 tiffsplit from libtiff http://www.remotesensing.org/libtiff/ is vulnerable to a bss-based and stack-based overflow, but, I just wrote the concept c0de for stack-based b0f 'cause I don't know how to take advantage of the overwritten bss data after the...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2006/05/09 12:0 a.m.29 views

[KAPDA] MyBB1.1.1~Email Verification in User Activation ~SQL Injection Attack

ORIGINAL ADVISORY: http://myimei.com/security/2006-05-07/mybb111email-verification-in-user-activation-sql-injection-attack.html ——————-Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.1.1 Class: Remote Status: Unpatched Exploit: Available Solution: Available...

1.5AI score
Exploits0
Exploit DB
Exploit DB
added 2006/04/28 12:0 a.m.44 views

Advanced Guestbook 2.4.0 - 'phpBB' Remote File Inclusion

!usr/bin/perl use LWP::UserAgent; Bug Found by Oo Exploit coded by n0m3rcy Copyright c 2006 [email protected] Gr33tz; nukedx , Devil-00 , str0ke , cijfer Usage; n0ag.pl if @ARGV ne 3 else sub header print "+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\r\n"; pri...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2006/04/19 12:0 a.m.37 views

VBulletinImpEx.txt

Remote File Inclusion in VBulletin ImpEx Date : 12 / 4 / 2006 Software : VBulletin ImpEx version : VBulletin 3.5.1 VBulletin 3.5.2 VBulletin 3.5.4 The bug reside in : ImpExModule.php ImpExController.php ImpExDisplay.php Exploit : 1...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/04/15 12:0 a.m.46 views

Vulnerabilities in Papoo

k k kkkk kk kkkk k k kkkkkk kkkkkk kkkk k k k k k k k k k k k k k k kk k k k k kk k k k k kk kkkkk k kkkkk kk kk kkkkkk k k k k k k kk k k k k k k k kk k k k k k k k k k k k k kkkk kk kkkk k k kk k k kkkk k kk k k k =- Vulnerabilities in Papoo Author : Rusydi Hasan M a.k.a : cR45H3R Date :...

6.2AI score
Exploits0
securityvulns
securityvulns
added 2006/04/04 12:0 a.m.58 views

[Full-disclosure] Barracuda LHA archiver security bug leads to remote compromise

Topic: Barracuda LHA archiver security bug leads to remote compromise Announced: 2006-04-03 Product: Barracuda Spam Firewall Vendor: http://www.barracudanetworks.com/ Impact: Remote shell access Affected product: Barracuda with firmware 3.3.03.022 AND spamdef 3.0.10045 Credits: Jean-Sebastien...

10CVSS6.5AI score0.10262EPSS
Exploits3
securityvulns
securityvulns
added 2006/03/06 12:0 a.m.37 views

evoBlog Remote Name tag Script injection

DESCRIPTION evoBlog is prone to HTML injection attacks. It is possible for a malicious evoBlog user to inject hostile HTML and script code into the commentary via form fields. This code may be rendered in the browser of a web user who views the commentary of evoBlog. evoBlog does not adequately...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2006/02/22 12:0 a.m.38 views

[myimei]CuteNews1.4.1~ Add Comment For Protected UserNames~ XSS Attack

Hello Everybody ——–Summary——– Software: CuteNews Sowtware’s Web Site: http://cutephp.com Versions: 1.4.1 Class: Remote Status: Unpatched Exploit: Available Solution: NotAvailable Discovered by: imei addmimistrator Risk Level: Mediume&High ——-Description——- There is a security bug in CuteNews...

1.6AI score
Exploits0
securityvulns
securityvulns
added 2006/02/18 12:0 a.m.29 views

False positive signature verification in GnuPG

False positive signature verification in GnuPG ============================================== Summary ======= The Gentoo project identified a security related bug in GnuPG. When using any current version of GnuPG for unattended signature verification e.g. by scripts and mail programs, false...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/02/16 12:0 a.m.25 views

[myimei]MyBB1.0.3~managegroup.php~Multiple SqlInjection & XSS

ORIGINAL ADVISORY/ http://myimei.com/security/2006-02-10/mybb103managegroupphpmultiple-sqlinjection-xss.html Vendor Credit:http://community.mybboard.net/showthread.php?tid=6777 ——————-Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.0.3 Class: Remote Status:...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2006/02/16 12:0 a.m.52 views

[myimei]MyBB 1.0.3~private.php~multiple SqlInjection

ORIGINAL ADVISORY/ http://myimei.com/security/2006-02-11/mybb-103privatephpmultiple-sqlinjection.html Vendor Credit:http://community.mybboard.net/showthread.php?tid=6777 ——————-Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.0.3 Class: Remote Status: Unpatche...

0.4AI score
Exploits0
FreeBSD
FreeBSD
added 2006/02/15 12:0 a.m.31 views

gnupg -- false positive signature verification

Werner Koch reports: The Gentoo project identified a security related bug in GnuPG. When using any current version of GnuPG for unattended signature verification e.g. by scripts and mail programs, false positive signature verification of detached signatures may occur. This problem affects the too...

4.6CVSS6.5AI score0.01327EPSS
Exploits1References1
seebug.org
seebug.org
added 2006/02/10 12:0 a.m.19 views

Power Daemon <= 2.0.2 (WHATIDO) Remote Format String Exploit

No description provided by source. / gexp-powerd.c Power Daemon v2.0.2 Remote Format String Exploit Copyright C 2005 Gotfault Security Bug found and developed by: barros and xgc Original Reference: http://gotfault.net/research/exploit/gexp-powerd.c / include getopt.h include sys/types.h include...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/01/30 12:0 a.m.62 views

Subdreamer CMS (Pro 2.2.3 and Light 2.2.0.1) security bug ;)

Hello world ; A serious exploit has recently been discovered which will allow hackers to gain admin access to the latest versions of Subdreamer CMS Pro 2.2.3 and Light 2.2.0.1. It is crucial to patch your systems immediately. Affected files: admin/adminfunctions.php includes/functions.php...

1.3AI score
Exploits0
securityvulns
securityvulns
added 2006/01/26 12:0 a.m.35 views

MyBB 1.0.2 XSS attack in search.php redirection

http://127.0.0.1/mybb/search.php?action=dosearch&keywords=&postthread=1&author=imei&matchusername=1&forums=all&findthreadst=1&numreplies=&postdate=0&pddir=1&sortby="script language=javascriptalertdocument.cookie/script&sorder=1&showresults=threads&submit=Search...

Exploits0
securityvulns
securityvulns
added 2006/01/22 12:0 a.m.30 views

MyBB 1.0.2 Sniffing table perfix bug in search.php

--------------------Summary---------------- Software: mybb Sowtware's Web Site: http://mybboard.com Versions: 1.0.2 Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: imei Risk: low -----------------Description--------------- mybb has a security bug that...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2006/01/07 12:0 a.m.74 views

Remote file include in appserv 2.4.5 (possible in previous versions)

====================================================================== Remote file include in appserv 2.4.5 possible in previous versions ====================================================================== What is Appserv AppServ is the Apache/PHP/MySQL open source software installer packages...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2005/12/31 12:0 a.m.44 views

MyBB XSS cross-site scripting

Hey this is a security bug in printthread.PHP script of MyBBall version also fully patched that allows XSS crosssite scripting hacking and can be exploit without limitation. post this message on a thread and go to print view of thread to view execution of exploit. script...

1.4AI score
Exploits0
exploitpack
exploitpack
added 2005/12/30 12:0 a.m.25 views

CubeCart 3.0.6 - Remote Command Execution

CubeCart 3.0.6 - Remote Command Execution !/usr/bin/perl cijfer-ccxpl - CubeCart All rights reserved. 1. example cijfer@kalma:/research$ perl ./cijfer-ccxpl.pl -h www.xxx.com -d [email protected] /$ id;uname -a uid=48apache gid=48apache groups=48apache,2523psaserv Linux server.xxx.com...

7.7AI score
Exploits0
Rows per page
Query Builder