3100 matches found
Linkspile (link.php cat_id) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ============================================================== Linkspile link.php catid Remote SQL Injection Vulnerability ============================================================== Remote SQL Injection Vulnerabilities Linkspile link.p...
CaLogic Calendars 1.2.2 - langsel SQL Injection
CaLogic Calendars 1.2.2 - langsel SQL Injection /---------------------------------------------------------------\ \ / / CaLogic Calendars V1.2.2 Remote SQL injection \ \ / ---------------------------------------------------------------/ Author : His0k4 ALGERIAN HaCkEr Dork : "CaLogic Calendars...
OBlog (tags.asp) Remote SQL Injection Exploit
No description provided by source...
galleristic-sql.txt
/', $request$i, $response; if!empty$response1 return $response1 . ''; Usage : Run in a browser as : http://yourbox/exploit.php?target=http://targetbox/path/ ifempty$GET'target' die'No target site specified!'; else for$c = 1; $c...
Galleristic 1.0 - cat SQL Injection
Galleristic 1.0 - cat SQL Injection /', $request$i, $response; if!empty$response1 return $response1 . ''; Usage : Run in a browser as : http://yourbox/exploit.php?target=http://targetbox/path/ ifempty$GET'target' die'No target site specified!'; else for$c = 1; $c milw0rm.com 2008-05-07...
maianguestbook-xss.txt
---------------------------------------------------------------- Script : Maian Guestbook v3.2 Type : XSS Vulnerabilities ---------------------------------------------------------------- Discovered by : Khashayar Fereidani Or Dr.Crash Our Team : IRCRASH...
Scout Portal Toolkit 1.4.0 - ParentId SQL Injection
Scout Portal Toolkit 1.4.0 - ParentId SQL Injection !/usr/bin/perl Scout Portal Toolkit new or die; my $go=$cnx-get$victim."/SPT--BrowseResources.php?ParentId=337+and+1=2+union+all+select+0,1,2,3,4,concatUserName,char34,UserPassword,6,7,8+from+APUsers/"; if $go-content = m/APUsers/\'...
Scout Portal Toolkit <= 1.4.0 (ParentId) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ===================================================================== Scout Portal Toolkit new or die; my...
chicomas204-xss.txt
Author : Hadi Kiamarsi ---------------------------------------------------------------------------------- Discovered by : Hadi Kiamarsi ---------------------------------------------------------------------------------- Exploited By : Hadi Kiamarsi...
CVE-2008-1381
ZoneMinder before 1.23.3 allows remote authenticated users, and possibly unauthenticated attackers in some installations, to execute arbitrary commands via shell metacharacters in a crafted URL...
Project Based Calendaring System (PBCS) 0.7.1 - Multiple Vulnerabilities
Project Based Calendaring System PBCS 0.7.1 - Multiple Vulnerabilities Project Based Calendaring System PBCS Version 0.7.1 Multiple Vulnerabilities Script: http://www.pbcs.org/pbcsdownload.php Poc : Hi str0ke Thanx To Posted but I Want Add Some Vulns In This Script 1- remote file upload...
LokiCMS 0.3.3 - Arbitrary File Delete
Name : LokiCMS 0.3.3 = Arbitrary File Delete Vulnerability Author : cOndemned Greetz : ZaBeaTy, GregStar, irk4z, doctor, Avantura ; Usage: http://target/lokiCMS/admin.php?delete=path/file PoC: http://target/lokiCMS/admin.php?delete=../includes/Config.php Deleting Config.php will casue situation...
miniBB 2.2 - 'bb_admin.php' Cross-Site Scripting Vulnerability
miniBB 2.2 'bbadmin.php' Cross-Site Scripting Vulnerability. Webapps exploit for php platform source: http://www.securityfocus.com/bid/28957/info miniBB is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue ...
Joomla Component paxxgallery 0.2 (gid) Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl use strict; use LWP::Simple; print "-+-- Joomla Component PaxxGallery Blind SQL Injection Exploit gid --+-\n"; print "-+-- "more than 1 row" --+-\n"; print "-+-- --+-\n"; print "-+-- Author: ZAMUT --+-\n"; print "-+-- Vuln: gid= --+-\n"; print...
kubelance-lfi.txt
$ Script : Kubelance All Versions Local File Inclusion Vulnerabilities $ Script Info : http://demos.kubelabs.com/kubelance/ $ Download : http://rapidshare.com/files/108095194/Kubelance.v1.6.4.PHP.NULL-DGT.rar.html $ Author : CrackersChild $ Contact : [email protected] $ Note : Erbabi ile...
OpenInvoice 0.9 Arbitrary Change User Password Exploit
Exploit for unknown platform in category web applications ====================================================== OpenInvoice 0.9 Arbitrary Change User Password Exploit ====================================================== !/usr/bin/perl OpenInvoice 0.9 Arbitrary Change User Password Exploit...
bosnews40-direct.txt
-------------------------------------------------------------------------------------------------------------- ----- H-T Team HouSSaMix + ToXiC350 from MoroCCo ---------------------------------------------------------...
KwsPHP (Upload) Remote Code Execution Exploit
?php / ---KwsPHP All Version / Remote Code Execution--- Faille Discovered By TsukasaGenesis && Ajax Sploit Coded By Ajax Site: http://www.r57shell.in / if$argc9 print "---KwsPHP All Version / Remote Code Execution---nn"; print "usage: kwsphpsploit.php -url url -login login -pass pass -email email...
Immunity Canvas: DRAGOON_INCLUDE
Name| dragooninclude ---|--- CVE| CVE-2008-1773 Exploit Pack| CANVAS Description| Dragoon 0.1 Remote File Include Notes| CVE Name: CVE-2008-1773 VENDOR: Dragoon Repeatability: Infinite References: http://securityreason.com/exploitalert/3697 CVE Url: https://vulners.com/cve/CVE-2008-1773 CVSS: 6.8...
Cezanne 6.5.17 - home.asp?CFTARGET Cross-Site Scripting
Cezanne 6.5.17 - home.asp?CFTARGET Cross-Site Scripting source: https://www.securityfocus.com/bid/28772/info Cezanne Software is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Authenticated attackers may leverage these issues to...